Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dCpb19HyPv6jdtI9w43FwUXha2M.roa
File: dCpb19HyPv6jdtI9w43FwUXha2M.roa (raw, json)
Hash identifier: EbtL3PzSQJN55vuPyP8uwfyWPqjkOCW8TC4MMZw33XM=
Subject key identifier: 74:2A:5B:D7:D1:F2:3E:FE:A3:76:D2:3D:C3:8D:C5:C1:45:E1:6B:63
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4973E4A5
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dCpb19HyPv6jdtI9w43FwUXha2M.roa
Signing time: Thu 07 Apr 2022 05:03:46 +0000
ROA not before: Thu 07 Apr 2022 05:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34665
IP address blocks: 46.161.14.0/23 maxlen: 23
46.161.20.0/22 maxlen: 22
46.161.24.0/23 maxlen: 23
5.188.10.0/23 maxlen: 23
5.188.9.0/24 maxlen: 24
95.215.0.0/22 maxlen: 24
95.215.2.0/23 maxlen: 23
95.215.0.0/23 maxlen: 23
95.215.0.0/24 maxlen: 24
95.215.3.0/24 maxlen: 24
46.161.30.0/24 maxlen: 24
46.161.28.0/24 maxlen: 24
95.215.1.0/24 maxlen: 24
46.161.29.0/24 maxlen: 24
95.215.2.0/24 maxlen: 24
46.161.32.0/22 maxlen: 22
46.161.42.0/24 maxlen: 24
46.161.48.0/22 maxlen: 22
46.161.48.0/23 maxlen: 23
46.161.50.0/23 maxlen: 23
46.161.48.0/24 maxlen: 24
46.161.51.0/24 maxlen: 24
46.161.49.0/24 maxlen: 24
46.161.50.0/24 maxlen: 24
5.188.44.0/22 maxlen: 22
5.188.44.0/23 maxlen: 23
5.188.44.0/24 maxlen: 24
5.188.46.0/23 maxlen: 23
5.188.49.0/24 maxlen: 24
5.188.47.0/24 maxlen: 24
5.188.48.0/24 maxlen: 24
5.188.46.0/24 maxlen: 24
5.188.45.0/24 maxlen: 24
46.161.2.0/23 maxlen: 24
46.161.11.0/24 maxlen: 24
46.161.10.0/24 maxlen: 24
46.161.8.0/24 maxlen: 24
5.101.4.0/24 maxlen: 24
5.101.2.0/24 maxlen: 24
5.101.3.0/24 maxlen: 24
5.101.0.0/24 maxlen: 24
5.101.1.0/24 maxlen: 24
5.101.2.0/23 maxlen: 23
5.101.4.0/22 maxlen: 22
5.101.4.0/23 maxlen: 23
5.101.0.0/22 maxlen: 22
5.101.0.0/23 maxlen: 23
5.101.7.0/24 maxlen: 24
5.101.5.0/24 maxlen: 24
5.101.6.0/24 maxlen: 24
5.101.6.0/23 maxlen: 23
5.188.62.0/24 maxlen: 24
5.188.60.0/23 maxlen: 23
37.139.51.0/24 maxlen: 24
37.139.49.0/24 maxlen: 24
37.139.58.0/24 maxlen: 24
37.139.57.0/24 maxlen: 24
37.139.56.0/24 maxlen: 24
37.139.53.0/24 maxlen: 24
37.139.58.0/23 maxlen: 23
37.139.56.0/23 maxlen: 23
37.139.56.0/22 maxlen: 22
37.139.54.0/23 maxlen: 23
37.139.59.0/24 maxlen: 24
31.44.184.0/24 maxlen: 24
31.44.188.0/22 maxlen: 32
146.185.244.0/23 maxlen: 23
146.185.196.0/22 maxlen: 22
146.185.224.0/21 maxlen: 21
146.185.223.0/24 maxlen: 24
31.184.192.0/24 maxlen: 24
31.184.192.0/23 maxlen: 23
31.184.192.0/22 maxlen: 22
31.184.193.0/24 maxlen: 24
31.184.196.0/24 maxlen: 24
31.184.195.0/24 maxlen: 24
