Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/7Gky3z54TP3nP4SHT_pWvGsKwY8.roa
File: 7Gky3z54TP3nP4SHT_pWvGsKwY8.roa (raw, json)
Hash identifier: wTr/RwPdehpgIaqTnArs3iH3jbsEtpmaiVAWBdS6yEw=
Subject key identifier: EC:69:32:DF:3E:78:4C:FD:E7:3F:84:87:4F:FA:56:BC:6B:0A:C1:8F
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0564D4BE
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/7Gky3z54TP3nP4SHT_pWvGsKwY8.roa
Signing time: Tue 28 Jun 2022 09:20:01 +0000
ROA not before: Tue 28 Jun 2022 09:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50113
IP address blocks: 185.174.136.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/24 maxlen: 24
194.63.142.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.140.0/23 maxlen: 23
185.139.68.28/32 maxlen: 32
185.40.4.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
194.67.198.108/32 maxlen: 32
185.180.230.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.208.6/32 maxlen: 32
147.78.66.7/32 maxlen: 32
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
194.67.208.12/32 maxlen: 32
185.102.137.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
5.180.136.221/32 maxlen: 32
185.188.180.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
194.67.208.48/32 maxlen: 32
192.162.103.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.100.0/24 maxlen: 24
185.172.130.0/24 maxlen: 24
194.67.203.54/32 maxlen: 32
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
185.17.3.102/32 maxlen: 32
185.189.12.0/22 maxlen: 22
185.189.13.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
185.189.12.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
185.125.50.0/24 maxlen: 24
185.104.248.0/24 maxlen: 24
185.139.70.116/32 maxlen: 32
2a0f:7c80::/29 maxlen: 29
2a0f:c780::/29 maxlen: 29
2a0f:7300::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0e:d602::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a0c:6980::/29 maxlen: 29
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5200::/32 maxlen: 32
2a0c:f641::/32 maxlen: 32
2a0f:4680::/32 maxlen: 32
2a07:4a00::/29 maxlen: 29
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a0c:f640::/32 maxlen: 32
2a0b:da00::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90494142 (0x564d4be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 28 09:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec6932df3e784cfde73f84874ffa56bc6b0ac18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:74:dd:6b:fb:13:bf:56:a0:37:bb:f6:f8:f3:
53:8f:94:06:28:d2:51:05:0b:a8:b2:b6:c1:71:99:
f1:1b:b9:eb:1e:e9:27:ed:4b:56:76:b2:b3:9e:97:
01:33:74:84:5e:5b:f1:c7:7e:2f:d9:d4:a1:5a:59:
53:2b:7b:d5:bb:31:2b:f7:5f:3a:e7:4f:98:39:5a:
a6:d0:8c:ac:e8:3f:57:c4:6b:06:60:a9:a8:b9:85:
25:64:07:a7:14:6a:8d:a7:fd:d4:ca:bf:21:ec:09:
19:7a:16:72:4e:a1:35:f8:fd:9c:91:b1:ea:c7:bc:
9f:b7:9a:f9:8a:33:7e:1a:53:1f:b8:8c:c9:3b:1d:
62:82:1d:e9:1f:39:6d:df:c3:f2:0f:99:1c:06:2b:
21:c9:d1:dc:7b:f9:05:42:bd:5f:35:84:5d:23:83:
fb:bd:cb:31:f7:39:43:02:e0:6b:6b:39:ad:69:c8:
f0:39:fe:66:4a:39:fb:4e:d3:64:15:34:40:b7:92:
31:cb:13:2d:da:9c:c2:e3:81:08:93:48:6b:e7:45:
74:62:10:d2:69:be:ee:65:d7:79:83:9e:0c:05:58:
ca:5a:6e:09:24:65:8f:46:65:2e:45:50:2d:31:93:
cb:15:52:a0:d5:af:3b:0f:cb:7a:44:c5:5d:d1:d1:
54:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:69:32:DF:3E:78:4C:FD:E7:3F:84:87:4F:FA:56:BC:6B:0A:C1:8F
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/7Gky3z54TP3nP4SHT_pWvGsKwY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.76/32
5.180.136.221/32
45.8.211.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.40.4.0/24
185.102.137.0/24
185.104.248.0/24
185.125.50.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.136.0/24
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.198.0/23
IPv6:
2a04:5200::/32
2a04:5202::-2a04:5207:ffff:ffff:ffff:ffff:ffff:ffff
2a07:4a00::/29
2a09:5303::/32
2a0a:9300::/32
2a0b:da00::/29
2a0c:6980::/29
2a0c:f640::/31
2a0e:d602::/32
2a0f:4680::/32
2a0f:7300::/32
2a0f:7c80::/29
2a0f:c780::/29
Signature Algorithm: sha256WithRSAEncryption
2d:8e:dc:88:a1:f3:36:e4:99:8e:7d:6c:92:4a:ec:61:ff:ad:
6d:dc:6f:e8:be:83:38:7c:61:42:c1:91:d9:85:c4:dd:7c:5d:
fc:c8:88:68:0f:fa:20:46:da:4e:2e:ea:29:83:82:43:a4:94:
14:fe:e7:74:b5:4e:4d:15:16:f4:1d:33:94:36:53:1c:9e:fb:
dc:25:87:ed:4c:73:66:58:e6:27:3b:47:fd:ea:cd:b9:f9:90:
9e:79:bf:b5:85:fa:89:05:4d:fd:d4:5c:16:52:84:7d:e7:f9:
f5:97:6a:6f:9e:6c:a8:17:62:44:3b:c9:9f:82:b8:8c:f8:91:
26:e6:5d:ac:06:17:03:90:49:1d:97:7a:ea:fa:b2:12:ee:8e:
db:c6:34:61:d7:f3:a9:60:16:cf:a1:66:4f:10:ea:81:03:6c:
d8:3b:e3:d3:45:6a:da:74:2a:c1:6a:db:8a:3c:d1:67:9b:e4:
9d:04:54:f6:b6:0d:47:c8:0b:8e:45:c7:f0:c8:61:d5:0b:43:
79:0e:2e:45:77:0a:b5:6b:36:e4:b8:15:dd:84:d5:91:d9:80:
f6:6d:a5:89:6d:b4:59:08:3c:40:4b:f2:e9:d8:04:12:ff:7c:
25:33:85:d2:34:70:5a:68:7d:e4:59:82:5b:b8:0f:cd:ce:6d:
88:a7:f6:f3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org