Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/nlSMz5ALND-WRud_BGaNjEqHofI.roa
File: nlSMz5ALND-WRud_BGaNjEqHofI.roa (raw, json)
Hash identifier: gjjfhsXZuoZP1OC3CtoC0DFO3RQk9TAo4s7oxqGZ06c=
Subject key identifier: 9E:54:8C:CF:90:0B:34:3F:96:46:E7:7F:04:66:8D:8C:4A:87:A1:F2
Certificate issuer: /CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Certificate serial: 01857A4071368E5E286A2EF49BB1D3DD0DA5
Authority key identifier: E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/nlSMz5ALND-WRud_BGaNjEqHofI.roa
Signing time: Wed 04 Jan 2023 00:48:41 +0000
ROA not before: Wed 04 Jan 2023 00:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 188.132.135.0/24 maxlen: 32
188.132.134.0/24 maxlen: 24
188.132.142.0/24 maxlen: 24
188.132.147.0/24 maxlen: 32
188.132.148.0/24 maxlen: 24
188.132.153.0/24 maxlen: 24
188.132.158.0/24 maxlen: 32
188.132.157.0/24 maxlen: 24
188.132.216.0/24 maxlen: 24
188.132.215.0/24 maxlen: 24
188.132.214.0/24 maxlen: 24
188.132.219.0/24 maxlen: 32
188.132.217.0/24 maxlen: 32
188.132.218.0/24 maxlen: 24
188.132.224.0/24 maxlen: 24
188.132.226.0/24 maxlen: 32
188.132.225.0/24 maxlen: 24
188.132.223.0/24 maxlen: 32
188.132.220.0/24 maxlen: 24
188.132.227.0/24 maxlen: 32
188.132.231.0/24 maxlen: 24
188.132.229.0/24 maxlen: 32
188.132.228.0/24 maxlen: 32
188.132.233.0/24 maxlen: 24
188.132.232.0/24 maxlen: 24
188.132.230.0/24 maxlen: 32
77.92.130.0/24 maxlen: 24
77.92.129.0/24 maxlen: 24
77.92.128.0/24 maxlen: 24
188.132.235.0/24 maxlen: 24
77.92.132.0/24 maxlen: 24
188.132.239.0/24 maxlen: 24
77.92.131.0/24 maxlen: 24
188.132.234.0/24 maxlen: 32
188.132.241.0/24 maxlen: 24
77.92.133.0/24 maxlen: 32
77.92.137.0/24 maxlen: 24
77.92.136.0/24 maxlen: 24
188.132.243.0/24 maxlen: 24
188.132.246.0/24 maxlen: 24
188.132.245.0/24 maxlen: 24
188.132.244.0/24 maxlen: 32
77.92.135.0/24 maxlen: 24
77.92.134.0/24 maxlen: 24
77.92.139.0/24 maxlen: 24
77.92.138.0/24 maxlen: 24
188.132.242.0/24 maxlen: 32
188.132.250.0/24 maxlen: 24
188.132.251.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.142.0/24 maxlen: 24
77.92.141.0/24 maxlen: 24
188.132.253.0/24 maxlen: 24
77.92.144.0/24 maxlen: 32
188.132.252.0/24 maxlen: 24
77.92.140.0/24 maxlen: 32
77.92.149.0/24 maxlen: 24
77.92.148.0/24 maxlen: 24
188.132.255.0/24 maxlen: 24
188.132.254.0/24 maxlen: 24
77.92.146.0/24 maxlen: 24
77.92.158.0/24 maxlen: 24
77.92.156.0/24 maxlen: 24
77.92.155.0/24 maxlen: 32
77.92.159.0/24 maxlen: 24
77.92.157.0/24 maxlen: 32
188.132.172.0/24 maxlen: 24
188.132.175.0/24 maxlen: 24
188.132.176.0/24 maxlen: 32
