Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0TRzx0K8M0vRejr6lrL0kxGLSI4.roa
File: 0TRzx0K8M0vRejr6lrL0kxGLSI4.roa (raw, json)
Hash identifier: RDq6/xmzlL/7LtScqPsTT4LzATgNtYXLLOlwooOjfVk=
Subject key identifier: D1:34:73:C7:42:BC:33:4B:D1:7A:3A:FA:96:B2:F4:93:11:8B:48:8E
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 051EBEE1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0TRzx0K8M0vRejr6lrL0kxGLSI4.roa
Signing time: Wed 01 Jun 2022 11:22:20 +0000
ROA not before: Wed 01 Jun 2022 11:22:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50113
IP address blocks: 185.174.136.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/24 maxlen: 24
194.63.142.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.140.0/23 maxlen: 23
185.139.68.28/32 maxlen: 32
185.40.4.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
194.67.198.108/32 maxlen: 32
185.180.230.0/24 maxlen: 24
185.180.228.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.208.6/32 maxlen: 32
147.78.66.7/32 maxlen: 32
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
194.67.208.12/32 maxlen: 32
185.102.137.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
5.180.136.221/32 maxlen: 32
185.188.180.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
194.67.208.48/32 maxlen: 32
192.162.103.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.100.0/24 maxlen: 24
185.172.130.0/24 maxlen: 24
194.67.203.54/32 maxlen: 32
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
185.17.3.102/32 maxlen: 32
185.189.12.0/22 maxlen: 22
185.189.13.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
185.189.12.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
185.104.248.0/24 maxlen: 24
185.139.70.116/32 maxlen: 32
2a0f:7c80::/29 maxlen: 29
2a0f:c780::/29 maxlen: 29
2a0f:7300::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0e:d602::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a0c:6980::/29 maxlen: 29
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5200::/32 maxlen: 32
2a0c:f641::/32 maxlen: 32
2a0f:4680::/32 maxlen: 32
2a07:4a00::/29 maxlen: 29
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a0c:f640::/32 maxlen: 32
2a0b:da00::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85901025 (0x51ebee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 1 11:22:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d13473c742bc334bd17a3afa96b2f493118b488e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:01:2f:d4:59:e2:bb:13:eb:fa:97:86:72:a3:
5e:27:6b:3d:af:2f:3b:21:a2:8c:01:f4:a1:66:ba:
9d:a1:13:ea:c2:ee:5a:6a:b4:2b:0b:57:98:7a:76:
8a:17:4b:e2:83:4b:8d:23:6b:1f:49:0a:b5:a3:40:
f0:c0:79:0c:91:26:8f:19:0d:fc:c7:ab:7d:5e:e3:
ff:e9:e9:6e:78:ef:2c:93:3a:21:75:79:b6:db:c1:
20:cb:f6:05:20:90:64:90:34:f1:99:e4:8f:73:83:
8f:29:d6:e5:6f:f8:08:c5:2f:c6:d1:77:95:98:1f:
0b:bd:07:eb:7f:ea:dc:57:ef:2a:44:40:42:f3:da:
61:b5:09:be:4c:ce:55:ba:a4:2a:36:cc:a3:af:41:
43:1a:71:7a:16:93:af:65:47:c6:b1:4a:47:9d:45:
e9:bd:99:1c:ff:0c:a6:57:09:33:a2:b9:05:1a:b2:
1f:1d:9f:dd:46:5d:0e:7c:c9:69:b0:58:03:b5:1d:
84:52:bd:67:3d:92:5a:75:c3:98:c7:05:a1:0b:46:
0c:cd:80:e8:69:f2:78:2e:c8:61:1e:e9:29:ab:31:
59:31:e6:95:43:f0:aa:d0:c6:e7:79:e1:97:42:9f:
6c:51:82:f8:f8:e6:7a:7d:6a:ce:bf:a6:4c:c2:3f:
8d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:34:73:C7:42:BC:33:4B:D1:7A:3A:FA:96:B2:F4:93:11:8B:48:8E
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0TRzx0K8M0vRejr6lrL0kxGLSI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.76/32
5.180.136.221/32
45.8.211.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.40.4.0/24
185.102.137.0/24
185.104.248.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.136.0/24
185.174.139.0/24
185.180.228.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.198.0/23
IPv6:
2a04:5200::/32
2a04:5202::-2a04:5207:ffff:ffff:ffff:ffff:ffff:ffff
2a07:4a00::/29
2a09:5303::/32
2a0a:9300::/32
2a0b:da00::/29
2a0c:6980::/29
2a0c:f640::/31
2a0e:d602::/32
2a0f:4680::/32
2a0f:7300::/32
2a0f:7c80::/29
2a0f:c780::/29
Signature Algorithm: sha256WithRSAEncryption
0e:be:f7:aa:1b:89:ae:bf:fe:b6:15:ea:a0:b3:f8:0f:86:27:
7a:81:c5:01:01:be:c0:5a:f4:2a:e4:cf:20:8a:d4:b4:ef:17:
0d:3e:a8:ca:7f:6f:a8:1b:cf:49:5e:79:cc:05:ca:e3:0a:40:
ef:c8:12:aa:6f:55:3d:e8:e7:c4:52:ef:b7:35:40:40:36:99:
19:ba:da:7e:81:0a:9f:16:43:b5:3a:b4:fe:65:c3:98:63:32:
3e:95:1c:69:84:0c:0c:12:f7:10:7e:0b:e6:c0:91:59:70:60:
8e:96:f3:56:08:b5:4d:46:fa:88:6e:58:0c:a0:11:d3:d8:4e:
ba:69:52:bf:85:fc:05:b0:2a:cb:50:55:67:a4:16:4e:dd:81:
be:77:f0:6b:75:54:f7:c7:19:02:24:e0:a3:b9:9d:f5:62:b5:
2d:1e:af:f7:59:03:38:59:61:cb:29:b7:65:c4:a0:9e:99:48:
db:e1:90:4b:03:a8:64:88:86:c0:1e:8a:2d:89:58:7c:95:32:
ea:f1:20:99:97:7c:ef:64:cd:70:95:aa:a3:36:65:39:42:81:
67:43:a7:0e:b3:c8:5b:5a:0e:62:31:46:9e:4f:a9:0e:0a:44:
88:be:28:f1:0e:a7:fa:0d:24:67:04:b7:2e:76:2d:90:0a:fe:
da:86:9a:0d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org