Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/jpo58bAe8-NjrCtvnfQBlWUGRXg.roa
File: jpo58bAe8-NjrCtvnfQBlWUGRXg.roa (raw, json)
Hash identifier: ygf0b+sOjZKFIETUR1HA5QvXPQyJyk490nQIbPA6qtk=
Subject key identifier: 8E:9A:39:F1:B0:1E:F3:E3:63:AC:2B:6F:9D:F4:01:95:65:06:45:78
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 0183692D6E1EC9056686B2256051AB6039DA
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/jpo58bAe8-NjrCtvnfQBlWUGRXg.roa
Signing time: Fri 23 Sep 2022 07:08:48 +0000
ROA not before: Fri 23 Sep 2022 07:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8492
IP address blocks: 37.221.206.0/24 maxlen: 24
37.221.203.0/24 maxlen: 24
37.221.204.0/23 maxlen: 23
37.221.200.0/23 maxlen: 23
85.114.0.0/19 maxlen: 19
92.255.44.0/24 maxlen: 24
92.255.41.0/24 maxlen: 24
185.241.176.0/22 maxlen: 22
92.255.40.0/24 maxlen: 24
92.255.45.0/24 maxlen: 24
92.255.46.0/24 maxlen: 24
92.255.47.0/24 maxlen: 24
95.161.144.0/21 maxlen: 21
145.255.232.0/24 maxlen: 24
145.255.233.0/24 maxlen: 24
95.161.152.0/22 maxlen: 24
95.161.156.0/22 maxlen: 22
145.255.236.0/22 maxlen: 22
145.255.234.0/23 maxlen: 23
95.161.164.0/22 maxlen: 22
95.161.160.0/19 maxlen: 19
87.249.55.0/24 maxlen: 24
62.32.64.0/24 maxlen: 24
62.32.66.0/23 maxlen: 23
62.32.70.0/24 maxlen: 24
62.32.68.0/23 maxlen: 23
62.32.75.0/24 maxlen: 24
62.32.76.0/24 maxlen: 24
62.32.73.0/24 maxlen: 24
62.32.74.0/24 maxlen: 24
62.32.84.0/23 maxlen: 23
62.32.83.0/24 maxlen: 24
62.32.91.0/24 maxlen: 24
62.32.89.0/24 maxlen: 24
62.32.90.0/24 maxlen: 24
62.32.88.0/24 maxlen: 24
62.32.94.0/24 maxlen: 24
80.79.64.0/21 maxlen: 21
80.79.76.0/24 maxlen: 24
80.79.72.0/22 maxlen: 22
80.79.79.0/24 maxlen: 24
185.119.0.0/22 maxlen: 22
217.79.4.0/23 maxlen: 23
217.79.0.0/22 maxlen: 22
217.79.10.0/23 maxlen: 23
217.79.8.0/24 maxlen: 24
217.79.9.0/24 maxlen: 24
217.79.6.0/23 maxlen: 23
217.79.15.0/24 maxlen: 24
217.79.14.0/24 maxlen: 24
217.79.12.0/23 maxlen: 23
149.126.16.0/22 maxlen: 22
149.126.22.0/24 maxlen: 24
149.126.23.0/24 maxlen: 24
149.126.20.0/23 maxlen: 23
37.77.132.0/24 maxlen: 24
37.77.130.0/23 maxlen: 23
89.104.118.0/24 maxlen: 24
89.104.115.0/24 maxlen: 24
37.77.129.0/24 maxlen: 24
37.77.133.0/24 maxlen: 24
37.77.134.0/23 maxlen: 23
46.231.208.0/24 maxlen: 24
46.231.209.0/24 maxlen: 24
46.231.212.0/23 maxlen: 23
46.231.210.0/23 maxlen: 23
