Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xdmXKtt6n-IJlIYCB_uczzlX9S0.roa
File: xdmXKtt6n-IJlIYCB_uczzlX9S0.roa (raw, json)
Hash identifier: suBo4ukHd7zTuFEXQBQ3m4xa3pJmzvkrV3MQ9x2jDTo=
Subject key identifier: C5:D9:97:2A:DB:7A:9F:E2:09:94:86:02:07:FB:9C:CF:39:57:F5:2D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1DB4050B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xdmXKtt6n-IJlIYCB_uczzlX9S0.roa
Signing time: Mon 04 Apr 2022 07:24:54 +0000
ROA not before: Mon 04 Apr 2022 07:24:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34224
IP address blocks: 212.73.131.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.132.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
212.73.135.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.136.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
87.121.42.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
92.249.48.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.54.0/24 maxlen: 24
87.121.59.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.253.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.2.0/24 maxlen: 24
87.121.0.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.197.0/24 maxlen: 24
185.221.66.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.37.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.227.0/24 maxlen: 24
85.217.145.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
94.156.248.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
94.156.186.0/24 maxlen: 24
94.156.184.0/24 maxlen: 24
93.123.8.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
94.156.187.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.32.0/22 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.108.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.95.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.102.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
31.13.194.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
31.13.217.0/24 maxlen: 24
87.121.161.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.241.0/24 maxlen: 24
31.13.248.0/22 maxlen: 24
2a00:1728:35::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:1b::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:3::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498337035 (0x1db4050b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 4 07:24:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5d9972adb7a9fe20994860207fb9ccf3957f52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fc:51:a2:9d:38:c1:a6:03:68:2e:7f:6d:b8:
fb:6c:f7:ea:6e:f9:ae:0a:e9:60:6f:c4:d4:52:23:
33:1f:a9:fc:92:e4:49:e8:de:56:8e:5d:98:f4:8f:
b2:fc:a9:f5:70:c5:09:6c:bf:28:85:5d:9b:c2:8a:
5e:1b:5a:3d:c5:d4:ae:71:24:83:06:9b:50:c1:22:
30:ee:7e:5e:b6:cc:f1:bd:44:2d:b9:45:cb:8d:98:
8e:a7:25:32:7a:e8:c3:d9:08:59:14:35:33:b4:56:
fb:26:91:a0:56:6a:87:6a:98:3b:8f:4e:0d:8a:3c:
3d:f5:1a:dd:ff:ff:6e:a3:ce:57:ad:f6:62:4a:dd:
a6:7e:64:69:44:f4:6f:11:96:e8:21:a8:dc:65:b9:
da:5b:8f:d0:62:72:95:e0:b2:96:25:b2:5a:f2:05:
03:7b:e7:bb:33:5c:a4:8a:78:96:e2:76:e1:99:78:
ae:e1:b7:b9:89:92:fb:e2:a7:5d:f4:ca:a6:b7:41:
42:ea:3a:7e:b2:b8:2b:d7:bc:bc:41:0c:31:da:ba:
16:3c:55:4c:20:94:0e:93:bc:6d:50:38:aa:c1:14:
2c:dc:27:c4:2f:56:7b:43:56:75:f8:5f:35:e3:37:
12:41:89:de:4e:d1:8c:9e:ea:41:b5:0f:51:ff:92:
ff:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D9:97:2A:DB:7A:9F:E2:09:94:86:02:07:FB:9C:CF:39:57:F5:2D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xdmXKtt6n-IJlIYCB_uczzlX9S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.194.0/23
31.13.197.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
31.13.248.0/22
37.60.138.0/23
85.217.145.0/24
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.54.0/24
87.121.59.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
92.249.48.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
93.123.108.0/24
94.156.10.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/23
94.156.98.0/24
94.156.100.0/24
94.156.102.0/24
94.156.106.0/24
94.156.129.0/24
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.184.0-94.156.188.255
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.248.0/23
94.156.251.0-94.156.252.255
185.221.66.0/24
212.73.128.0-212.73.136.255
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
6b:df:93:49:81:e8:44:b5:5b:df:01:75:6f:5b:a8:3e:fa:41:
46:9c:43:ee:0c:cc:e9:b6:62:81:53:11:a5:1e:35:92:7a:3f:
33:c7:04:46:1d:a5:53:fd:2d:63:08:af:d4:7e:55:01:40:37:
84:f6:04:de:8b:56:26:59:15:d0:67:9c:60:b2:3c:09:de:fa:
23:8e:b8:91:eb:59:89:31:a1:a8:d7:27:71:19:62:bc:89:bf:
b0:8b:23:fa:5c:98:03:a9:56:16:99:6c:89:68:f1:f6:0f:4a:
68:05:29:a2:12:c3:0c:8f:90:f2:49:78:4f:6f:af:be:d0:a2:
fc:c2:7b:07:e3:cf:ad:13:7d:2c:ab:70:2d:9b:13:ea:39:b9:
68:13:3a:fc:af:24:5d:63:a2:3c:38:0d:45:66:74:ac:94:be:
81:6d:48:f6:89:eb:d8:58:5d:51:11:8b:09:82:45:20:22:93:
1a:f5:16:05:7a:55:92:0d:ec:d8:c1:89:60:8e:02:25:11:ab:
3a:5b:54:f3:59:44:b4:d8:92:04:80:28:87:fe:2a:f3:8a:ce:
c0:9f:7f:1e:59:ea:78:47:1d:e9:1d:9e:03:f2:46:35:3a:a1:
e2:37:ae:23:5c:ab:ec:b9:53:68:a8:eb:63:c4:c9:73:f7:db:
89:2a:7e:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:44 2023 by rpki-client on console-ams.rpki-client.org