Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/GOeFWkg79c7C6V06h0Qz5UvFNQE.roa
File: GOeFWkg79c7C6V06h0Qz5UvFNQE.roa (raw, json)
Hash identifier: lvjXYN2ZVrwJ8HyAIoqeHXuRb1we5+Y4vd8KDibe51o=
Subject key identifier: 18:E7:85:5A:48:3B:F5:CE:C2:E9:5D:3A:87:44:33:E5:4B:C5:35:01
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 063E296D
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/GOeFWkg79c7C6V06h0Qz5UvFNQE.roa
Signing time: Tue 15 Feb 2022 09:43:14 +0000
ROA not before: Tue 15 Feb 2022 09:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204601
IP address blocks: 45.12.215.0/24 maxlen: 24
45.12.214.0/24 maxlen: 24
45.147.197.0/24 maxlen: 24
45.147.196.0/24 maxlen: 24
45.147.198.0/24 maxlen: 24
45.147.199.0/24 maxlen: 24
45.12.212.0/24 maxlen: 24
45.12.213.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
45.66.8.0/24 maxlen: 24
45.66.11.0/24 maxlen: 24
45.66.9.0/24 maxlen: 24
45.66.10.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
91.201.25.0/24 maxlen: 24
185.154.12.0/24 maxlen: 24
185.154.14.0/24 maxlen: 24
185.154.15.0/24 maxlen: 24
185.154.13.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
45.132.106.0/24 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
45.91.202.0/24 maxlen: 24
45.91.203.0/24 maxlen: 24
45.132.104.0/24 maxlen: 24
45.132.105.0/24 maxlen: 24
92.119.112.0/24 maxlen: 24
92.119.115.0/24 maxlen: 24
92.119.113.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
185.213.210.0/24 maxlen: 24
185.213.208.0/22 maxlen: 22
185.213.208.0/24 maxlen: 24
185.213.209.0/24 maxlen: 24
185.213.211.0/24 maxlen: 24
80.85.136.0/21 maxlen: 21
185.206.213.0/24 maxlen: 24
185.206.212.0/24 maxlen: 24
185.206.214.0/24 maxlen: 24
185.206.215.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.219.82.0/24 maxlen: 24
185.219.80.0/22 maxlen: 22
185.219.83.0/24 maxlen: 24
185.219.80.0/24 maxlen: 24
185.219.81.0/24 maxlen: 24
176.57.69.0/24 maxlen: 24
176.57.70.0/24 maxlen: 24
176.57.68.0/24 maxlen: 24
176.57.71.0/24 maxlen: 24
103.246.144.0/22 maxlen: 22
81.91.176.0/22 maxlen: 22
81.91.178.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
77.83.172.0/24 maxlen: 24
77.83.173.0/24 maxlen: 24
77.83.174.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
91.211.249.0/24 maxlen: 24
91.211.248.0/24 maxlen: 24
91.211.250.0/24 maxlen: 24
91.211.251.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
185.203.240.0/22 maxlen: 22
185.203.240.0/24 maxlen: 24
185.203.242.0/24 maxlen: 24
185.203.243.0/24 maxlen: 24
185.203.241.0/24 maxlen: 24
185.244.216.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.219.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.224.132.0/22 maxlen: 22
185.224.132.0/24 maxlen: 24
185.231.70.0/24 maxlen: 24
185.224.134.0/24 maxlen: 24
185.224.133.0/24 maxlen: 24
185.231.68.0/22 maxlen: 22
212.8.246.0/24 maxlen: 24
185.224.135.0/24 maxlen: 24
185.231.68.0/24 maxlen: 24
185.231.71.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
185.231.69.0/24 maxlen: 24
45.88.106.0/24 maxlen: 24
45.88.107.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
95.215.204.0/22 maxlen: 22
185.209.20.0/24 maxlen: 24
185.209.21.0/24 maxlen: 24
