Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/IqiD6AxrpQg2mgnm3t1IWgTJ8vQ.roa
File: IqiD6AxrpQg2mgnm3t1IWgTJ8vQ.roa (raw, json)
Hash identifier: 5mNmVX2pqdgROIzPX/fwq3vcsEr7xerlBQTKI5VPZCg=
Subject key identifier: 22:A8:83:E8:0C:6B:A5:08:36:9A:09:E6:DE:DD:48:5A:04:C9:F2:F4
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018CC64B39FB778B099EC885319F114DD2CC
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/IqiD6AxrpQg2mgnm3t1IWgTJ8vQ.roa
Signing time: Mon 01 Jan 2024 18:31:07 +0000
ROA not before: Mon 01 Jan 2024 18:31:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205647
IP address blocks: 151.242.0.0/21 maxlen: 21
151.242.8.0/22 maxlen: 22
151.241.224.0/21 maxlen: 21
151.247.216.0/21 maxlen: 21
151.247.214.0/23 maxlen: 23
151.247.224.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.237.0/24 maxlen: 24
151.247.238.0/23 maxlen: 23
151.247.240.0/24 maxlen: 24
151.247.236.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
151.240.80.0/21 maxlen: 21
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
31.58.236.0/22 maxlen: 22
94.182.97.192/28 maxlen: 28
31.56.116.0/24 maxlen: 24
151.244.112.0/23 maxlen: 23
151.244.110.0/23 maxlen: 23
151.244.108.0/23 maxlen: 23
151.244.106.0/23 maxlen: 23
151.244.118.0/23 maxlen: 23
151.244.116.0/23 maxlen: 23
151.244.114.0/23 maxlen: 23
151.244.124.0/23 maxlen: 23
151.244.122.0/23 maxlen: 23
151.244.120.0/23 maxlen: 23
151.244.132.0/22 maxlen: 22
151.244.128.0/22 maxlen: 22
151.244.126.0/23 maxlen: 23
151.244.136.0/22 maxlen: 22
151.244.140.0/22 maxlen: 22
151.244.144.0/22 maxlen: 22
151.244.152.0/22 maxlen: 22
151.244.148.0/22 maxlen: 22
151.244.156.0/22 maxlen: 22
151.244.56.0/21 maxlen: 21
151.244.52.0/22 maxlen: 22
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.244.64.0/21 maxlen: 21
151.244.76.0/22 maxlen: 22
151.244.72.0/22 maxlen: 22
151.244.80.0/21 maxlen: 21
151.244.88.0/21 maxlen: 21
151.244.98.0/23 maxlen: 23
151.244.96.0/23 maxlen: 23
151.244.104.0/23 maxlen: 23
151.244.102.0/23 maxlen: 23
151.244.100.0/23 maxlen: 23
94.183.192.0/18 maxlen: 18
151.244.216.0/23 maxlen: 23
151.244.218.0/23 maxlen: 23
151.244.222.0/23 maxlen: 23
151.244.220.0/23 maxlen: 23
151.244.226.0/23 maxlen: 23
151.244.224.0/23 maxlen: 23
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
151.244.160.0/22 maxlen: 22
151.244.164.0/22 maxlen: 22
31.56.0.0/18 maxlen: 18
151.244.172.0/22 maxlen: 22
151.244.168.0/22 maxlen: 22
151.244.176.0/22 maxlen: 22
151.244.180.0/22 maxlen: 22
151.244.184.0/22 maxlen: 22
151.244.188.0/22 maxlen: 22
151.244.192.0/22 maxlen: 22
151.244.196.0/22 maxlen: 22
151.244.200.0/22 maxlen: 22
151.244.204.0/22 maxlen: 22
151.244.208.0/22 maxlen: 22
151.244.212.0/22 maxlen: 22
94.182.244.0/23 maxlen: 23
94.182.248.0/23 maxlen: 23
94.183.0.0/18 maxlen: 18
94.182.192.0/18 maxlen: 18
94.182.206.0/24 maxlen: 24
94.182.204.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.205.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.232.0/23 maxlen: 23
