Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/iqJ17TXQ7izoGBelBSwMH3Lv8v8.roa
File: iqJ17TXQ7izoGBelBSwMH3Lv8v8.roa (raw, json)
Hash identifier: VLAo4yzCQzwuoPVXsbAK/t3z8QVAVh6hJUqmnqj7cOs=
Subject key identifier: 8A:A2:75:ED:35:D0:EE:2C:E8:18:17:A5:05:2C:0C:1F:72:EF:F2:FF
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 01851A3E8DB13004D033BA62F32A0E5E4978
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/iqJ17TXQ7izoGBelBSwMH3Lv8v8.roa
Signing time: Fri 16 Dec 2022 09:23:05 +0000
ROA not before: Fri 16 Dec 2022 09:23:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204601
IP address blocks: 45.12.215.0/24 maxlen: 24
45.12.214.0/24 maxlen: 24
45.87.0.0/22 maxlen: 22
45.147.197.0/24 maxlen: 24
45.147.196.0/24 maxlen: 24
45.147.198.0/24 maxlen: 24
45.147.199.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
45.12.212.0/24 maxlen: 24
45.12.213.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
45.66.8.0/24 maxlen: 24
45.66.11.0/24 maxlen: 24
45.66.9.0/24 maxlen: 24
45.66.10.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
91.201.25.0/24 maxlen: 24
185.154.12.0/24 maxlen: 24
185.154.14.0/24 maxlen: 24
185.154.15.0/24 maxlen: 24
185.154.13.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
45.132.106.0/24 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
45.91.202.0/24 maxlen: 24
45.91.203.0/24 maxlen: 24
45.132.104.0/24 maxlen: 24
45.132.105.0/24 maxlen: 24
92.119.112.0/24 maxlen: 24
92.119.115.0/24 maxlen: 24
92.119.113.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
185.213.210.0/24 maxlen: 24
185.213.208.0/22 maxlen: 22
185.213.208.0/24 maxlen: 24
185.213.209.0/24 maxlen: 24
185.213.211.0/24 maxlen: 24
80.85.136.0/21 maxlen: 21
185.206.213.0/24 maxlen: 24
185.206.212.0/24 maxlen: 24
185.206.214.0/24 maxlen: 24
185.206.215.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.219.82.0/24 maxlen: 24
185.219.80.0/22 maxlen: 22
185.219.83.0/24 maxlen: 24
185.219.80.0/24 maxlen: 24
185.219.81.0/24 maxlen: 24
176.57.69.0/24 maxlen: 24
176.57.70.0/24 maxlen: 24
176.57.68.0/24 maxlen: 24
176.57.71.0/24 maxlen: 24
103.246.144.0/22 maxlen: 22
81.91.176.0/22 maxlen: 22
81.91.178.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
77.83.172.0/24 maxlen: 24
77.83.173.0/24 maxlen: 24
77.83.174.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
91.211.249.0/24 maxlen: 24
91.211.248.0/24 maxlen: 24
91.211.250.0/24 maxlen: 24
91.211.251.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
185.203.240.0/22 maxlen: 22
185.203.240.0/24 maxlen: 24
185.203.242.0/24 maxlen: 24
185.203.243.0/24 maxlen: 24
185.203.241.0/24 maxlen: 24
45.82.176.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.219.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
185.224.132.0/22 maxlen: 22
185.224.132.0/24 maxlen: 24
185.231.70.0/24 maxlen: 24
185.224.134.0/24 maxlen: 24
185.224.133.0/24 maxlen: 24
185.231.68.0/22 maxlen: 22
212.8.246.0/24 maxlen: 24
185.224.135.0/24 maxlen: 24
185.231.68.0/24 maxlen: 24
185.231.71.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
185.231.69.0/24 maxlen: 24
45.88.106.0/24 maxlen: 24
45.88.107.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
45.81.224.0/22 maxlen: 22
185.250.206.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.84.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.82.68.0/22 maxlen: 22
