Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/DOzjumTPeaTdOMUQvxcAj6P-SwI.roa
File: DOzjumTPeaTdOMUQvxcAj6P-SwI.roa (raw, json)
Hash identifier: mCCDwZ0nR+msOhepu+xVl/XwrBw0AVEvqfDAeBt07q0=
Subject key identifier: 0C:EC:E3:BA:64:CF:79:A4:DD:38:C5:10:BF:17:00:8F:A3:FE:4B:02
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018C6D94A08BE4B3721BC652403D45ED3553
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/DOzjumTPeaTdOMUQvxcAj6P-SwI.roa
Signing time: Fri 15 Dec 2023 13:05:06 +0000
ROA not before: Fri 15 Dec 2023 13:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204601
IP address blocks: 45.12.215.0/24 maxlen: 24
45.12.214.0/24 maxlen: 24
45.87.0.0/22 maxlen: 22
45.147.197.0/24 maxlen: 24
45.147.196.0/24 maxlen: 24
45.147.198.0/24 maxlen: 24
45.147.199.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
45.12.212.0/24 maxlen: 24
45.12.213.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
45.66.8.0/24 maxlen: 24
45.66.11.0/24 maxlen: 24
45.66.9.0/24 maxlen: 24
45.66.10.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
91.201.25.0/24 maxlen: 24
185.154.12.0/24 maxlen: 24
185.154.14.0/24 maxlen: 24
185.154.15.0/24 maxlen: 24
185.154.13.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
45.132.106.0/24 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
45.91.202.0/24 maxlen: 24
45.91.203.0/24 maxlen: 24
45.132.104.0/24 maxlen: 24
45.132.105.0/24 maxlen: 24
92.119.112.0/24 maxlen: 24
92.119.115.0/24 maxlen: 24
92.119.113.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
185.213.210.0/24 maxlen: 24
185.213.208.0/22 maxlen: 22
185.213.208.0/24 maxlen: 24
185.213.209.0/24 maxlen: 24
185.213.211.0/24 maxlen: 24
80.85.136.0/21 maxlen: 21
185.206.213.0/24 maxlen: 24
185.206.212.0/24 maxlen: 24
185.206.214.0/24 maxlen: 24
185.206.215.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.219.82.0/24 maxlen: 24
185.219.80.0/22 maxlen: 22
185.219.83.0/24 maxlen: 24
185.219.80.0/24 maxlen: 24
185.219.81.0/24 maxlen: 24
176.57.69.0/24 maxlen: 24
176.57.70.0/24 maxlen: 24
176.57.68.0/24 maxlen: 24
176.57.71.0/24 maxlen: 24
103.246.144.0/22 maxlen: 22
81.91.176.0/22 maxlen: 22
81.91.178.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
77.83.172.0/24 maxlen: 24
77.83.173.0/24 maxlen: 24
77.83.174.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
91.211.249.0/24 maxlen: 24
91.211.248.0/24 maxlen: 24
91.211.250.0/24 maxlen: 24
91.211.251.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
185.203.240.0/22 maxlen: 22
185.203.240.0/24 maxlen: 24
185.203.242.0/24 maxlen: 24
185.203.243.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
185.203.241.0/24 maxlen: 24
45.82.176.0/22 maxlen: 22
185.237.165.0/24 maxlen: 24
185.244.216.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.219.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
185.224.132.0/22 maxlen: 22
185.224.132.0/24 maxlen: 24
185.231.70.0/24 maxlen: 24
185.224.134.0/24 maxlen: 24
185.224.133.0/24 maxlen: 24
185.231.68.0/22 maxlen: 22
212.8.246.0/24 maxlen: 24
185.224.135.0/24 maxlen: 24
185.231.68.0/24 maxlen: 24
185.231.71.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
185.231.69.0/24 maxlen: 24
45.88.106.0/24 maxlen: 24
45.88.107.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
185.229.251.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
45.81.224.0/22 maxlen: 22
185.250.206.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.84.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.82.68.0/22 maxlen: 22
