Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/l8dtivCmenaBrDFZkXR8rHWBzPQ.roa
File: l8dtivCmenaBrDFZkXR8rHWBzPQ.roa (raw, json)
Hash identifier: wapX6gAiceKICVXF5IZa68mbOPxDLa1v+3tLH/sxByU=
Subject key identifier: 97:C7:6D:8A:F0:A6:7A:76:81:AC:31:59:91:74:7C:AC:75:81:CC:F4
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 01826CC40A2E3CBF83F824EC758101937086
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/l8dtivCmenaBrDFZkXR8rHWBzPQ.roa
Signing time: Fri 05 Aug 2022 06:49:23 +0000
ROA not before: Fri 05 Aug 2022 06:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8492
IP address blocks: 37.221.206.0/24 maxlen: 24
37.221.203.0/24 maxlen: 24
37.221.204.0/23 maxlen: 23
37.221.200.0/23 maxlen: 23
85.114.0.0/19 maxlen: 19
92.255.44.0/24 maxlen: 24
92.255.41.0/24 maxlen: 24
185.241.176.0/22 maxlen: 22
92.255.40.0/24 maxlen: 24
92.255.45.0/24 maxlen: 24
92.255.46.0/24 maxlen: 24
92.255.47.0/24 maxlen: 24
95.161.144.0/21 maxlen: 21
145.255.232.0/24 maxlen: 24
145.255.233.0/24 maxlen: 24
95.161.152.0/22 maxlen: 24
95.161.156.0/22 maxlen: 22
145.255.236.0/22 maxlen: 22
145.255.234.0/23 maxlen: 23
95.161.164.0/22 maxlen: 22
95.161.160.0/19 maxlen: 19
87.249.55.0/24 maxlen: 24
62.32.64.0/24 maxlen: 24
62.32.66.0/23 maxlen: 23
62.32.70.0/24 maxlen: 24
62.32.68.0/23 maxlen: 23
62.32.75.0/24 maxlen: 24
62.32.76.0/24 maxlen: 24
62.32.73.0/24 maxlen: 24
62.32.74.0/24 maxlen: 24
62.32.84.0/23 maxlen: 23
62.32.83.0/24 maxlen: 24
62.32.91.0/24 maxlen: 24
62.32.89.0/24 maxlen: 24
62.32.90.0/24 maxlen: 24
62.32.88.0/24 maxlen: 24
62.32.94.0/24 maxlen: 24
80.79.64.0/21 maxlen: 21
80.79.76.0/24 maxlen: 24
80.79.72.0/22 maxlen: 22
80.79.79.0/24 maxlen: 24
185.119.0.0/22 maxlen: 22
217.79.4.0/23 maxlen: 23
217.79.0.0/22 maxlen: 22
217.79.10.0/23 maxlen: 23
217.79.8.0/24 maxlen: 24
217.79.9.0/24 maxlen: 24
217.79.6.0/23 maxlen: 23
217.79.15.0/24 maxlen: 24
217.79.14.0/24 maxlen: 24
217.79.12.0/23 maxlen: 23
149.126.16.0/22 maxlen: 22
149.126.22.0/24 maxlen: 24
149.126.23.0/24 maxlen: 24
149.126.20.0/23 maxlen: 23
37.77.132.0/24 maxlen: 24
37.77.130.0/23 maxlen: 23
89.104.118.0/24 maxlen: 24
89.104.115.0/24 maxlen: 24
37.77.129.0/24 maxlen: 24
37.77.133.0/24 maxlen: 24
37.77.134.0/23 maxlen: 23
46.231.208.0/24 maxlen: 24
46.231.209.0/24 maxlen: 24
46.231.212.0/23 maxlen: 23
46.231.210.0/23 maxlen: 23
46.231.215.0/24 maxlen: 24
46.231.214.0/24 maxlen: 24
93.191.58.0/24 maxlen: 24
93.191.63.0/24 maxlen: 24
93.191.60.0/24 maxlen: 24
185.171.192.0/22 maxlen: 22
89.104.97.0/24 maxlen: 24
178.16.144.0/22 maxlen: 22
178.16.152.0/22 maxlen: 22
178.16.150.0/24 maxlen: 24
178.16.151.0/24 maxlen: 24
178.16.148.0/23 maxlen: 23
178.16.158.0/23 maxlen: 23
178.16.156.0/24 maxlen: 24
185.244.132.0/22 maxlen: 22
