Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/O3hSJaQUSU0dWsDJpZeklYIgfjQ.roa
File: O3hSJaQUSU0dWsDJpZeklYIgfjQ.roa (raw, json)
Hash identifier: W5mFAXHXm806f5OQq4PvQh92efG0qNtdLfP1Zq1iLCY=
Subject key identifier: 3B:78:52:25:A4:14:49:4D:1D:5A:C0:C9:A5:97:A4:95:82:20:7E:34
Certificate issuer: /CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Certificate serial: 018A175CFCF4C91625739B53554CE8FAD1E2
Authority key identifier: AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/O3hSJaQUSU0dWsDJpZeklYIgfjQ.roa
Signing time: Mon 21 Aug 2023 09:11:24 +0000
ROA not before: Mon 21 Aug 2023 09:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25229
IP address blocks: 77.121.17.0/24 maxlen: 24
77.121.16.0/24 maxlen: 24
77.121.15.0/24 maxlen: 24
77.121.13.0/24 maxlen: 24
109.201.227.0/24 maxlen: 24
77.121.12.0/24 maxlen: 24
77.121.18.0/24 maxlen: 24
77.121.19.0/24 maxlen: 24
77.121.24.0/24 maxlen: 24
77.121.23.0/24 maxlen: 24
77.121.22.0/24 maxlen: 24
77.121.21.0/24 maxlen: 24
77.121.20.0/24 maxlen: 24
77.121.30.0/24 maxlen: 24
77.121.29.0/24 maxlen: 24
77.121.28.0/24 maxlen: 24
77.121.26.0/24 maxlen: 24
77.121.25.0/24 maxlen: 24
93.74.0.0/17 maxlen: 18
93.74.0.0/16 maxlen: 17
109.201.226.0/24 maxlen: 24
109.201.225.0/24 maxlen: 24
109.201.224.0/24 maxlen: 24
77.120.4.0/24 maxlen: 24
77.120.6.0/24 maxlen: 24
93.73.0.0/16 maxlen: 17
93.72.0.0/16 maxlen: 17
93.72.0.0/15 maxlen: 16
95.69.240.0/21 maxlen: 22
77.123.64.0/19 maxlen: 20
77.123.0.0/18 maxlen: 19
77.123.32.0/19 maxlen: 20
77.123.160.0/19 maxlen: 20
95.69.192.0/19 maxlen: 20
141.170.226.0/24 maxlen: 24
141.170.229.0/24 maxlen: 24
141.170.227.0/24 maxlen: 24
141.170.233.0/24 maxlen: 24
141.170.232.0/24 maxlen: 24
141.170.231.0/24 maxlen: 24
141.170.230.0/24 maxlen: 24
141.170.238.0/24 maxlen: 24
95.69.224.0/21 maxlen: 22
141.170.236.0/24 maxlen: 24
77.123.96.0/21 maxlen: 22
77.123.104.0/21 maxlen: 22
95.69.128.0/20 maxlen: 21
95.69.144.0/21 maxlen: 22
77.123.112.0/21 maxlen: 22
95.69.152.0/22 maxlen: 23
77.123.120.0/21 maxlen: 22
77.123.128.0/19 maxlen: 20
95.69.156.0/22 maxlen: 23
95.69.160.0/19 maxlen: 20
77.123.144.0/22 maxlen: 22
188.230.28.0/22 maxlen: 23
188.230.26.0/23 maxlen: 24
188.230.32.0/21 maxlen: 22
188.230.40.0/21 maxlen: 22
188.230.48.0/21 maxlen: 22
188.230.56.0/21 maxlen: 22
188.230.64.0/21 maxlen: 22
188.230.78.0/23 maxlen: 24
77.122.128.0/17 maxlen: 18
188.230.74.0/23 maxlen: 24
188.230.0.0/21 maxlen: 22
188.230.0.0/22 maxlen: 23
188.230.4.0/23 maxlen: 24
188.230.8.0/21 maxlen: 22
188.230.16.0/21 maxlen: 22
188.230.24.0/23 maxlen: 24
77.244.32.0/20 maxlen: 21
188.230.80.0/21 maxlen: 22
188.230.88.0/22 maxlen: 23
188.230.96.0/23 maxlen: 24
188.230.92.0/23 maxlen: 24
188.230.116.0/23 maxlen: 24
77.121.128.0/20 maxlen: 21
77.121.144.0/20 maxlen: 21
77.121.160.0/19 maxlen: 20
77.121.72.0/21 maxlen: 22
77.121.80.0/20 maxlen: 21
77.121.96.0/20 maxlen: 21
77.121.96.0/19 maxlen: 20