31.184.196.0/22 maxlen: 22
31.184.196.0/23 maxlen: 23
31.184.194.0/23 maxlen: 23
31.184.194.0/24 maxlen: 24
31.184.199.0/24 maxlen: 24
31.184.198.0/23 maxlen: 23
31.184.197.0/24 maxlen: 24
31.184.198.0/24 maxlen: 24
195.2.240.0/23 maxlen: 24
31.184.231.0/24 maxlen: 24
31.184.232.0/22 maxlen: 24
31.184.228.0/23 maxlen: 23
31.184.238.0/23 maxlen: 23
31.184.243.0/24 maxlen: 24
37.9.36.0/22 maxlen: 22
188.143.232.0/24 maxlen: 24
188.143.233.0/24 maxlen: 24
188.143.232.0/23 maxlen: 23
188.143.232.0/22 maxlen: 22
37.9.50.0/24 maxlen: 24
37.9.48.0/24 maxlen: 24
188.143.235.0/24 maxlen: 24
37.9.52.0/22 maxlen: 22
91.243.93.0/24 maxlen: 24
5.8.52.0/23 maxlen: 23
5.8.54.0/23 maxlen: 23
5.8.52.0/22 maxlen: 22
5.8.56.0/24 maxlen: 24
5.8.57.0/24 maxlen: 24
5.8.54.0/24 maxlen: 24
5.8.55.0/24 maxlen: 24
5.8.53.0/24 maxlen: 24
5.8.52.0/24 maxlen: 24
5.8.60.0/23 maxlen: 23
5.8.62.0/24 maxlen: 24
5.8.59.0/24 maxlen: 24
5.8.65.0/24 maxlen: 24
5.8.8.0/24 maxlen: 24
5.8.10.0/23 maxlen: 23
5.8.8.0/23 maxlen: 23
5.8.8.0/22 maxlen: 22
5.8.11.0/24 maxlen: 24
5.8.9.0/24 maxlen: 24
5.8.10.0/24 maxlen: 24
5.8.12.0/22 maxlen: 22
5.8.20.0/22 maxlen: 22
5.189.248.0/22 maxlen: 22
5.8.48.0/23 maxlen: 23
5.8.48.0/22 maxlen: 22
5.8.50.0/23 maxlen: 23
5.8.49.0/24 maxlen: 24
5.8.50.0/24 maxlen: 24
5.8.48.0/24 maxlen: 24
5.8.51.0/24 maxlen: 24
5.101.66.0/23 maxlen: 23
5.101.66.0/24 maxlen: 24
5.101.67.0/24 maxlen: 24
5.101.65.0/24 maxlen: 24
5.101.68.0/22 maxlen: 22
5.188.220.0/23 maxlen: 24
5.188.223.0/24 maxlen: 24
5.188.222.0/24 maxlen: 24
5.101.80.0/22 maxlen: 22
5.188.233.0/24 maxlen: 24
5.101.84.0/22 maxlen: 22
5.188.234.0/23 maxlen: 23
5.101.90.0/23 maxlen: 23
5.188.166.0/24 maxlen: 24
5.188.165.0/24 maxlen: 24
5.101.32.0/22 maxlen: 24
5.188.204.0/23 maxlen: 23
5.101.64.0/22 maxlen: 22
5.101.64.0/23 maxlen: 23
5.188.211.0/24 maxlen: 24
5.188.210.0/24 maxlen: 24
5.188.207.0/24 maxlen: 24
5.101.64.0/24 maxlen: 24
5.188.208.0/23 maxlen: 23
91.243.48.0/22 maxlen: 22
91.243.48.0/23 maxlen: 23
91.243.50.0/23 maxlen: 23
91.243.51.0/24 maxlen: 24
91.243.50.0/24 maxlen: 24
91.243.48.0/24 maxlen: 24
91.243.49.0/24 maxlen: 24
91.243.52.0/22 maxlen: 22
91.243.62.0/23 maxlen: 23
91.243.60.0/24 maxlen: 24
91.243.61.0/24 maxlen: 24
91.243.91.0/24 maxlen: 24
91.243.90.0/24 maxlen: 24
2a00:1d78:100:1c0::/58 maxlen: 58
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1232331941 (0x4973e4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Apr 7 05:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=742a5bd7d1f23efea376d23dc38dc5c145e16b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:84:ea:41:7c:88:11:fa:c3:42:11:56:bc:
52:bf:74:2c:e7:6c:43:d8:85:5c:c6:dc:e8:32:f2:
fa:8e:25:31:e3:03:50:a5:8d:22:d7:0b:57:30:9d:
a7:f9:29:c1:e4:35:93:21:ec:f7:8d:a4:36:a7:57:
57:ff:27:48:38:ff:0a:58:65:f2:d0:0a:dc:35:d5:
7d:f7:31:94:78:17:3d:e1:bc:b3:11:c9:88:31:63:
9c:0e:58:4c:ad:dd:e3:cb:cb:63:c9:45:39:92:39:
db:06:d9:6f:3c:4b:5e:a5:59:e2:67:b1:77:25:5e:
7e:b7:a1:be:54:fd:0f:22:78:58:42:d6:5f:8b:3f:
9b:d5:06:7b:e0:59:29:d1:6d:23:c0:71:41:26:e0:
b9:bb:be:b8:93:98:5d:92:df:c4:2b:12:d7:2a:2a:
56:bd:c0:8f:a0:6e:b1:08:e1:73:4d:ee:05:47:22:
3b:28:3c:6a:10:c9:c0:79:f4:fd:c0:00:f7:bb:b9:
ef:e0:41:b8:9f:92:e1:30:bf:99:50:51:96:e2:53:
0f:9b:57:d2:9d:9c:1b:36:06:5a:b4:eb:89:4e:94:
4d:0a:a5:03:a8:65:38:54:f0:aa:f3:60:9c:62:9b:
4d:eb:30:ee:de:f6:46:7d:90:14:78:15:d6:b2:04:
ca:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2A:5B:D7:D1:F2:3E:FE:A3:76:D2:3D:C3:8D:C5:C1:45:E1:6B:63
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dCpb19HyPv6jdtI9w43FwUXha2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.8.0/21
5.8.20.0/22
5.8.48.0-5.8.57.255
5.8.59.0-5.8.62.255
5.8.65.0/24
5.101.0.0/21
5.101.32.0/22
5.101.64.0/21
5.101.80.0/21
5.101.90.0/23
5.188.9.0-5.188.11.255
5.188.44.0-5.188.49.255
5.188.60.0-5.188.62.255
5.188.165.0-5.188.166.255
5.188.204.0/23
5.188.207.0-5.188.211.255
5.188.220.0/22
5.188.233.0-5.188.235.255
5.189.248.0/22
31.44.184.0/24
31.44.188.0/22
31.184.192.0/21
31.184.228.0/23
31.184.231.0-31.184.235.255
31.184.238.0/23
31.184.243.0/24
37.9.36.0/22
37.9.48.0/24
37.9.50.0/24
37.9.52.0/22
37.139.49.0/24
37.139.51.0/24
37.139.53.0-37.139.59.255
46.161.2.0/23
46.161.8.0/24
46.161.10.0/23
46.161.14.0/23
46.161.20.0-46.161.25.255
46.161.28.0-46.161.30.255
46.161.32.0/22
46.161.42.0/24
46.161.48.0/22
91.243.48.0/21
91.243.60.0/22
91.243.90.0/23
91.243.93.0/24
95.215.0.0/22
146.185.196.0/22
146.185.223.0-146.185.231.255
146.185.244.0/23
188.143.232.0/22
195.2.240.0/23
IPv6:
2a00:1d78:100:1c0::/58
Signature Algorithm: sha256WithRSAEncryption
2f:2d:c0:5c:a9:39:3a:af:fd:fe:8d:50:64:ab:15:21:ce:03:
ac:96:a3:4d:4c:34:16:52:0f:a9:6e:e9:68:31:7c:4b:5d:fb:
21:6e:37:80:df:4d:41:ea:4a:5f:6f:a2:6d:0b:d6:1d:89:9e:
a5:54:45:71:c0:9a:67:55:bc:36:7d:9f:a6:1c:a5:a2:2f:09:
89:70:8f:24:92:58:a5:dc:f0:4a:b2:d9:76:2e:dc:ee:18:dc:
49:c7:05:8c:e3:e3:2c:3b:3a:6b:b7:ee:d5:3a:26:03:36:71:
b7:ba:cb:92:c8:d8:e0:9a:2f:89:4b:a3:5e:eb:e4:c9:55:0a:
3b:b5:1c:82:4d:e4:e8:4e:cc:76:42:cd:81:cb:01:d9:58:24:
