Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/7d0QVNHEvqgpKcw-prt5jS5eunc.roa
File: 7d0QVNHEvqgpKcw-prt5jS5eunc.roa (raw, json)
Hash identifier: kHPwQ2kApidPxlKV8g+dHs+zvkagiJPTgn+sm3tNWhc=
Subject key identifier: ED:DD:10:54:D1:C4:BE:A8:29:29:CC:3E:A6:BB:79:8D:2E:5E:BA:77
Certificate issuer: /CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Certificate serial: 0F8A9251
Authority key identifier: 80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/7d0QVNHEvqgpKcw-prt5jS5eunc.roa
Signing time: Sat 01 Jan 2022 07:58:23 +0000
ROA not before: Sat 01 Jan 2022 07:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3212
IP address blocks: 213.172.224.0/19 maxlen: 19
185.66.148.0/22 maxlen: 22
77.38.0.0/17 maxlen: 17
46.182.224.0/21 maxlen: 21
217.72.64.0/19 maxlen: 19
77.111.0.0/18 maxlen: 18
78.153.32.0/19 maxlen: 19
87.119.128.0/19 maxlen: 19
185.97.68.0/22 maxlen: 22
185.85.148.0/22 maxlen: 22
212.85.160.0/19 maxlen: 19
91.132.208.0/22 maxlen: 22
185.30.136.0/22 maxlen: 22
176.76.0.0/16 maxlen: 16
46.150.32.0/19 maxlen: 19
84.52.128.0/18 maxlen: 18
31.15.128.0/17 maxlen: 17
91.237.132.0/22 maxlen: 22
213.143.64.0/19 maxlen: 19
176.57.92.0/22 maxlen: 22
82.192.32.0/19 maxlen: 19
84.20.224.0/19 maxlen: 19
185.79.228.0/22 maxlen: 22
92.63.16.0/20 maxlen: 20
94.140.64.0/19 maxlen: 19
2a00:b2a0::/32 maxlen: 32
2a00:fc0::/32 maxlen: 32
2a00:13d8::/29 maxlen: 29
2a05:acc0::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260739665 (0xf8a9251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Validity
Not Before: Jan 1 07:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eddd1054d1c4bea82929cc3ea6bb798d2e5eba77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b5:94:b1:45:cd:88:25:40:d2:5e:d5:6b:eb:
bb:35:2e:dd:f4:81:89:02:3b:60:26:ac:51:e6:61:
7f:17:9f:56:9b:dd:8e:d4:2d:94:bd:70:bf:0d:2f:
c9:99:7a:73:16:57:46:4e:e1:9c:ae:83:08:eb:80:
5b:6f:63:3f:50:66:f2:9e:7d:5c:5e:22:35:06:a5:
d8:bf:65:c9:95:3c:e6:1e:2b:52:f2:fe:4f:8d:f0:
1c:2d:f4:23:64:b3:ac:db:9a:0b:f5:f3:31:5f:79:
f7:87:74:7c:b4:d8:5d:44:07:31:33:5d:75:5b:db:
44:49:88:db:6d:ad:e4:6b:f2:71:b4:8a:45:31:21:
6b:e8:7a:57:c9:e3:16:30:3b:06:24:4b:6e:53:53:
f7:e4:95:7f:e9:b0:3d:ea:94:dc:64:01:e5:78:0d:
fc:f1:d5:3f:84:1a:6f:a5:a6:7e:2d:91:32:c4:fd:
88:74:8a:5d:06:80:1d:12:98:19:b1:90:0b:0d:cf:
f0:aa:bb:24:bf:da:69:60:65:2a:e7:52:92:23:f4:
23:e3:2e:01:a3:ef:01:d7:ae:0f:d7:97:98:f5:4a:
78:be:c7:a0:27:0a:ae:eb:0f:82:7d:3d:13:b7:bd:
36:83:12:74:a4:9a:22:51:cd:f1:dd:35:97:e0:81:
f0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DD:10:54:D1:C4:BE:A8:29:29:CC:3E:A6:BB:79:8D:2E:5E:BA:77
X509v3 Authority Key Identifier:
keyid:80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/7d0QVNHEvqgpKcw-prt5jS5eunc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/gPmiS9JsyCF1GKEfWY5jcgJeiuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.128.0/17
46.150.32.0/19
46.182.224.0/21
77.38.0.0/17
77.111.0.0/18
78.153.32.0/19
82.192.32.0/19
84.20.224.0/19
84.52.128.0/18
87.119.128.0/19
91.132.208.0/22
91.237.132.0/22
92.63.16.0/20
94.140.64.0/19
176.57.92.0/22
176.76.0.0/16
185.30.136.0/22
185.66.148.0/22
185.79.228.0/22
185.85.148.0/22
185.97.68.0/22
212.85.160.0/19
213.143.64.0/19
213.172.224.0/19
217.72.64.0/19
IPv6:
2a00:fc0::/32
2a00:13d8::/29
2a00:b2a0::/32
2a05:acc0::/29
Signature Algorithm: sha256WithRSAEncryption
03:ef:49:c8:0a:5a:d2:38:c1:06:c5:56:f6:0b:e6:1b:d5:3a:
19:ab:01:63:b6:55:ec:b5:b4:8b:06:8b:54:40:ac:f5:33:3f:
43:8c:1b:db:2c:b8:e5:3f:95:c2:50:29:87:16:a5:c1:a6:e8:
ab:4f:9e:f2:f1:37:0f:55:4e:0e:66:01:8a:7d:84:ef:be:31:
24:95:1f:70:87:51:ec:48:66:86:53:a3:d7:9a:d5:6e:71:7b:
4f:96:7c:fb:85:ef:c7:72:c6:9d:b1:1e:69:85:7b:19:94:46:
59:6a:4f:75:72:c2:28:e1:e7:c1:51:8c:0c:24:61:01:3e:3a:
57:f9:e9:63:55:8a:38:b6:d3:24:f5:5a:e3:33:48:ed:c9:f8:
1b:14:72:64:12:30:a5:12:8b:67:44:6a:ff:71:b3:64:d1:e7:
96:58:05:0c:36:5a:28:33:90:88:07:56:28:b4:97:be:72:70:
99:79:66:fc:88:52:c5:f4:fc:64:59:24:61:5e:4c:9f:65:e5:
02:31:3b:13:04:81:d5:93:f4:18:2e:e0:a2:e6:0b:45:da:68:
d4:af:da:ec:f6:e3:a8:d3:1b:82:90:c6:f2:12:27:9c:d1:8b:
04:00:cb:6f:4e:bc:3b:1b:f0:a7:06:8f:eb:09:a7:2b:09:0b:
6e:fd:f0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 13:35:44 2025 by rpki-client