94.182.228.0/22 maxlen: 22
94.182.240.0/23 maxlen: 23
94.182.234.0/23 maxlen: 23
94.183.128.0/18 maxlen: 18
151.244.48.0/22 maxlen: 22
94.183.64.0/18 maxlen: 18
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.64.0/20 maxlen: 20
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.72.0/21 maxlen: 21
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.144.0/20 maxlen: 20
94.182.160.0/20 maxlen: 20
94.182.176.0/20 maxlen: 20
94.182.80.0/20 maxlen: 20
94.182.82.0/24 maxlen: 24
94.182.96.0/20 maxlen: 20
94.182.112.0/20 maxlen: 20
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
94.182.128.0/20 maxlen: 20
94.182.128.0/18 maxlen: 18
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:39:fb:77:8b:09:9e:c8:85:31:9f:11:4d:d2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jan 1 18:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22a883e80c6ba508369a09e6dedd485a04c9f2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:96:11:12:8d:11:cc:74:0a:06:e2:52:7d:53:
ec:b3:b1:0e:e7:ee:a4:53:99:c5:34:42:1b:45:9b:
37:dd:89:0b:71:90:b2:6f:f3:c8:01:7c:d9:38:f9:
cc:45:0f:c7:a1:63:90:64:19:d7:be:02:0d:ef:b6:
a3:e3:75:2f:6c:cc:d2:74:a1:7b:da:73:c1:3e:8b:
b9:92:e7:5c:50:05:6b:50:01:02:23:13:82:79:21:
05:33:14:3a:64:84:8d:04:32:7a:a1:8b:dc:d1:9b:
90:4d:3b:93:17:f3:8e:38:d2:f4:1c:08:3e:e5:ef:
33:0f:1a:be:4d:c7:d2:f6:3d:3c:c0:13:1d:f7:40:
c8:08:ec:74:5b:aa:40:c6:da:76:28:e6:e6:1f:2a:
29:46:6d:e1:f7:0f:fc:13:f2:a3:64:9b:37:ee:18:
26:bb:11:a9:d4:56:ca:68:63:e8:2a:ed:ee:08:b5:
bf:d6:66:c7:a8:72:85:0d:27:a5:b8:fc:f5:5b:e5:
a9:39:bd:bf:7b:95:86:57:3a:bf:4a:0d:27:28:1d:
4b:32:42:7b:0b:69:d2:70:6b:ee:c0:33:e3:2d:33:
9c:f9:82:f2:1f:93:fe:16:f8:65:c5:58:a2:cc:8f:
d1:4a:e4:2e:82:d0:95:1b:ee:4f:46:b5:b6:52:07:
9e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A8:83:E8:0C:6B:A5:08:36:9A:09:E6:DE:DD:48:5A:04:C9:F2:F4
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/IqiD6AxrpQg2mgnm3t1IWgTJ8vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0-151.242.11.255
151.244.48.0-151.244.227.255
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
14:d9:9f:6f:7d:d1:b1:bb:0c:da:f0:97:37:c9:ad:af:45:7b:
47:1a:e5:31:4e:f6:bb:af:55:0d:42:54:e7:d5:44:91:0d:a4:
73:56:9b:24:02:58:b5:be:bd:e1:8f:7f:f9:fc:b6:45:66:e4:
8b:96:f2:46:bd:67:5d:a9:ef:ab:71:ad:1d:75:cb:dd:3e:72:
e3:a4:35:29:90:f8:f2:62:50:41:05:6b:7d:18:98:fd:de:33:
33:1e:12:53:43:d5:f3:fc:97:88:31:32:1b:cb:c0:89:aa:94:
78:b9:7c:0d:d2:ad:2f:5e:21:d4:89:4f:5b:95:f1:7a:86:16:
37:52:6c:95:4c:9c:4e:bd:da:03:1e:30:71:4c:9b:f4:9e:22:
31:92:86:54:79:d2:8f:b7:12:90:70:d3:e3:6e:fa:f2:7c:0d:
3d:a4:88:a2:15:f9:a7:89:02:fd:c9:15:34:41:d4:0a:e1:16:
d0:a5:47:79:48:60:70:ab:a1:44:71:bf:af:e7:33:6f:e5:c9:
bd:70:44:9f:6b:13:14:a5:d8:21:f0:7a:99:82:f7:0e:8e:ac:
e2:80:f0:48:73:8f:c9:0d:e3:17:12:04:a1:ba:dc:a3:28:39:
b0:06:63:fe:5a:be:e0:aa:a2:39:f0:64:67:6b:b8:a9:d9:b2:
ae:ca:9e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:51 2024 by rpki-client on console-fra.rpki-client.org