13:a5:4d:b0:be:95:53:5f:30:e2:41:44:2d:00:03:ea:13:82:
39:dc:73:7e:b6:14:6e:ff:e5:db:09:c4:e7:68:13:77:d2:ea:
f0:ce:ba:89:cd:00:cc:b8:23:1b:01:fd:90:5a:3c:6e:29:1f:
c3:11:8d:ac:64:c6:24:5a:7c:89:88:33:ef:f1:83:fa:80:2f:
49:27:9f:d4:e3:5e:46:4a:9b:11:1d:6b:b9:18:82:80:71:04:
8b:a6:c0:9e:aa:37:31:44:03:3a:2c:5b:0b:a0:7b:a6:6e:97:
8a:3e:ee:0b
-----BEGIN CERTIFICATE-----
MIIGpjCCBY6gAwIBAgIESXPkpTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWFhOGEwYTVmZGZkNjk4ZTEwNGJlMzZhMmFlZWM4MTNhZWNhMDcxMB4XDTIyMDQw
NzA1MDM0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQyYTViZDdkMWYy
M2VmZWEzNzZkMjNkYzM4ZGM1YzE0NWUxNmI2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaKhOpBfIgR+sNCEVa8Ur90LOdsQ9iFXMbc6DLy+o4lMeMD
UKWNItcLVzCdp/kpweQ1kyHs942kNqdXV/8nSDj/Clhl8tAK3DXVffcxlHgXPeG8
sxHJiDFjnA5YTK3d48vLY8lFOZI52wbZbzxLXqVZ4mexdyVefrehvlT9DyJ4WELW
X4s/m9UGe+BZKdFtI8BxQSbgubu+uJOYXZLfxCsS1yoqVr3Aj6BusQjhc03uBUci
Oyg8ahDJwHn0/cAA97u57+BBuJ+S4TC/mVBRluJTD5tX0p2cGzYGWrTriU6UTQql
A6hlOFTwqvNgnGKbTesw7t72Rn2QFHgV1rIEygECAwEAAaOCA8AwggO8MB0GA1Ud
DgQWBBR0KlvX0fI+/qN20j3DjcXBReFrYzAfBgNVHSMEGDAWgBTqqooKX9/WmOEE
vjairuyBOuygcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZxcUtDbF9mMXBqaEJMNDJvcTdzZ1Ryc29IRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8x
L2RDcGIxOUh5UHY2amR0STl3NDNGd1VYaGEyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8xLzZxcUtDbF9mMXBq
aEJMNDJvcTdzZ1Ryc29IRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AdQGCCsGAQUFBwEHAQH/BIIBwzCCAb8wggGoBAIAATCCAaADBAMFCAgDBAIFCBQw
DAMEBAUIMAMEAQUIODAMAwQABQg7AwQABQg+AwQABQhBAwQDBWUAAwQCBWUgAwQD
BWVAAwQDBWVQAwQBBWVaMAwDBAAFvAkDBAIFvAgwDAMEAgW8LAMEAQW8MDAMAwQC
Bbw8AwQABbw+MAwDBAAFvKUDBAAFvKYDBAEFvMwwDAMEAAW8zwMEAgW80AMEAgW8
3DAMAwQABbzpAwQCBbzoAwQCBb34AwQAHyy4AwQCHyy8AwQDH7jAAwQBH7jkMAwD
BAAfuOcDBAIfuOgDBAEfuO4DBAAfuPMDBAIlCSQDBAAlCTADBAAlCTIDBAIlCTQD
BAAlizEDBAAlizMwDAMEACWLNQMEAiWLOAMEAS6hAgMEAC6hCAMEAS6hCgMEAS6h
DjAMAwQCLqEUAwQBLqEYMAwDBAIuoRwDBAAuoR4DBAIuoSADBAAuoSoDBAIuoTAD
BANb8zADBAJb8zwDBAFb81oDBABb810DBAJf1wADBAKSucQwDAMEAJK53wMEA5K5
4AMEAZK59AMEAryP6AMEAcMC8DARBAIAAjALAwkGKgAdeAEAAcAwDQYJKoZIhvcN
AQELBQADggEBAC8twFypOTqv/f6NUGSrFSHOA6yWo01MNBZSD6lu6WgxfEtd+yFu
N4DfTUHqSl9vom0L1h2JnqVURXHAmmdVvDZ9n6YcpaIvCYlwjySSWKXc8Eqy2XYu
3O4Y3EnHBYzj4yw7Omu37tU6JgM2cbe6y5LI2OCaL4lLo17r5MlVCju1HIJN5OhO
zHZCzYHLAdlYJBOlTbC+lVNfMOJBRC0AA+oTgjncc362FG7/5dsJxOdoE3fS6vDO
uonNAMy4IxsB/ZBaPG4pH8MRjaxkxiRafImIM+/xg/qAL0knn9TjXkZKmxEda7kY
goBxBIumwJ6qNzFEAzosWwuge6Zul4o+7gs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org