Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ilhmeTC891l8qbqFIkB1M141JXI.roa
File: ilhmeTC891l8qbqFIkB1M141JXI.roa (raw, json)
Hash identifier: D4HJWNaj7kpqHptzbwbkG1LbsK5TdgLkDjRU48iYe3A=
Subject key identifier: 8A:58:66:79:30:BC:F7:59:7C:A9:BA:85:22:40:75:33:5E:35:25:72
Certificate issuer: /CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Certificate serial: 018A9062D302C90FF46E4FC5EFE614090FC6
Authority key identifier: E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ilhmeTC891l8qbqFIkB1M141JXI.roa
Signing time: Wed 13 Sep 2023 21:11:50 +0000
ROA not before: Wed 13 Sep 2023 21:11:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 188.132.135.0/24 maxlen: 32
188.132.134.0/24 maxlen: 24
188.132.142.0/24 maxlen: 24
188.132.147.0/24 maxlen: 32
188.132.148.0/24 maxlen: 24
188.132.153.0/24 maxlen: 24
188.132.158.0/24 maxlen: 32
188.132.157.0/24 maxlen: 24
188.132.216.0/24 maxlen: 24
188.132.215.0/24 maxlen: 24
188.132.214.0/24 maxlen: 24
188.132.219.0/24 maxlen: 32
188.132.217.0/24 maxlen: 32
188.132.218.0/24 maxlen: 24
188.132.224.0/24 maxlen: 24
188.132.226.0/24 maxlen: 32
188.132.225.0/24 maxlen: 24
188.132.223.0/24 maxlen: 32
188.132.220.0/24 maxlen: 24
188.132.227.0/24 maxlen: 32
188.132.231.0/24 maxlen: 24
188.132.228.0/24 maxlen: 32
188.132.233.0/24 maxlen: 24
188.132.232.0/24 maxlen: 24
188.132.230.0/24 maxlen: 32
77.92.130.0/24 maxlen: 24
77.92.129.0/24 maxlen: 24
77.92.128.0/24 maxlen: 24
188.132.235.0/24 maxlen: 24
77.92.132.0/24 maxlen: 24
188.132.239.0/24 maxlen: 24
77.92.131.0/24 maxlen: 24
188.132.234.0/24 maxlen: 32
77.92.133.0/24 maxlen: 32
188.132.241.0/24 maxlen: 24
77.92.137.0/24 maxlen: 24
77.92.136.0/24 maxlen: 24
77.92.135.0/24 maxlen: 24
188.132.243.0/24 maxlen: 24
188.132.244.0/24 maxlen: 32
77.92.134.0/24 maxlen: 24
77.92.139.0/24 maxlen: 24
77.92.138.0/24 maxlen: 24
188.132.246.0/24 maxlen: 24
188.132.245.0/24 maxlen: 24
188.132.250.0/24 maxlen: 24
188.132.251.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.142.0/24 maxlen: 24
77.92.141.0/24 maxlen: 24
188.132.253.0/24 maxlen: 24
77.92.144.0/24 maxlen: 32
188.132.252.0/24 maxlen: 24
77.92.140.0/24 maxlen: 32
77.92.149.0/24 maxlen: 24
77.92.148.0/24 maxlen: 24
188.132.255.0/24 maxlen: 24
188.132.254.0/24 maxlen: 24
77.92.146.0/24 maxlen: 24
77.92.158.0/24 maxlen: 24
77.92.156.0/24 maxlen: 24
77.92.155.0/24 maxlen: 32
77.92.159.0/24 maxlen: 24
77.92.157.0/24 maxlen: 32