80.250.88.0/21 maxlen: 21
80.250.87.0/24 maxlen: 24
185.7.232.0/22 maxlen: 22
46.34.136.0/21 maxlen: 21
79.142.80.0/21 maxlen: 21
46.34.134.0/24 maxlen: 24
79.142.88.0/22 maxlen: 22
46.34.148.0/22 maxlen: 22
79.142.92.0/24 maxlen: 24
185.102.10.0/24 maxlen: 24
185.102.8.0/22 maxlen: 22
185.81.220.0/22 maxlen: 22
95.161.232.0/22 maxlen: 22
95.161.228.0/22 maxlen: 22
95.161.236.0/22 maxlen: 22
79.134.192.0/24 maxlen: 24
79.134.196.0/23 maxlen: 23
79.134.198.0/23 maxlen: 23
79.134.194.0/23 maxlen: 23
95.161.180.0/22 maxlen: 22
79.134.193.0/24 maxlen: 24
79.134.200.0/21 maxlen: 21
95.161.192.0/22 maxlen: 22
95.161.192.0/19 maxlen: 19
95.161.188.0/22 maxlen: 22
79.134.213.0/24 maxlen: 24
79.134.212.0/24 maxlen: 24
79.134.208.0/22 maxlen: 22
79.134.214.0/23 maxlen: 23
79.134.216.0/22 maxlen: 22
95.161.213.0/24 maxlen: 24
79.134.222.0/23 maxlen: 23
79.134.220.0/23 maxlen: 23
95.161.214.0/23 maxlen: 23
95.161.218.0/23 maxlen: 23
95.161.216.0/23 maxlen: 23
95.161.220.0/24 maxlen: 24
89.223.1.0/24 maxlen: 24
46.229.210.0/23 maxlen: 23
46.229.210.0/24 maxlen: 24
46.229.211.0/24 maxlen: 24
46.229.208.0/23 maxlen: 23
46.229.208.0/22 maxlen: 22
2a01:590::/32 maxlen: 32
2a05:a400::/29 maxlen: 29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6c:c4:0a:2e:3c:bf:83:f8:24:ec:75:81:01:93:70:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Aug 5 06:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97c76d8af0a67a7681ac315991747cac7581ccf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e0:7a:fb:43:bf:d7:7b:b4:19:a8:5c:77:45:
54:fe:07:b8:34:4a:6b:6e:88:c4:32:4e:66:6a:81:
81:90:29:aa:12:f7:dc:52:81:fd:09:9b:29:ff:7b:
26:ff:74:54:83:5e:5f:cc:55:72:df:3c:0d:77:8e:
57:ab:35:bc:37:fb:d1:df:9a:0c:d2:12:d8:a8:c4:
d1:2f:c4:6b:9e:f1:07:48:8e:f9:d7:88:04:3f:42:
1d:2c:0d:cd:c7:f7:9f:19:57:bd:8a:0f:f5:10:ca:
42:aa:d6:ec:cd:82:83:a8:3b:e1:00:fc:d6:9f:15:
51:2e:5e:20:96:dd:df:f3:f0:d2:3a:90:97:ed:1f:
93:4c:86:dc:88:6f:9d:01:cc:da:39:ff:80:96:e3:
06:9a:ed:b5:0c:f7:af:91:0c:db:83:15:bd:b6:15:
be:3f:cb:a4:24:92:57:09:a1:ab:0b:58:43:70:ac:
e7:13:35:51:5b:f7:a0:85:f5:2c:55:3e:65:0f:79:
12:2a:f3:e3:90:07:35:58:77:d8:23:be:b7:79:d8:
b0:61:b6:cb:d0:f9:da:aa:81:87:5d:52:3c:1b:ca:
52:aa:62:aa:92:c0:10:5a:fc:2c:60:c6:20:2b:4b:
35:dd:7a:26:2a:e6:48:f4:fe:be:2a:b2:1e:d4:6f:
dc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C7:6D:8A:F0:A6:7A:76:81:AC:31:59:91:74:7C:AC:75:81:CC:F4
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/l8dtivCmenaBrDFZkXR8rHWBzPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.129.0-37.77.135.255
37.221.200.0/23
37.221.203.0-37.221.206.255
46.34.134.0/24
46.34.136.0/21
46.34.148.0/22
46.229.208.0/22
46.231.208.0/21
62.32.64.0/24
62.32.66.0-62.32.70.255
62.32.73.0-62.32.76.255
