Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n7vynXtO_XCm86BMgoRxNf0ydjY.roa
File: n7vynXtO_XCm86BMgoRxNf0ydjY.roa (raw, json)
Hash identifier: hmbSwTDsZ7gczwFc5jVIm9XVm6jvpdpdqmvKykV/fBc=
Subject key identifier: 9F:BB:F2:9D:7B:4E:FD:70:A6:F3:A0:4C:82:84:71:35:FD:32:76:36
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81E0520D7547C831E1AC572029E12E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n7vynXtO_XCm86BMgoRxNf0ydjY.roa
Signing time: Sun 01 Jan 2023 13:25:06 +0000
ROA not before: Sun 01 Jan 2023 13:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.136.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.54.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.2.0/24 maxlen: 24
87.121.0.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.232.0/22 maxlen: 22
94.156.233.0/24 maxlen: 24
94.156.227.0/24 maxlen: 24
94.156.232.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
94.156.186.0/24 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
93.123.37.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:e0:52:0d:75:47:c8:31:e1:ac:57:20:29:e1:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fbbf29d7b4efd70a6f3a04c82847135fd327636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1d:f0:56:69:e0:b9:ae:cd:70:2a:a3:78:19:
83:8f:b3:75:ca:b2:18:ae:ec:a8:18:8b:30:56:fb:
dd:93:8d:00:9a:41:d5:36:ce:02:4b:c8:66:45:a6:
77:84:44:05:71:84:dd:b0:29:9a:b0:52:74:21:b0:
08:a6:44:01:59:79:f8:fa:72:94:c1:db:fd:44:40:
16:1d:90:bb:f5:01:69:a3:d0:ca:9e:45:15:8e:44:
6c:9e:42:3d:ca:6e:dd:29:fe:3b:b6:40:a7:48:10:
e1:ba:d6:ba:9f:85:f6:ba:9f:36:9d:95:d3:20:19:
e7:70:8a:07:41:1a:27:3c:fe:34:68:8b:70:a9:aa:
b3:44:af:bb:d6:36:d1:ba:8f:01:e2:ae:cb:d7:eb:
19:0a:dd:e3:25:98:dd:67:63:37:c2:c5:41:5f:f2:
de:f3:31:8f:f5:0a:23:7d:ee:7f:6f:cf:79:02:b1:
59:d1:2d:e2:44:17:72:ce:08:5f:62:73:94:36:2a:
67:76:a6:9b:1a:87:fd:95:9c:54:e0:14:69:4f:9b:
e0:68:7f:fe:6a:21:89:fb:2f:d1:54:78:d3:dc:b1:
84:c2:29:28:ac:56:fc:f9:a8:54:5d:b8:bc:5b:89:
12:98:bb:81:bb:2f:a5:a1:25:b0:cc:12:27:de:94:
41:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BB:F2:9D:7B:4E:FD:70:A6:F3:A0:4C:82:84:71:35:FD:32:76:36
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n7vynXtO_XCm86BMgoRxNf0ydjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.195.0/24
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
37.60.138.0/23
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.54.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
94.156.10.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.185.0-94.156.186.255
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.232.0/22
94.156.248.0/23
94.156.251.0-94.156.252.255
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
92:44:61:4b:9b:60:cf:9d:b5:26:fb:57:be:84:31:3c:a6:4e:
de:80:cb:55:a4:eb:87:c1:b2:f1:bf:7e:2c:fb:e6:4b:c9:01:
02:55:d7:d1:75:da:5a:ac:2f:3a:32:91:cc:31:3c:be:44:d6:
43:17:d6:fd:52:70:a1:45:28:7d:c9:6e:4b:e5:30:6a:60:17:
21:43:6e:23:2f:b5:f1:5b:65:6c:7c:8e:03:c4:45:67:a1:33:
ed:b7:1c:a9:f7:28:1f:45:5d:4d:4e:73:65:e4:7d:3c:92:d2:
e9:46:c1:f0:6a:a3:ff:1b:36:9b:92:0f:52:2d:13:bd:a4:7b:
d9:b0:a7:20:f9:a9:d2:94:07:eb:05:e9:4a:c8:0d:80:cb:b5:
d1:41:2b:76:c0:9c:a1:2d:b5:98:41:b7:f3:b3:fb:bc:0c:db:
91:1c:ee:fa:82:29:7d:e1:e4:92:f7:a5:c4:5b:8a:d2:5d:ca:
96:fe:a8:64:64:16:ee:45:43:7f:de:fd:2a:f8:6f:e5:03:d7:
4a:1c:b6:e3:34:d3:e0:5a:12:5a:d2:ef:23:74:a5:6c:ef:5f:
31:eb:5e:dc:4a:6b:0d:e9:65:f2:c6:fb:9e:85:e7:98:e4:cf:
89:15:71:79:d4:97:11:be:e7:db:db:4c:a2:af:3f:b2:18:fe:
64:4f:40:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-ams.rpki-client.org