46.231.215.0/24 maxlen: 24
46.231.214.0/23 maxlen: 23
46.231.214.0/24 maxlen: 24
93.191.58.0/24 maxlen: 24
93.191.63.0/24 maxlen: 24
93.191.60.0/24 maxlen: 24
185.171.192.0/22 maxlen: 22
89.104.97.0/24 maxlen: 24
178.16.144.0/22 maxlen: 22
178.16.152.0/22 maxlen: 22
178.16.150.0/24 maxlen: 24
178.16.151.0/24 maxlen: 24
178.16.148.0/23 maxlen: 23
178.16.158.0/23 maxlen: 23
178.16.156.0/24 maxlen: 24
185.244.132.0/22 maxlen: 22
80.250.88.0/21 maxlen: 21
80.250.87.0/24 maxlen: 24
185.7.232.0/22 maxlen: 22
46.34.136.0/21 maxlen: 21
79.142.80.0/21 maxlen: 21
46.34.134.0/24 maxlen: 24
79.142.88.0/22 maxlen: 22
46.34.148.0/22 maxlen: 22
79.142.92.0/24 maxlen: 24
185.102.10.0/24 maxlen: 24
185.102.8.0/22 maxlen: 22
185.81.220.0/22 maxlen: 22
95.161.232.0/22 maxlen: 22
95.161.228.0/22 maxlen: 22
95.161.236.0/22 maxlen: 22
79.134.192.0/24 maxlen: 24
79.134.196.0/23 maxlen: 23
79.134.198.0/23 maxlen: 23
79.134.194.0/23 maxlen: 23
79.134.193.0/24 maxlen: 24
95.161.180.0/22 maxlen: 22
79.134.200.0/21 maxlen: 21
95.161.192.0/22 maxlen: 22
95.161.192.0/19 maxlen: 19
95.161.188.0/22 maxlen: 22
79.134.213.0/24 maxlen: 24
79.134.212.0/24 maxlen: 24
79.134.208.0/22 maxlen: 22
79.134.214.0/23 maxlen: 23
79.134.216.0/22 maxlen: 22
95.161.213.0/24 maxlen: 24
79.134.222.0/23 maxlen: 23
79.134.220.0/23 maxlen: 23
95.161.214.0/23 maxlen: 23
95.161.218.0/23 maxlen: 23
95.161.216.0/23 maxlen: 23
95.161.220.0/24 maxlen: 24
89.223.1.0/24 maxlen: 24
46.229.210.0/23 maxlen: 23
46.229.210.0/24 maxlen: 24
46.229.211.0/24 maxlen: 24
46.229.208.0/23 maxlen: 23
46.229.208.0/22 maxlen: 22
2a01:590::/32 maxlen: 32
2a05:a400::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:69:2d:6e:1e:c9:05:66:86:b2:25:60:51:ab:60:39:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Sep 23 07:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9a39f1b01ef3e363ac2b6f9df4019565064578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:2d:19:c4:f6:bc:af:4f:3f:f2:4f:f3:3e:
1c:36:e9:3f:76:9f:31:37:31:45:c7:0e:11:9f:ee:
71:90:e2:58:68:71:44:a2:eb:2c:6c:43:90:84:38:
eb:67:28:3e:02:9d:c2:ec:1c:48:52:94:18:6f:e7:
8f:41:45:1f:c4:95:89:b7:af:f3:ee:a9:cb:92:b6:
d1:d8:29:b3:34:8d:7c:5a:58:bd:f9:f1:a1:d1:d4:
b0:2d:78:fd:72:e1:5b:cd:53:21:5f:22:e4:1b:bb:
e3:e2:f4:3d:a2:5b:48:58:a8:54:a5:2f:18:59:8e:
04:55:0e:f5:ac:34:d7:19:18:73:00:c0:76:38:a3:
b7:6b:54:bf:74:1a:48:76:47:fc:4a:a5:a6:a5:74:
a2:a0:8c:51:01:18:98:5c:16:84:c9:93:10:4b:26:
7c:5f:1b:ef:88:5c:12:31:57:84:2e:84:82:f3:63:
5b:3d:27:49:25:d3:80:24:cc:f6:19:19:2f:bc:db:
36:88:82:60:49:08:68:c9:a4:c2:62:22:16:20:a2:
53:aa:93:c3:38:90:4b:eb:f8:1d:87:c1:b6:ee:95:
ef:b4:7a:7e:62:07:c7:47:be:42:c2:44:cb:1f:15:
62:90:82:8b:ce:e9:d7:a5:56:5c:cc:af:af:22:88:
4d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9A:39:F1:B0:1E:F3:E3:63:AC:2B:6F:9D:F4:01:95:65:06:45:78
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/jpo58bAe8-NjrCtvnfQBlWUGRXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.129.0-37.77.135.255
37.221.200.0/23
37.221.203.0-37.221.206.255
46.34.134.0/24
46.34.136.0/21
46.34.148.0/22
46.229.208.0/22
46.231.208.0/21
62.32.64.0/24
62.32.66.0-62.32.70.255
62.32.73.0-62.32.76.255
62.32.83.0-62.32.85.255
62.32.88.0/22
62.32.94.0/24
79.134.192.0/19
79.142.80.0-79.142.92.255
80.79.64.0-80.79.76.255
80.79.79.0/24
80.250.87.0-80.250.95.255
85.114.0.0/19
87.249.55.0/24
89.104.97.0/24
89.104.115.0/24
89.104.118.0/24
89.223.1.0/24
92.255.40.0/23
92.255.44.0/22
93.191.58.0/24
93.191.60.0/24
93.191.63.0/24
95.161.144.0-95.161.223.255
95.161.228.0-95.161.239.255
145.255.232.0/21
149.126.16.0/21
178.16.144.0-178.16.156.255
178.16.158.0/23
185.7.232.0/22
185.81.220.0/22
185.102.8.0/22
185.119.0.0/22
185.171.192.0/22
185.241.176.0/22
185.244.132.0/22
217.79.0.0/20
IPv6:
2a01:590::/32
2a05:a400::/29
Signature Algorithm: sha256WithRSAEncryption
0b:c0:32:7d:4d:bc:31:88:b0:f9:ec:48:e1:76:32:59:95:30:
fa:a9:ab:a8:e4:f9:e0:6f:96:21:6e:02:3c:84:26:a0:ff:f1:
0f:27:c3:be:48:06:f8:40:f8:19:3d:43:6c:ca:7c:f2:eb:d1:
19:ba:bc:ca:fc:e4:47:26:56:ef:2f:87:1c:40:4a:27:4e:f0:
e2:05:ff:91:3d:f6:1c:68:61:6d:ba:83:ba:58:f0:5d:23:a0:
ef:08:98:a1:21:39:96:f4:d9:66:22:dd:a1:50:1f:84:0a:3d:
94:02:c5:c4:97:03:d0:4b:33:bb:b5:7d:8b:6a:62:d9:2c:19:
e3:41:1d:4e:b2:e2:27:ef:28:7f:d0:03:26:13:18:9b:04:0b:
8d:8f:e0:38:10:20:62:22:50:16:de:bd:dc:4d:d8:88:82:2c:
88:71:43:ad:46:ed:a0:3f:41:ab:d0:f1:e0:d5:ac:89:0b:11:
05:cd:b5:03:9a:47:82:22:44:72:21:d4:39:9e:9f:c9:36:ac:
e2:71:7c:02:c9:43:76:a1:a6:5b:84:ad:7d:98:f1:fe:45:55:
e7:3e:6c:6d:69:f3:1e:21:4a:ad:dd:e4:88:2d:0e:1e:34:1d:
dc:49:45:d2:a0:a9:fe:4a:c0:59:6d:4c:6f:2a:dd:6a:87:24:
6b:9a:4b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:46:11 2025 by rpki-client