77.121.112.0/20 maxlen: 21
77.122.0.0/17 maxlen: 18
77.122.0.0/16 maxlen: 17
77.121.192.0/20 maxlen: 21
77.121.192.0/19 maxlen: 20
77.121.208.0/21 maxlen: 22
77.121.216.0/21 maxlen: 22
77.121.224.0/19 maxlen: 20
77.120.192.0/21 maxlen: 22
77.120.200.0/21 maxlen: 22
77.120.208.0/21 maxlen: 22
77.120.112.0/22 maxlen: 22
77.120.128.0/18 maxlen: 24
109.201.232.0/22 maxlen: 23
109.201.228.0/22 maxlen: 23
109.201.238.0/23 maxlen: 24
109.201.236.0/23 maxlen: 24
109.201.240.0/20 maxlen: 21
77.121.64.0/21 maxlen: 22
77.120.216.0/22 maxlen: 23
77.120.224.0/20 maxlen: 21
77.120.220.0/22 maxlen: 23
77.120.240.0/20 maxlen: 21
77.120.248.0/21 maxlen: 22
77.121.0.0/21 maxlen: 22
77.121.8.0/22 maxlen: 23
77.120.52.0/22 maxlen: 23
77.120.64.0/21 maxlen: 22
77.120.60.0/22 maxlen: 23
77.120.72.0/21 maxlen: 22
77.120.80.0/20 maxlen: 21
77.120.96.0/19 maxlen: 20
77.120.0.0/20 maxlen: 21
77.120.16.0/20 maxlen: 21
77.120.32.0/20 maxlen: 21
93.78.128.0/17 maxlen: 18
93.78.128.0/18 maxlen: 19
93.78.192.0/18 maxlen: 19
93.77.192.0/19 maxlen: 20
93.77.224.0/19 maxlen: 20
93.77.128.0/19 maxlen: 20
93.77.0.0/19 maxlen: 20
93.76.160.0/19 maxlen: 20
95.69.232.0/24 maxlen: 24
141.170.244.0/22 maxlen: 23
141.170.250.0/23 maxlen: 24
141.170.248.0/23 maxlen: 24
141.170.248.0/21 maxlen: 22
95.69.253.0/24 maxlen: 24
95.69.252.0/24 maxlen: 24
95.69.255.0/24 maxlen: 24
95.69.254.0/24 maxlen: 24
93.76.192.0/18 maxlen: 19
93.77.64.0/18 maxlen: 19
82.144.192.0/19 maxlen: 20
93.77.32.0/20 maxlen: 21
93.77.48.0/21 maxlen: 22
93.77.56.0/21 maxlen: 22
93.76.0.0/19 maxlen: 20
93.76.32.0/20 maxlen: 21
93.76.48.0/20 maxlen: 21
93.75.224.0/19 maxlen: 20
93.76.112.0/20 maxlen: 21
93.76.128.0/19 maxlen: 20
141.170.226.0/23 maxlen: 24
141.170.224.0/23 maxlen: 24
141.170.234.0/23 maxlen: 24
141.170.240.0/22 maxlen: 23
93.76.64.0/20 maxlen: 21
93.76.80.0/21 maxlen: 22
93.76.88.0/21 maxlen: 22
93.76.96.0/21 maxlen: 22
93.76.104.0/21 maxlen: 22
93.75.64.0/21 maxlen: 22
93.75.72.0/21 maxlen: 22
93.75.80.0/21 maxlen: 22
188.230.71.0/24 maxlen: 24
188.230.77.0/24 maxlen: 24
188.230.76.0/24 maxlen: 24
93.75.88.0/21 maxlen: 22
188.230.73.0/24 maxlen: 24
188.230.72.0/24 maxlen: 24
93.75.0.0/19 maxlen: 20
188.230.7.0/24 maxlen: 24
93.75.32.0/19 maxlen: 20
93.75.160.0/21 maxlen: 22
93.75.168.0/21 maxlen: 22
93.75.176.0/21 maxlen: 22
93.75.184.0/21 maxlen: 22
93.75.192.0/19 maxlen: 20
93.75.192.0/18 maxlen: 19
93.75.96.0/19 maxlen: 20
188.230.98.0/24 maxlen: 24
188.230.95.0/24 maxlen: 24
188.230.94.0/24 maxlen: 24
188.230.105.0/24 maxlen: 24
188.230.104.0/24 maxlen: 24
188.230.103.0/24 maxlen: 24
188.230.102.0/24 maxlen: 24
188.230.100.0/24 maxlen: 24
188.230.99.0/24 maxlen: 24
188.230.112.0/24 maxlen: 24
188.230.111.0/24 maxlen: 24
188.230.109.0/24 maxlen: 24
188.230.108.0/24 maxlen: 24
188.230.107.0/24 maxlen: 24
188.230.106.0/24 maxlen: 24
93.75.128.0/19 maxlen: 20
188.230.115.0/24 maxlen: 24
188.230.113.0/24 maxlen: 24
