Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/JWdrWA5ES9XhiPpsHHON0lEdH0E.roa
File: JWdrWA5ES9XhiPpsHHON0lEdH0E.roa (raw, json)
Hash identifier: FjaRxEsAh0Kmzu8klQAY2um/LPjZIkaPMlqOgrR46AY=
Subject key identifier: 25:67:6B:58:0E:44:4B:D5:E1:88:FA:6C:1C:73:8D:D2:51:1D:1F:41
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 01886B887476C439911D125216BAB7E433C9
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/JWdrWA5ES9XhiPpsHHON0lEdH0E.roa
Signing time: Tue 30 May 2023 07:21:24 +0000
ROA not before: Tue 30 May 2023 07:21:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8492
IP address blocks: 37.221.206.0/24 maxlen: 24
37.221.203.0/24 maxlen: 24
37.221.204.0/23 maxlen: 23
37.221.200.0/23 maxlen: 23
85.114.0.0/19 maxlen: 19
92.255.44.0/24 maxlen: 24
92.255.41.0/24 maxlen: 24
185.241.176.0/22 maxlen: 22
92.255.40.0/24 maxlen: 24
92.255.45.0/24 maxlen: 24
92.255.51.0/24 maxlen: 24
92.255.46.0/24 maxlen: 24
92.255.47.0/24 maxlen: 24
95.161.144.0/21 maxlen: 21
145.255.232.0/24 maxlen: 24
145.255.233.0/24 maxlen: 24
95.161.152.0/22 maxlen: 24
95.161.156.0/22 maxlen: 22
145.255.236.0/22 maxlen: 22
145.255.234.0/23 maxlen: 23
95.161.164.0/22 maxlen: 22
95.161.160.0/19 maxlen: 19
87.249.55.0/24 maxlen: 24
62.32.64.0/24 maxlen: 24
62.32.66.0/23 maxlen: 23
62.32.70.0/24 maxlen: 24
62.32.68.0/23 maxlen: 23
62.32.75.0/24 maxlen: 24
62.32.76.0/24 maxlen: 24
62.32.73.0/24 maxlen: 24
62.32.74.0/24 maxlen: 24
62.32.84.0/23 maxlen: 23
62.32.83.0/24 maxlen: 24
62.32.91.0/24 maxlen: 24
62.32.89.0/24 maxlen: 24
62.32.90.0/24 maxlen: 24
62.32.88.0/24 maxlen: 24
62.32.94.0/24 maxlen: 24
80.79.64.0/21 maxlen: 21
80.79.76.0/24 maxlen: 24
80.79.72.0/22 maxlen: 22
80.79.79.0/24 maxlen: 24
185.119.0.0/22 maxlen: 22
217.79.4.0/23 maxlen: 23
217.79.0.0/22 maxlen: 22
217.79.10.0/23 maxlen: 23
217.79.8.0/24 maxlen: 24
217.79.9.0/24 maxlen: 24
217.79.6.0/23 maxlen: 23
217.79.15.0/24 maxlen: 24
217.79.14.0/24 maxlen: 24
217.79.12.0/23 maxlen: 23
149.126.16.0/22 maxlen: 22
149.126.22.0/24 maxlen: 24
149.126.23.0/24 maxlen: 24
149.126.20.0/23 maxlen: 23
37.77.132.0/24 maxlen: 24
37.77.130.0/23 maxlen: 23
89.104.118.0/24 maxlen: 24
89.104.115.0/24 maxlen: 24
37.77.129.0/24 maxlen: 24
37.77.133.0/24 maxlen: 24
37.77.134.0/23 maxlen: 23
185.17.84.0/23 maxlen: 23
46.231.208.0/24 maxlen: 24
46.231.209.0/24 maxlen: 24
46.231.212.0/23 maxlen: 23
46.231.210.0/23 maxlen: 23
46.231.215.0/24 maxlen: 24