185.209.20.0/22 maxlen: 22
185.209.22.0/24 maxlen: 24
185.209.23.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
45.88.78.0/24 maxlen: 24
45.88.76.0/24 maxlen: 24
45.88.77.0/24 maxlen: 24
45.88.79.0/24 maxlen: 24
45.88.104.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
85.209.90.0/24 maxlen: 24
85.209.88.0/24 maxlen: 24
85.209.89.0/24 maxlen: 24
85.209.91.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104737133 (0x63e296d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Feb 15 09:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18e7855a483bf5cec2e95d3a874433e54bc53501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:58:4e:97:74:83:e9:ab:16:6e:9c:b1:e4:12:
5e:93:3c:f9:ae:12:b9:17:06:1a:d5:82:51:b3:00:
24:8e:52:dc:e3:7b:ef:45:92:33:72:9d:91:be:e9:
e6:cf:ba:72:30:15:00:f0:71:13:da:00:1e:c4:81:
5c:fe:cc:53:1c:19:03:aa:f4:8f:01:ee:cf:e4:e9:
7c:d3:96:01:88:c6:54:49:d5:59:fe:62:15:01:1b:
0a:cd:2f:a8:d2:f9:65:aa:94:8e:12:ba:d6:44:56:
08:c7:04:0c:61:4b:8b:ad:38:54:6c:d5:6e:18:8c:
50:06:69:01:08:65:73:5b:ff:15:fe:6f:d6:9a:9d:
27:39:c5:3c:df:c8:59:0e:37:47:a0:c3:88:c8:76:
f2:e4:fc:9f:81:a1:4c:80:a9:92:cb:0f:7f:8b:36:
f6:96:f7:92:be:2f:5e:a8:03:37:3e:7f:3a:44:ba:
d0:9e:e9:be:f6:0b:d9:3c:28:f6:2a:dc:20:29:f1:
ef:02:65:1b:e7:2a:64:f6:98:a1:92:df:41:1e:5c:
f0:08:cf:9a:3d:dd:45:d8:3e:46:a3:b1:84:61:30:
4c:4d:45:7b:52:b7:96:6e:87:4c:47:f7:3e:f2:18:
46:5b:65:0e:47:c9:0b:40:53:6d:3e:94:b6:07:64:
ae:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E7:85:5A:48:3B:F5:CE:C2:E9:5D:3A:87:44:33:E5:4B:C5:35:01
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/GOeFWkg79c7C6V06h0Qz5UvFNQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.212.0/22
45.66.8.0/22
45.88.76.0/22
45.88.104.0/22
45.91.200.0/22
45.132.104.0/22
45.147.196.0/22
46.21.250.0/24
77.83.172.0/22
77.220.212.0/22
80.85.136.0/21
81.91.176.0/22
85.209.88.0/22
91.201.25.0/24
91.211.248.0/22
92.119.112.0/22
95.215.204.0/22
103.246.144.0/22
176.57.68.0/22
178.159.38.0/23
178.159.42.0/23
185.51.246.0/23
185.107.237.0/24
185.154.12.0/22
185.203.240.0/22
185.206.212.0/22
185.209.20.0/22
185.213.208.0/22
185.219.80.0/22
185.224.132.0/22
185.231.68.0/22
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
212.8.244.0/24
212.8.246.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
77:e5:70:47:19:4e:e7:ce:61:38:62:05:5b:29:c4:11:24:bb:
50:45:f9:40:5a:2a:c4:27:e7:97:1b:08:8f:5b:2d:59:66:d3:
b0:1b:ad:89:ff:ba:04:00:d6:f5:62:30:f1:6a:94:89:58:6b:
3a:e5:73:ce:81:db:94:e5:34:0f:18:bf:99:cb:ce:b6:25:40:
e3:ab:31:c7:12:45:65:22:bb:ab:7a:42:de:bb:d7:59:18:33:
2f:08:3e:6e:c9:da:3a:4a:fc:c2:a5:4b:b6:6f:8e:37:81:41:
7e:4d:d2:bf:4f:e6:7e:bf:1a:bb:5f:09:e3:74:a9:9d:17:8f:
ee:5e:f8:52:88:21:05:b0:37:c4:88:7e:3a:3c:27:ea:a9:03:
e3:e5:f2:34:9f:3b:57:de:d3:50:90:1b:0a:68:a0:e5:25:2c:
04:d6:d9:c8:b0:b4:90:2a:4d:ba:10:80:84:f7:2f:b4:48:1e:
49:3a:f6:da:46:38:56:79:60:02:2f:da:1f:88:a5:9a:62:d9:
2b:bf:e4:26:2b:c8:f4:44:38:06:b3:60:df:1a:7e:9e:78:37:
92:c7:c4:ba:9e:5d:b7:ce:b2:75:a5:3a:2b:13:45:b8:7e:38:
a8:d2:b3:bd:8e:ff:da:bf:12:a9:85:2a:1d:4b:f8:53:7d:17:
ac:df:43:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org