93.74.128.0/17 maxlen: 18
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:5c:fc:f4:c9:16:25:73:9b:53:55:4c:e8:fa:d1:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Validity
Not Before: Aug 21 09:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b785225a414494d1d5ac0c9a597a49582207e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:bb:60:76:7c:18:91:40:24:97:9b:8b:61:34:
c9:0e:57:d8:1e:36:40:01:cc:60:9d:ac:ec:7c:76:
b7:28:58:98:84:6e:35:2e:39:93:f4:b5:e2:78:b4:
7a:2e:ce:b7:04:db:32:01:ec:f4:06:56:14:0e:43:
f1:b1:82:6e:ea:c8:93:70:e9:82:d9:28:37:e8:58:
a3:54:cc:83:56:0d:f5:c4:e3:c2:3d:f0:a4:3c:13:
31:61:0d:db:b6:e7:8e:42:7b:bd:55:5f:cd:fa:c5:
f7:e9:c7:b0:a9:0b:a8:9c:f7:7d:74:87:7a:0a:e8:
5b:8d:48:37:3b:95:37:cc:82:93:21:be:bc:6b:c4:
e7:87:9f:81:74:67:f5:78:34:a0:70:6a:44:d5:9b:
4f:a5:2a:83:9b:8f:a8:b2:25:5f:ba:06:24:f4:62:
54:82:74:68:a1:0f:37:ef:19:23:9a:1d:0b:04:a3:
d9:1f:57:f0:46:32:73:4a:9f:d3:7c:1c:0e:6f:08:
c8:7d:86:f5:1d:89:e3:1c:a6:51:51:54:56:25:2f:
51:21:c7:e6:3b:76:b7:35:a6:0c:8a:a0:8a:05:4a:
bb:ee:51:dd:53:0c:4f:2e:43:ea:5c:9c:98:89:98:
5a:5c:69:b6:e8:4d:66:62:5c:05:67:18:c1:50:81:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:78:52:25:A4:14:49:4D:1D:5A:C0:C9:A5:97:A4:95:82:20:7E:34
X509v3 Authority Key Identifier:
keyid:AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/O3hSJaQUSU0dWsDJpZeklYIgfjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/rV7aCh50ecTKeP5BxY0X6dE7Z6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.120.0.0-77.120.47.255
77.120.52.0/22
77.120.60.0-77.121.13.255
77.121.15.0-77.121.26.255
77.121.28.0-77.121.30.255
77.121.64.0-77.123.191.255
77.244.32.0/20
82.144.192.0/19
93.72.0.0-93.77.159.255
93.77.192.0/18
93.78.128.0/17
95.69.128.0-95.69.232.255
95.69.240.0/21
95.69.252.0/22
109.201.224.0/19
141.170.224.0/22
141.170.229.0-141.170.236.255
141.170.238.0/24
141.170.240.0/20
188.230.0.0-188.230.100.255
188.230.102.0-188.230.109.255
188.230.111.0-188.230.113.255
188.230.115.0-188.230.117.255
Signature Algorithm: sha256WithRSAEncryption
27:41:d0:62:6d:e6:be:2b:89:a6:11:c8:98:1b:7b:6b:21:2b:
19:f4:a8:22:07:c5:b0:49:9e:f1:b7:88:54:25:32:39:75:a2:
66:53:f2:3f:96:37:3f:de:0e:7a:de:d2:97:ff:98:bc:82:51:
86:59:7f:58:d7:65:0c:17:09:3a:5d:b3:8d:96:69:81:d4:32:
99:23:8e:d9:fe:29:80:29:1c:b2:77:f5:e2:d4:7e:2e:62:c6:
34:96:98:0a:a5:3e:97:52:06:52:42:fc:fd:35:38:95:37:46:
01:58:dd:02:2e:82:68:69:e2:03:f6:cc:50:79:51:cd:cc:76:
a5:2c:ab:e4:85:f7:16:c9:59:27:25:2e:93:ef:ea:fe:db:a9:
f0:48:5e:0b:a5:97:b9:a6:83:7b:b8:70:7f:eb:06:fb:6d:67:
c0:e0:f1:a1:f9:6b:3f:67:bd:fe:cb:3e:6a:98:f2:6a:8e:de:
cc:9a:d3:33:1e:d0:73:9c:c9:54:bd:62:01:da:cd:28:05:51:
63:6b:73:cb:67:13:8f:1b:49:69:1b:80:eb:1c:b6:cc:c6:b3:
32:b0:3d:e4:96:49:aa:32:9b:57:f4:81:c4:e7:c1:7e:d1:ee:
b4:e9:18:c4:7b:0a:1f:4b:e7:97:f9:43:3c:29:20:18:f2:b9:
6b:c8:d0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:17 2024 by rpki-client on console-ams.rpki-client.org