Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-pYss8U6F7RK0-NHIOR3UeYk3TY.roa
File: 1-pYss8U6F7RK0-NHIOR3UeYk3TY.roa (raw, json)
Hash identifier: P8akuymydPX9vHlILDGeeuZI2L6floSEHP1iBQGqZZ4=
Subject key identifier: FA:96:2C:B3:C5:3A:17:B4:4A:D3:E3:47:20:E4:77:51:E6:24:DD:36
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01838ABF7CE27D5C1511536026B9637E5421
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-pYss8U6F7RK0-NHIOR3UeYk3TY.roa
Signing time: Thu 29 Sep 2022 19:35:48 +0000
ROA not before: Thu 29 Sep 2022 19:35:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50113
IP address blocks: 185.174.136.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/24 maxlen: 24
194.63.142.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.140.0/23 maxlen: 23
194.53.55.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
185.139.68.28/32 maxlen: 32
185.40.4.0/24 maxlen: 24
5.180.139.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.138.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
194.67.198.108/32 maxlen: 32
185.180.230.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.208.6/32 maxlen: 32
147.78.66.7/32 maxlen: 32
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
194.67.208.12/32 maxlen: 32
45.89.64.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
5.180.136.221/32 maxlen: 32
185.188.180.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
194.67.208.48/32 maxlen: 32
192.162.103.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.100.0/24 maxlen: 24
185.172.130.0/24 maxlen: 24
194.67.203.54/32 maxlen: 32
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
185.17.3.102/32 maxlen: 32
185.189.12.0/22 maxlen: 22
185.189.13.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
185.189.12.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
185.125.50.0/24 maxlen: 24
185.104.248.0/24 maxlen: 24
185.139.70.116/32 maxlen: 32
2a04:5200:fff2::/48 maxlen: 48
2a0f:7300::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0a:9300::/48 maxlen: 48
2a0e:d602::/32 maxlen: 32
2a04:5200:ff00::/48 maxlen: 48
2a04:5200::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5205::/32 maxlen: 32
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a0a:9300:aaaa::/48 maxlen: 48
2a04:5200:1::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
2a04:5200:fff7::/48 maxlen: 48
2a04:5204::/32 maxlen: 32
2a04:5200::/32 maxlen: 32
2a0f:4680::/32 maxlen: 32
2a04:5200:fff4::/48 maxlen: 48
2a04:5206::/32 maxlen: 32
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5207::/32 maxlen: 32
2a0b:da00::/29 maxlen: 29
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8a:bf:7c:e2:7d:5c:15:11:53:60:26:b9:63:7e:54:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 29 19:35:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa962cb3c53a17b44ad3e34720e47751e624dd36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:e6:cc:41:cd:45:fb:b2:dc:47:ae:4c:fb:
c2:70:54:d6:35:ea:0a:6b:c8:c0:5f:36:68:75:9a:
67:6a:82:91:38:fc:fd:f6:26:54:84:ec:a2:72:7c:
d0:0e:dc:53:36:16:5e:93:8e:69:f6:c6:37:5b:ef:
f5:b5:27:db:e0:00:32:4e:33:28:06:bf:57:0e:3f:
fc:ef:a9:e5:08:e0:e3:06:8f:2c:39:6a:5c:f1:13:
bd:e5:c4:0f:32:84:a7:d3:a3:e1:b7:cc:df:b4:1e:
e4:4e:54:68:72:6f:7c:53:6e:3c:97:57:1b:22:99:
7d:0a:81:c1:67:30:50:4b:d7:01:68:95:82:89:84:
81:77:93:34:19:1f:74:25:f5:f0:7a:3d:85:ac:e8:
50:7a:12:7e:11:a6:81:c7:dd:e6:5a:25:6c:39:e0:
65:a6:53:6b:6b:0e:7a:21:84:f0:f7:3a:65:e2:ce:
04:cb:d7:f9:8b:3b:73:b2:82:9f:89:53:d2:6a:ce:
03:5c:c1:8f:3c:47:29:f6:a8:13:c2:dc:9c:c4:d3:
14:30:7c:a5:da:a8:b1:34:e9:51:9c:28:58:be:2a:
f4:ab:d7:fe:4c:9a:da:e0:96:1b:dd:0d:6a:cb:4f:
6d:5f:43:a9:f8:54:71:ec:18:67:e7:25:76:c7:48:
9a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:96:2C:B3:C5:3A:17:B4:4A:D3:E3:47:20:E4:77:51:E6:24:DD:36
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-pYss8U6F7RK0-NHIOR3UeYk3TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/22
5.252.116.0/24
45.8.211.0/24
45.89.64.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.40.4.0/24
185.104.248.0/24
185.125.50.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.136.0/24
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.53.55.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.198.0/23
IPv6:
2a04:5200::/32
2a04:5202::-2a04:5207:ffff:ffff:ffff:ffff:ffff:ffff
2a09:5303::/32
2a0a:9300::/32
2a0b:da00::/29
2a0e:d602::/32
2a0f:4680::/32
2a0f:7300::/32
Signature Algorithm: sha256WithRSAEncryption
24:af:82:bc:52:be:27:0b:92:88:83:1f:6e:a7:2e:34:49:8c:
48:06:74:95:40:b3:ca:69:54:7f:28:95:e2:1e:8c:5f:57:14:
63:dc:2b:75:db:76:34:df:63:8d:3e:52:41:09:a8:3b:55:11:
b6:f7:41:51:ef:a5:31:de:e9:06:81:38:67:e1:8c:55:89:6b:
58:5a:ac:91:ae:ad:f8:de:b5:4b:0c:02:f3:88:b1:d2:5e:c4:
d4:da:bf:bd:b8:08:6e:23:0f:b5:74:cb:e9:3f:37:d2:48:48:
51:e6:6e:f8:f2:ef:10:c9:ca:a7:2f:82:b4:b8:6e:b0:b0:b5:
6e:ba:ac:eb:35:1e:51:88:b9:bc:2f:60:d6:3b:c7:26:49:f6:
b0:e8:fc:d0:01:59:e5:6b:b8:55:b9:f5:8e:34:ee:08:64:f2:
31:ce:7e:e2:7c:c5:be:25:03:54:dc:20:da:9a:5d:62:7c:4c:
4f:fa:5d:78:31:24:67:97:6f:87:84:d9:d7:6f:e9:7b:1e:31:
29:06:b8:53:55:74:81:e6:73:5e:db:c6:b2:07:79:ed:44:84:
82:37:5e:ea:2e:29:5a:74:3a:f9:a2:0d:cf:0a:de:30:93:47:
96:03:75:d2:f2:a0:47:08:59:65:25:38:b6:ba:5a:81:68:75:
f1:de:13:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org