95.215.204.0/22 maxlen: 22
185.209.20.0/24 maxlen: 24
185.209.21.0/24 maxlen: 24
185.209.20.0/22 maxlen: 22
185.209.22.0/24 maxlen: 24
185.209.23.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
45.88.78.0/24 maxlen: 24
45.88.76.0/24 maxlen: 24
45.88.77.0/24 maxlen: 24
45.88.79.0/24 maxlen: 24
45.88.104.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
85.209.90.0/24 maxlen: 24
85.209.88.0/24 maxlen: 24
85.209.89.0/24 maxlen: 24
85.209.91.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:3e:8d:b1:30:04:d0:33:ba:62:f3:2a:0e:5e:49:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Dec 16 09:23:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aa275ed35d0ee2ce81817a5052c0c1f72eff2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bd:f6:14:b7:da:3a:c7:57:34:a2:44:96:4a:
44:cc:98:49:42:cb:09:59:67:70:64:cc:0c:1a:1f:
1a:0b:e3:95:b2:fc:a7:ea:92:32:33:f8:d9:c3:87:
c3:9a:f3:ea:36:6e:28:c1:83:ec:55:67:1e:0a:98:
cf:6d:fe:5c:d9:ba:28:f6:df:d8:ec:5e:fe:48:89:
9b:c2:38:b3:82:69:b8:e2:90:df:c5:62:71:f1:71:
f2:de:d9:32:67:0a:d8:b1:24:10:c4:80:fe:bb:52:
8c:71:0e:68:e5:bd:58:20:b5:eb:ae:5d:f1:1c:3c:
ba:42:33:fe:cb:17:3a:a6:5c:1b:52:9d:ff:d3:9b:
7f:c4:4c:da:39:8c:75:21:ae:18:3e:80:6f:4c:e9:
a0:c8:93:d6:b0:03:c8:ed:0b:10:c1:10:d7:cd:2c:
23:96:e4:67:8d:39:81:54:8d:3b:b4:0d:f7:d0:ea:
af:09:46:69:b9:16:78:4f:14:74:d1:a8:50:a0:bb:
77:1f:6e:96:ec:18:e7:a3:d1:cc:ec:3f:a1:f5:24:
f0:0c:46:5b:bd:68:a5:58:87:06:f8:06:9f:e7:e4:
04:7c:05:30:18:dd:07:3f:3d:31:45:92:0f:1e:e8:
1f:4e:d6:ae:ee:35:e0:91:b1:13:50:43:2e:92:77:
8a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A2:75:ED:35:D0:EE:2C:E8:18:17:A5:05:2C:0C:1F:72:EF:F2:FF
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/iqJ17TXQ7izoGBelBSwMH3Lv8v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.212.0/22
45.66.8.0/22
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.88.76.0/22
45.88.104.0/22
45.91.200.0/22
45.132.104.0/22
45.136.84.0/22
45.137.64.0/22
45.147.196.0/22
46.21.250.0/24
77.83.172.0/22
77.220.212.0/22
80.85.136.0/21
81.91.176.0/22
85.209.88.0/22
91.201.25.0/24
91.211.248.0/22
91.228.56.0/24
92.119.112.0/22
95.215.204.0/22
103.246.144.0/22
176.57.68.0/22
178.159.38.0/23
178.159.42.0/23
185.51.246.0/23
185.107.237.0/24
185.154.12.0/22
185.203.240.0/22
185.204.109.0/24
185.206.212.0/22
185.209.20.0/22
185.213.208.0/22
185.219.80.0/22
185.224.132.0/22
185.231.68.0/22
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
193.163.113.0/24
212.8.244.0/24
212.8.246.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
81:dd:1f:7b:e8:2c:be:6c:25:c3:ab:81:59:e2:26:47:b9:a5:
39:88:ca:c9:aa:83:8f:5a:17:cb:01:fc:55:43:90:b2:27:2a:
04:38:31:9b:9a:83:f2:03:ee:04:22:99:77:cc:b4:51:81:00:
fe:4e:3e:b2:a8:fe:a7:26:1d:e0:4e:c2:94:f7:bd:52:33:6d:
e4:f4:ab:70:01:35:b6:7b:f2:84:c2:e7:2b:79:08:19:a6:89:
c4:b0:9b:17:3f:da:13:72:00:32:ab:87:02:39:84:bf:00:c1:
13:d3:40:8a:09:fa:55:0b:60:c6:fc:07:95:22:2f:96:ea:24:
34:0d:f3:79:e3:4a:44:c6:ca:ed:23:65:34:ca:ab:84:6b:e5:
80:91:05:21:3e:e1:c5:77:4e:07:62:e1:f2:a2:3a:e3:1e:20:
08:9f:e6:4b:c5:40:e0:ed:e7:ef:d8:7e:33:1c:f0:1b:3e:74:
e0:28:e7:7e:e9:fb:6b:05:3f:f1:8f:93:13:e4:eb:79:86:6d:
93:c4:28:8b:38:ea:cd:ef:8e:4c:4f:62:47:b9:95:23:19:7e:
68:31:82:e9:a7:a6:0e:f2:b0:41:9f:a7:de:d9:be:51:2f:b3:
2f:1f:ca:98:73:c6:c6:bf:50:f2:2d:5e:d1:09:9f:0d:ea:83:
c0:2c:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org