188.132.172.0/24 maxlen: 24
188.132.175.0/24 maxlen: 24
188.132.176.0/24 maxlen: 32
188.132.177.0/24 maxlen: 24
188.132.183.0/24 maxlen: 32
188.132.180.0/24 maxlen: 24
188.132.190.0/24 maxlen: 24
188.132.195.0/24 maxlen: 24
188.132.194.0/24 maxlen: 24
188.132.204.0/24 maxlen: 32
188.132.200.0/24 maxlen: 24
188.132.205.0/24 maxlen: 32
188.132.206.0/24 maxlen: 24
188.132.211.0/24 maxlen: 32
188.132.207.0/24 maxlen: 24
188.132.208.0/24 maxlen: 32
188.132.213.0/24 maxlen: 24
188.132.212.0/24 maxlen: 24
212.68.57.0/24 maxlen: 32
212.68.56.0/24 maxlen: 32
212.68.61.0/24 maxlen: 32
31.210.33.0/24 maxlen: 24
31.210.32.0/24 maxlen: 24
31.210.36.0/24 maxlen: 24
31.210.35.0/24 maxlen: 24
31.210.44.0/24 maxlen: 24
31.210.40.0/24 maxlen: 32
31.210.41.0/24 maxlen: 24
31.210.46.0/24 maxlen: 24
31.210.47.0/24 maxlen: 24
31.210.51.0/24 maxlen: 32
31.210.50.0/24 maxlen: 32
31.210.45.0/24 maxlen: 32
31.210.49.0/24 maxlen: 24
31.210.48.0/24 maxlen: 24
31.210.58.0/24 maxlen: 24
31.210.57.0/24 maxlen: 24
31.210.56.0/24 maxlen: 24
31.210.60.0/24 maxlen: 24
31.210.59.0/24 maxlen: 24
31.210.61.0/24 maxlen: 32
78.135.98.0/24 maxlen: 24
78.135.103.0/24 maxlen: 24
78.135.99.0/24 maxlen: 32
78.135.108.0/24 maxlen: 32
78.135.113.0/24 maxlen: 32
78.135.116.0/24 maxlen: 24
78.135.115.0/24 maxlen: 24
78.135.114.0/24 maxlen: 32
212.68.32.0/24 maxlen: 32
212.68.37.0/24 maxlen: 32
212.68.33.0/24 maxlen: 32
212.68.38.0/24 maxlen: 24
212.68.36.0/24 maxlen: 32
212.68.41.0/24 maxlen: 32
212.68.40.0/24 maxlen: 32
212.68.43.0/24 maxlen: 32
212.68.44.0/24 maxlen: 24
212.68.42.0/24 maxlen: 32
212.68.39.0/24 maxlen: 24
212.68.45.0/24 maxlen: 32
212.68.46.0/24 maxlen: 32
212.68.49.0/24 maxlen: 24
212.68.50.0/24 maxlen: 32
212.68.51.0/24 maxlen: 24
78.135.79.0/24 maxlen: 24
2a02:26b0:8001::/48 maxlen: 48
2a02:26b0::/32 maxlen: 32
2a02:26b0:8000::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:90:62:d3:02:c9:0f:f4:6e:4f:c5:ef:e6:14:09:0f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Validity
Not Before: Sep 13 21:11:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a58667930bcf7597ca9ba85224075335e352572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2f:94:c0:46:d4:85:93:cf:20:0a:de:a7:79:
c2:1e:51:f2:97:34:46:fe:c3:db:88:d0:d3:e9:27:
da:64:d3:df:92:3b:d0:2e:16:16:9e:4a:cf:e4:0f:
29:93:af:0c:29:e5:2e:22:88:40:35:e6:cd:0c:12:
9d:75:b1:c9:94:90:46:ea:90:2e:e8:6f:a3:61:81:
3d:54:79:7d:22:17:b1:d9:b4:40:f7:94:4b:d1:81:
6a:11:18:18:fc:e9:e9:28:08:0f:a2:b0:dc:40:d2:
51:37:a8:b7:24:5d:c3:f7:44:aa:b8:ff:e0:25:16:
07:2b:19:14:76:50:dd:8d:b4:b7:ec:68:7f:56:33:
f2:e0:e7:0d:92:ae:c4:fb:76:f7:01:d5:b7:44:21:
cf:86:83:98:40:d8:b7:cb:f2:f8:78:9d:69:ce:cd:
1c:55:4d:6d:c0:22:57:d9:79:85:3d:00:72:f6:40:
35:fe:15:8a:5d:36:87:4e:15:68:2f:f2:9e:17:70:
a0:32:fe:62:ad:2e:cd:9e:06:ef:83:39:a0:09:c8:
a5:f3:70:80:b5:09:d7:46:81:d1:20:0b:7b:e3:ad:
38:03:9f:24:18:4e:d2:5e:aa:40:8b:4c:14:0b:64:
2f:6e:0d:91:36:d9:ef:06:28:de:b4:6a:5a:6b:a5:
e4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:58:66:79:30:BC:F7:59:7C:A9:BA:85:22:40:75:33:5E:35:25:72
X509v3 Authority Key Identifier:
keyid:E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/ilhmeTC891l8qbqFIkB1M141JXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/5KK46Q0VfqAi-OcAAkqT3DVqUU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.32.0/23
31.210.35.0-31.210.36.255
31.210.40.0/23
31.210.44.0-31.210.51.255
31.210.56.0-31.210.61.255
77.92.128.0-77.92.144.255
77.92.146.0/24
77.92.148.0/23
77.92.155.0-77.92.159.255
78.135.79.0/24
78.135.98.0/23
78.135.103.0/24
78.135.108.0/24
78.135.113.0-78.135.116.255
188.132.134.0/23
188.132.142.0/24
188.132.147.0-188.132.148.255
188.132.153.0/24
188.132.157.0-188.132.158.255
188.132.172.0/24
188.132.175.0-188.132.177.255
188.132.180.0/24
188.132.183.0/24
188.132.190.0/24
188.132.194.0/23
188.132.200.0/24
188.132.204.0-188.132.208.255
188.132.211.0-188.132.220.255
188.132.223.0-188.132.228.255
188.132.230.0-188.132.235.255
188.132.239.0/24
188.132.241.0/24
188.132.243.0-188.132.246.255
188.132.250.0-188.132.255.255
212.68.32.0/23
212.68.36.0-212.68.46.255
212.68.49.0-212.68.51.255
212.68.56.0/23
212.68.61.0/24
IPv6:
2a02:26b0::/32
Signature Algorithm: sha256WithRSAEncryption
37:ca:86:7e:c9:07:25:9f:63:f8:76:90:55:d1:f0:b3:4c:09:
af:af:c6:00:a0:d6:de:d5:5e:8d:67:9b:6e:a2:55:b8:11:3e:
bb:12:a7:e0:4c:49:6d:9d:3f:b8:a9:cb:1d:1c:b7:1d:a6:8c:
4d:a6:66:b1:b1:4f:d8:89:e6:3a:95:79:e0:b4:44:3d:44:fa:
60:d2:b0:a7:cd:37:f7:4e:b2:22:0f:f7:a5:5c:56:1d:54:2f:
41:20:16:6e:f0:10:7e:f6:22:dd:51:6f:06:d5:06:4f:46:6c:
cf:1e:21:4c:2e:0b:b9:31:cd:37:99:56:dc:7d:3c:ae:59:57:
4c:c5:d0:59:c0:f2:f6:9c:74:97:7f:f2:0a:2f:fb:35:87:1e:
c5:66:75:0c:da:eb:61:19:32:73:fd:c2:d4:6c:64:1e:af:77:
34:b4:e3:d3:82:81:a2:60:2a:5e:a8:83:0c:1e:fa:fd:ba:3b:
f0:12:dc:05:aa:f7:61:08:7f:e1:7b:8c:2b:2d:6a:68:ec:a3:
cc:45:ed:81:61:c2:06:71:79:e5:34:71:f1:42:6a:cf:7d:d1:
04:6a:29:65:fd:64:02:15:93:99:63:2c:88:17:2c:ec:bc:27:
36:ff:80:96:b7:d9:f3:7e:a5:eb:c6:c3:66:9e:e1:1a:f8:dd:
b8:93:1a:d4
-----BEGIN CERTIFICATE-----
MIIGgTCCBWmgAwIBAgISAYqQYtMCyQ/0bk/F7+YUCQ/GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTJiOGU5MGQxNTdlYTAyMmY4ZTcwMDAyNGE5M2RjMzU2
YTUxNGQwHhcNMjMwOTEzMjExMTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTU4NjY3OTMwYmNmNzU5N2NhOWJhODUyMjQwNzUzMzVlMzUyNTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAni+UwEbUhZPPIArep3nCHlHylzRG
/sPbiNDT6SfaZNPfkjvQLhYWnkrP5A8pk68MKeUuIohANebNDBKddbHJlJBG6pAu
6G+jYYE9VHl9Ihex2bRA95RL0YFqERgY/OnpKAgPorDcQNJRN6i3JF3D90SquP/g
JRYHKxkUdlDdjbS37Gh/VjPy4OcNkq7E+3b3AdW3RCHPhoOYQNi3y/L4eJ1pzs0c
VU1twCJX2XmFPQBy9kA1/hWKXTaHThVoL/KeF3CgMv5irS7NngbvgzmgCcil83CA
tQnXRoHRIAt74604A58kGE7SXqpAi0wUC2Qvbg2RNtnvBijetGpaa6XkfwIDAQAB
o4IDjTCCA4kwHQYDVR0OBBYEFIpYZnkwvPdZfKm6hSJAdTNeNSVyMB8GA1UdIwQY
MBaAFOSiuOkNFX6gIvjnAAJKk9w1alFNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtLNDZRMFZmcUFpLU9jQUFrcVQzRFZxVVUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny82OTllODUtMTAyNy00YzdlLThhZTct
ZGY0YTJlNzYwY2NiLzEvaWxobWVUQzg5MWw4cWJxRklrQjFNMTQxSlhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny82OTllODUtMTAyNy00YzdlLThhZTctZGY0YTJlNzYwY2Ni
LzEvNUtLNDZRMFZmcUFpLU9jQUFrcVQzRFZxVVUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBoQYIKwYBBQUHAQcBAf8EggGQMIIBjDCCAXkEAgABMIIB
cQMEAR/SIDAMAwQAH9IjAwQAH9IkAwQBH9IoMAwDBAIf0iwDBAIf0jAwDAMEAx/S
OAMEAR/SPDAMAwQHTVyAAwQATVyQAwQATVySAwQBTVyUMAwDBABNXJsDBAVNXIAD
BABOh08DBAFOh2IDBABOh2cDBABOh2wwDAMEAE6HcQMEAE6HdAMEAbyEhgMEALyE
jjAMAwQAvISTAwQAvISUAwQAvISZMAwDBAC8hJ0DBAC8hJ4DBAC8hKwwDAMEALyE
rwMEAbyEsAMEALyEtAMEALyEtwMEALyEvgMEAbyEwgMEALyEyDAMAwQCvITMAwQA
vITQMAwDBAC8hNMDBAC8hNwwDAMEALyE3wMEALyE5DAMAwQBvITmAwQCvIToAwQA
vITvAwQAvITxMAwDBAC8hPMDBAC8hPYwCwMEAbyE+gMDALyEAwQB1EQgMAwDBALU
RCQDBADURC4wDAMEANREMQMEAtREMAMEAdREOAMEANREPTANBAIAAjAHAwUAKgIm
sDANBgkqhkiG9w0BAQsFAAOCAQEAN8qGfskHJZ9j+HaQVdHws0wJr6/GAKDW3tVe
jWebbqJVuBE+uxKn4ExJbZ0/uKnLHRy3HaaMTaZmsbFP2InmOpV54LREPUT6YNKw
p803906yIg/3pVxWHVQvQSAWbvAQfvYi3VFvBtUGT0Zszx4hTC4LuTHNN5lW3H08
rllXTMXQWcDy9px0l3/yCi/7NYcexWZ1DNrrYRkyc/3C1GxkHq93NLTj04KBomAq
XqiDDB76/bo78BLcBar3YQh/4XuMKy1qaOyjzEXtgWHCBnF55TRx8UJqz33RBGop
Zf1kAhWTmWMsiBcs7LwnNv+AlrfZ836l68bDZp7hGvjduJMa1A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:53 2024 by rpki-client on console-ams.rpki-client.org