188.132.177.0/24 maxlen: 24
188.132.184.0/24 maxlen: 24
188.132.183.0/24 maxlen: 32
188.132.180.0/24 maxlen: 24
188.132.190.0/24 maxlen: 24
188.132.195.0/24 maxlen: 24
188.132.194.0/24 maxlen: 24
188.132.204.0/24 maxlen: 32
188.132.200.0/24 maxlen: 24
188.132.205.0/24 maxlen: 32
188.132.206.0/24 maxlen: 24
188.132.210.0/24 maxlen: 24
188.132.211.0/24 maxlen: 32
188.132.207.0/24 maxlen: 24
188.132.208.0/24 maxlen: 32
188.132.213.0/24 maxlen: 24
188.132.212.0/24 maxlen: 24
212.68.55.0/24 maxlen: 24
212.68.57.0/24 maxlen: 32
212.68.56.0/24 maxlen: 32
212.68.61.0/24 maxlen: 32
31.210.33.0/24 maxlen: 24
31.210.32.0/24 maxlen: 24
31.210.36.0/24 maxlen: 24
31.210.35.0/24 maxlen: 24
31.210.44.0/24 maxlen: 24
31.210.40.0/24 maxlen: 32
31.210.41.0/24 maxlen: 24
31.210.48.0/24 maxlen: 24
31.210.46.0/24 maxlen: 24
31.210.47.0/24 maxlen: 24
31.210.51.0/24 maxlen: 32
31.210.50.0/24 maxlen: 32
31.210.45.0/24 maxlen: 32
31.210.49.0/24 maxlen: 24
31.210.58.0/24 maxlen: 24
31.210.57.0/24 maxlen: 24
31.210.56.0/24 maxlen: 24
31.210.60.0/24 maxlen: 24
31.210.59.0/24 maxlen: 24
31.210.61.0/24 maxlen: 32
78.135.98.0/24 maxlen: 24
78.135.103.0/24 maxlen: 24
78.135.99.0/24 maxlen: 32
78.135.108.0/24 maxlen: 32
78.135.113.0/24 maxlen: 32
78.135.116.0/24 maxlen: 24
78.135.115.0/24 maxlen: 24
78.135.114.0/24 maxlen: 32
212.68.32.0/24 maxlen: 32
212.68.37.0/24 maxlen: 32
212.68.33.0/24 maxlen: 32
212.68.38.0/24 maxlen: 24
212.68.36.0/24 maxlen: 32
212.68.41.0/24 maxlen: 32
212.68.40.0/24 maxlen: 32
212.68.43.0/24 maxlen: 32
212.68.44.0/24 maxlen: 24
212.68.42.0/24 maxlen: 32
212.68.39.0/24 maxlen: 24
212.68.45.0/24 maxlen: 32
212.68.46.0/24 maxlen: 32
212.68.49.0/24 maxlen: 24
212.68.48.0/24 maxlen: 24
212.68.50.0/24 maxlen: 32
212.68.51.0/24 maxlen: 24
78.135.79.0/24 maxlen: 24
2a02:26b0:8001::/48 maxlen: 48
2a02:26b0::/32 maxlen: 32
2a02:26b0:8000::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7a:40:71:36:8e:5e:28:6a:2e:f4:9b:b1:d3:dd:0d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Validity
Not Before: Jan 4 00:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e548ccf900b343f9646e77f04668d8c4a87a1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1e:f8:3c:fc:f6:70:91:9a:94:4f:7b:85:20:
45:59:ce:84:87:02:a3:b9:3e:85:0f:1b:d9:cb:cc:
2e:e3:5f:27:7a:e1:a4:40:5c:d7:0b:7d:e2:3e:d1:
c2:e9:70:8a:72:d2:64:e7:50:66:80:13:78:1e:c6:
50:58:e4:ca:24:62:bf:ba:9e:38:66:83:7a:c5:3a:
8c:6d:1b:06:ac:39:7d:e2:c3:23:95:89:0d:12:d5:
53:dc:91:bf:33:11:3e:ef:f5:20:13:9a:57:58:d2:
b4:c4:9b:b9:e5:e4:0f:cc:d1:af:2e:13:d8:f8:76:
4e:c2:23:41:33:0a:80:b2:ea:b3:82:34:6f:43:9a:
5a:47:60:3e:a8:ae:66:c0:71:86:fe:52:a6:e9:b9:
61:71:1a:50:77:cf:23:d6:94:3a:ca:d6:d6:83:3a:
62:0b:d4:53:93:7e:9c:ae:b9:3d:be:91:1f:ac:e2:
4a:0b:d4:73:3d:9b:2d:d1:e7:3b:fb:ad:eb:de:ca:
12:6f:d8:24:9d:f9:fd:70:d7:76:38:10:86:50:48:
65:91:2e:e9:76:b4:30:fe:3c:e4:17:84:6c:5d:72:
c2:66:0d:48:00:a2:21:fc:fa:99:72:e3:e2:ad:d4:
51:1d:d5:9f:c5:4e:2f:2c:0e:4a:87:48:72:a9:6f:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:54:8C:CF:90:0B:34:3F:96:46:E7:7F:04:66:8D:8C:4A:87:A1:F2
X509v3 Authority Key Identifier:
keyid:E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/nlSMz5ALND-WRud_BGaNjEqHofI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/5KK46Q0VfqAi-OcAAkqT3DVqUU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.32.0/23
31.210.35.0-31.210.36.255
31.210.40.0/23
31.210.44.0-31.210.51.255
31.210.56.0-31.210.61.255
77.92.128.0-77.92.144.255
77.92.146.0/24
77.92.148.0/23
77.92.155.0-77.92.159.255
78.135.79.0/24
78.135.98.0/23
78.135.103.0/24
78.135.108.0/24
78.135.113.0-78.135.116.255
188.132.134.0/23
188.132.142.0/24
188.132.147.0-188.132.148.255
188.132.153.0/24
188.132.157.0-188.132.158.255
188.132.172.0/24
188.132.175.0-188.132.177.255
188.132.180.0/24
188.132.183.0-188.132.184.255
188.132.190.0/24
188.132.194.0/23
188.132.200.0/24
188.132.204.0-188.132.208.255
188.132.210.0-188.132.220.255
188.132.223.0-188.132.235.255
188.132.239.0/24
188.132.241.0-188.132.246.255
188.132.250.0-188.132.255.255
212.68.32.0/23
212.68.36.0-212.68.46.255
212.68.48.0/22
212.68.55.0-212.68.57.255
212.68.61.0/24
IPv6:
2a02:26b0::/32
Signature Algorithm: sha256WithRSAEncryption
ad:6f:16:6c:78:f8:22:b0:e4:62:8e:94:3e:3c:31:92:72:31:
92:31:cb:ef:12:54:54:41:37:ab:88:f6:70:35:eb:90:b9:a2:
44:5c:c5:25:d8:94:e3:f1:6a:4c:a0:2f:38:a2:fe:c5:20:8f:
ac:55:50:d6:74:c7:c1:08:bc:1a:52:f0:21:07:67:85:8d:5e:
d6:1e:bc:bc:5d:79:62:ce:93:da:a0:d8:6d:fc:08:8b:23:1b:
13:e2:e1:db:c6:6a:f8:f2:6f:7d:22:ad:81:7d:35:98:c8:9f:
e1:64:a5:02:3c:00:b9:f3:84:4b:c8:ac:c5:db:63:61:a1:0d:
68:9a:e3:43:73:d8:cc:ae:f2:f0:cb:6d:6c:1e:ae:5f:c0:68:
04:c2:c7:b2:e8:e9:92:e4:8f:90:ab:39:8d:0c:d2:1e:fa:05:
75:5a:ac:bb:89:6e:b2:eb:f9:32:eb:26:02:ff:52:db:26:fc:
8c:5d:ef:f3:89:73:a6:0b:5d:1c:42:c3:4a:3a:4c:27:21:7f:
c7:f0:93:42:0d:35:7c:81:fc:d5:94:e9:0e:cd:c1:46:25:d4:
b7:4e:84:89:4b:92:1f:0f:b1:4a:8d:82:9a:21:6c:c3:e1:bb:
11:8c:bd:d2:6c:8e:62:0e:c8:57:11:24:32:97:70:49:32:18:
20:21:f0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:53 2024 by rpki-client on console-ams.rpki-client.org