95.215.204.0/22 maxlen: 22
185.209.20.0/24 maxlen: 24
185.209.21.0/24 maxlen: 24
185.209.20.0/22 maxlen: 22
185.209.22.0/24 maxlen: 24
185.209.23.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
45.88.78.0/24 maxlen: 24
45.88.76.0/24 maxlen: 24
45.88.77.0/24 maxlen: 24
45.88.79.0/24 maxlen: 24
45.88.104.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
85.209.90.0/24 maxlen: 24
85.209.88.0/24 maxlen: 24
85.209.89.0/24 maxlen: 24
85.209.91.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:94:a0:8b:e4:b3:72:1b:c6:52:40:3d:45:ed:35:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Dec 15 13:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cece3ba64cf79a4dd38c510bf17008fa3fe4b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:77:c6:0a:05:91:b3:ec:41:e3:a8:41:d1:84:
ab:95:69:ab:75:d8:5b:77:6b:6b:26:2c:7e:b8:e4:
4e:b4:b6:31:fd:c5:56:f4:3e:5d:69:8a:87:ce:52:
3c:c4:36:2e:5d:d3:fa:9a:08:38:e3:e9:07:49:63:
bf:e0:16:cd:d3:2b:ad:70:d9:61:5c:d0:73:14:87:
f0:48:06:e7:81:51:a4:cf:78:f9:e2:da:11:1a:0a:
67:f9:3f:84:83:a3:98:37:0c:95:9e:c8:dc:98:68:
59:87:07:8b:26:cb:0b:91:76:de:d5:d9:dc:aa:2c:
a5:d9:c8:91:c2:5d:92:d4:d0:d4:1f:42:7d:7f:e4:
1e:9e:bd:8e:06:07:e3:30:97:c2:c9:03:54:16:2a:
64:33:80:b8:a5:06:78:93:3d:5f:fc:d0:ac:bb:17:
94:9f:1b:23:d2:6d:1d:d6:b5:99:1f:eb:e5:e5:ae:
43:f8:a6:6e:5b:53:0b:f5:d2:36:40:e5:a1:09:b8:
d7:b8:89:07:98:51:fe:15:7c:94:a9:13:1e:b3:ed:
09:83:3c:82:07:ab:04:8b:90:43:ca:c0:63:f7:ba:
c2:5b:ac:37:e6:f1:c2:af:1d:f4:f6:8f:3f:a5:e8:
f6:5d:08:b1:c8:40:77:3f:b1:1b:03:09:d7:ce:d4:
97:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EC:E3:BA:64:CF:79:A4:DD:38:C5:10:BF:17:00:8F:A3:FE:4B:02
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/DOzjumTPeaTdOMUQvxcAj6P-SwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.212.0/22
45.66.8.0/22
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.88.76.0/22
45.88.104.0/22
45.91.200.0/22
45.132.104.0/22
45.136.84.0/22
45.137.64.0/22
45.147.196.0/22
46.21.250.0/24
77.83.172.0/22
77.220.212.0/22
80.85.136.0/21
81.91.176.0/22
85.209.88.0/22
91.201.25.0/24
91.208.127.0/24
91.211.248.0/22
91.228.56.0/24
92.119.112.0/22
95.215.204.0/22
103.246.144.0/22
176.57.68.0/22
178.159.38.0/23
178.159.42.0/23
185.51.246.0/23
185.107.237.0/24
185.154.12.0/22
185.203.240.0/22
185.204.109.0/24
185.206.212.0/22
185.209.20.0/22
185.213.208.0/22
185.219.80.0/22
185.224.132.0/22
185.229.251.0/24
185.231.68.0/22
185.235.128.0/22
185.237.165.0/24
185.241.52.0/22
185.241.61.0/24
185.244.216.0/22
185.250.204.0/22
185.251.25.0/24
193.163.113.0/24
193.169.105.0/24
212.8.244.0/24
212.8.246.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
22:18:8b:1e:21:22:d1:90:d0:a8:82:3b:ce:81:55:66:6b:91:
3c:a7:7b:2f:7f:e5:96:63:bc:a5:a7:b9:fd:c6:21:0b:5a:f7:
2a:b5:1e:08:49:dd:d3:f6:b6:04:68:62:3e:b0:2b:7f:30:48:
bc:33:b4:df:89:1c:d2:84:a4:3a:6e:ea:55:94:30:a6:f5:9c:
52:c4:d4:29:89:a5:28:dc:27:e0:3e:d6:f5:67:e2:7c:f5:24:
46:1a:a5:5a:7c:b8:27:5d:4d:ae:3a:35:f7:dd:8b:7f:74:3f:
50:53:f6:f5:6f:cd:b5:6f:79:b8:f5:43:b8:15:42:04:91:21:
5a:a0:cb:e0:96:73:99:30:74:0e:3d:e9:94:2a:04:be:8a:e6:
fa:dd:c9:3d:8e:e4:84:c6:ab:ef:26:0c:f9:f2:e6:28:e6:e6:
2e:ea:09:b4:e4:55:a0:54:54:fb:ab:18:5b:08:8d:a6:60:50:
f8:f8:f2:5d:0c:c3:b7:fe:f0:9a:d5:10:4a:11:eb:c7:13:25:
f2:65:53:75:68:93:b8:65:23:dc:ee:99:85:c7:f8:b5:32:19:
56:b3:5d:84:7e:25:4b:c7:5c:f4:85:f0:f8:6b:d1:4f:46:68:
78:81:ae:dd:71:36:2c:4e:11:e9:f3:a8:27:2c:65:45:61:6c:
dc:5b:43:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:06 2025 by rpki-client