46.231.214.0/23 maxlen: 23
46.231.214.0/24 maxlen: 24
93.191.58.0/24 maxlen: 24
93.191.63.0/24 maxlen: 24
93.191.60.0/24 maxlen: 24
185.171.192.0/22 maxlen: 22
89.104.97.0/24 maxlen: 24
178.16.144.0/22 maxlen: 22
178.16.152.0/22 maxlen: 22
178.16.150.0/24 maxlen: 24
178.16.151.0/24 maxlen: 24
178.16.148.0/23 maxlen: 23
178.16.158.0/23 maxlen: 23
178.16.156.0/24 maxlen: 24
185.244.132.0/22 maxlen: 22
80.250.80.0/24 maxlen: 24
80.250.88.0/21 maxlen: 21
80.250.87.0/24 maxlen: 24
185.7.232.0/22 maxlen: 22
46.34.136.0/21 maxlen: 21
79.142.80.0/21 maxlen: 21
46.34.134.0/24 maxlen: 24
79.142.88.0/22 maxlen: 22
46.34.148.0/22 maxlen: 22
79.142.92.0/24 maxlen: 24
185.102.10.0/24 maxlen: 24
185.102.8.0/22 maxlen: 22
185.81.220.0/22 maxlen: 22
95.161.232.0/22 maxlen: 22
95.161.228.0/22 maxlen: 22
95.161.236.0/22 maxlen: 22
79.134.192.0/24 maxlen: 24
79.134.196.0/23 maxlen: 23
79.134.198.0/23 maxlen: 23
79.134.194.0/23 maxlen: 23
79.134.193.0/24 maxlen: 24
95.161.180.0/22 maxlen: 22
79.134.200.0/21 maxlen: 21
95.161.192.0/22 maxlen: 22
95.161.192.0/19 maxlen: 19
95.161.188.0/22 maxlen: 22
79.134.213.0/24 maxlen: 24
79.134.212.0/24 maxlen: 24
79.134.208.0/22 maxlen: 22
79.134.214.0/23 maxlen: 23
79.134.216.0/22 maxlen: 22
95.161.213.0/24 maxlen: 24
79.134.222.0/23 maxlen: 23
79.134.220.0/23 maxlen: 23
95.161.214.0/23 maxlen: 23
95.161.218.0/23 maxlen: 23
95.161.216.0/23 maxlen: 23
95.161.220.0/24 maxlen: 24
89.223.1.0/24 maxlen: 24
89.223.12.0/24 maxlen: 24
46.229.210.0/23 maxlen: 23
46.229.210.0/24 maxlen: 24
46.229.211.0/24 maxlen: 24
46.229.208.0/23 maxlen: 23
46.229.208.0/22 maxlen: 22
2a05:a407::/32 maxlen: 32
2a05:a406::/32 maxlen: 32
2a01:590::/32 maxlen: 32
2a05:a400::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6b:88:74:76:c4:39:91:1d:12:52:16:ba:b7:e4:33:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: May 30 07:21:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25676b580e444bd5e188fa6c1c738dd2511d1f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:40:aa:0b:a4:b7:50:26:77:81:9d:6e:56:
6c:32:80:e9:99:7b:53:16:51:bb:a1:f9:75:01:2b:
89:9c:aa:8d:f2:49:f7:b5:16:d6:11:d8:27:40:4e:
7e:2e:9e:73:5d:6d:41:99:23:c6:9e:5c:d3:ad:1a:
ea:ad:aa:44:50:9d:12:0d:c1:10:bc:11:82:06:9f:
31:68:5d:06:97:ac:5b:be:04:06:16:a0:58:fe:e4:
45:33:4b:53:2b:f4:75:87:6a:a4:17:ee:bb:8a:3c:
70:1d:56:bc:97:ba:1a:c0:f0:1c:b9:bf:90:3f:b5:
e8:a5:33:f8:00:59:5a:fa:51:0d:bd:76:4b:6b:1f:
0a:71:e7:f0:87:56:4a:ab:24:f9:57:87:76:7d:44:
4b:20:03:a8:41:0b:b1:10:60:03:d1:9d:d3:31:b1:
09:f7:23:eb:46:64:5a:c5:b0:4b:a3:63:03:16:cf:
c4:dd:81:ae:9b:f4:d2:54:37:10:db:2a:d7:5f:b3:
ae:d4:ed:b7:4d:ca:fa:b5:d0:92:38:54:e9:37:e6:
d0:38:d9:6d:11:25:41:a0:39:2e:41:43:89:8b:11:
6d:19:06:1a:af:47:91:44:12:f9:4e:0e:cd:f0:d8:
c8:71:31:53:fa:87:87:35:9c:cf:a3:a3:23:74:7c:
73:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:67:6B:58:0E:44:4B:D5:E1:88:FA:6C:1C:73:8D:D2:51:1D:1F:41
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/JWdrWA5ES9XhiPpsHHON0lEdH0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.129.0-37.77.135.255
37.221.200.0/23
37.221.203.0-37.221.206.255
46.34.134.0/24
46.34.136.0/21
46.34.148.0/22
46.229.208.0/22
46.231.208.0/21
62.32.64.0/24
62.32.66.0-62.32.70.255
62.32.73.0-62.32.76.255
62.32.83.0-62.32.85.255
62.32.88.0/22
62.32.94.0/24
79.134.192.0/19
79.142.80.0-79.142.92.255
80.79.64.0-80.79.76.255
80.79.79.0/24
80.250.80.0/24
80.250.87.0-80.250.95.255
85.114.0.0/19
87.249.55.0/24
89.104.97.0/24
89.104.115.0/24
89.104.118.0/24
89.223.1.0/24
89.223.12.0/24
92.255.40.0/23
92.255.44.0/22
92.255.51.0/24
93.191.58.0/24
93.191.60.0/24
93.191.63.0/24
95.161.144.0-95.161.223.255
95.161.228.0-95.161.239.255
145.255.232.0/21
149.126.16.0/21
178.16.144.0-178.16.156.255
178.16.158.0/23
185.7.232.0/22
185.17.84.0/23
185.81.220.0/22
185.102.8.0/22
185.119.0.0/22
185.171.192.0/22
185.241.176.0/22
185.244.132.0/22
217.79.0.0/20
IPv6:
2a01:590::/32
2a05:a400::/29
Signature Algorithm: sha256WithRSAEncryption
58:d2:0a:df:33:93:d7:4b:09:02:7f:d1:3f:db:7b:67:9a:72:
16:58:74:29:fb:ca:e9:14:0e:1d:5d:22:58:bb:a7:c2:87:a4:
08:84:da:05:1a:21:14:94:df:ae:ab:5d:56:08:46:91:6e:b3:
5b:a4:25:e3:bd:ef:e6:0d:13:b1:aa:19:94:a5:fc:64:b7:d0:
5d:03:6f:ed:a8:e5:cb:79:1a:5b:7a:aa:54:6e:d8:ac:61:1b:
3b:06:97:f9:9a:b5:db:46:64:18:9e:64:ec:b6:d2:91:94:09:
ea:2c:17:06:d1:c3:50:72:aa:47:98:7e:c2:c4:0b:e3:cb:47:
d9:28:aa:27:03:a7:c6:95:ec:17:ca:65:6f:d8:47:4f:49:ae:
68:17:88:1e:20:ba:0b:40:f0:d8:9c:94:fd:05:a8:60:a5:56:
ee:88:a5:be:c1:40:e8:2b:dc:3c:7e:1d:a6:33:14:28:ca:8b:
c1:c1:cb:89:73:5b:d4:35:00:58:6e:f8:e9:ee:7e:3e:3b:f6:
24:c4:9c:b1:b1:26:8d:e1:b0:63:0a:19:5e:45:29:70:a5:77:
46:55:d2:20:f8:9e:50:90:0f:64:f0:11:4c:c8:38:28:21:80:
83:89:14:56:5f:02:8a:b6:8c:54:52:cc:08:47:fd:b4:45:0e:
08:24:b0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:51 2024 by rpki-client on console-fra.rpki-client.org