62.32.83.0-62.32.85.255
62.32.88.0/22
62.32.94.0/24
79.134.192.0/19
79.142.80.0-79.142.92.255
80.79.64.0-80.79.76.255
80.79.79.0/24
80.250.87.0-80.250.95.255
85.114.0.0/19
87.249.55.0/24
89.104.97.0/24
89.104.115.0/24
89.104.118.0/24
89.223.1.0/24
92.255.40.0/23
92.255.44.0/22
93.191.58.0/24
93.191.60.0/24
93.191.63.0/24
95.161.144.0-95.161.223.255
95.161.228.0-95.161.239.255
145.255.232.0/21
149.126.16.0/21
178.16.144.0-178.16.156.255
178.16.158.0/23
185.7.232.0/22
185.81.220.0/22
185.102.8.0/22
185.119.0.0/22
185.171.192.0/22
185.241.176.0/22
185.244.132.0/22
217.79.0.0/20
IPv6:
2a01:590::/32
2a05:a400::/29
Signature Algorithm: sha256WithRSAEncryption
8c:77:5a:4e:17:6d:d3:c8:33:f0:7c:3f:3d:fa:6b:09:44:f5:
17:4b:c1:f2:cf:3d:38:ad:81:a8:63:d3:2b:52:ca:cd:5f:e6:
fd:2e:1c:64:50:5c:8c:bb:f0:ac:4b:0a:36:a6:b3:2c:47:4e:
8c:34:91:d0:cc:19:ef:57:b1:85:1c:d9:a8:6b:bc:2c:92:de:
95:ab:8a:fe:af:ad:10:d1:23:60:a6:a9:fe:9c:98:19:c6:58:
47:97:53:e0:01:80:93:8d:0c:be:45:f8:94:41:33:1f:64:1a:
65:c0:8b:1c:34:db:ca:7a:53:fd:ee:b4:29:76:15:38:b2:02:
2e:b7:70:be:c3:68:d9:6c:37:82:38:22:fc:eb:d6:6a:58:d9:
8b:c9:88:d5:ea:6d:83:a0:db:01:ea:06:3e:f7:86:bf:06:b7:
6d:7b:ca:31:59:14:00:c3:95:da:a7:bc:e7:5c:3b:08:d3:a3:
58:b7:ee:b7:f9:dc:8e:1e:9a:82:c8:31:fb:57:53:90:2e:43:
e4:2e:d8:15:7f:9a:50:05:89:08:db:88:5f:0a:a8:93:d2:c9:
76:2a:c9:92:c8:56:0e:48:22:85:ca:6b:12:80:70:6f:4a:90:
e3:23:65:14:ad:40:e5:39:f3:e3:61:02:06:3a:67:35:68:c8:
c1:12:e3:f2
-----BEGIN CERTIFICATE-----
MIIGdzCCBV+gAwIBAgISAYJsxAouPL+D+CTsdYEBk3CGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5Nzk4NjNjZWE4MmFlYjhlOWRmMzg0YjM5YWE1MTc2ZjRi
Y2ZhNjEwHhcNMjIwODA1MDY0OTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2M3NmQ4YWYwYTY3YTc2ODFhYzMxNTk5MTc0N2NhYzc1ODFjY2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyeB6+0O/13u0Gahcd0VU/ge4NEpr
bojEMk5maoGBkCmqEvfcUoH9CZsp/3sm/3RUg15fzFVy3zwNd45XqzW8N/vR35oM
0hLYqMTRL8RrnvEHSI7514gEP0IdLA3Nx/efGVe9ig/1EMpCqtbszYKDqDvhAPzW
nxVRLl4glt3f8/DSOpCX7R+TTIbciG+dAczaOf+AluMGmu21DPevkQzbgxW9thW+
P8ukJJJXCaGrC1hDcKznEzVRW/eghfUsVT5lD3kSKvPjkAc1WHfYI763ediwYbbL
0PnaqoGHXVI8G8pSqmKqksAQWvwsYMYgK0s13XomKuZI9P6+KrIe1G/cgQIDAQAB
o4IDgzCCA38wHQYDVR0OBBYEFJfHbYrwpnp2gawxWZF0fKx1gcz0MB8GA1UdIwQY
MBaAFHl5hjzqgq646d84SzmqUXb0vPphMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVhtR1BPcUNycmpwM3poTE9hcFJkdlM4LW1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8xY2NmMjUtMjBkZS00YjJlLWEwZTEt
ZGU0YWNmNDQ3ZmFlLzEvbDhkdGl2Q21lbmFCckRGWmtYUjhySFdCelBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8xY2NmMjUtMjBkZS00YjJlLWEwZTEtZGU0YWNmNDQ3ZmFl
LzEvZVhtR1BPcUNycmpwM3poTE9hcFJkdlM4LW1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBlwYIKwYBBQUHAQcBAf8EggGGMIIBgjCCAWgEAgABMIIB
YDAMAwQAJU2BAwQDJU2AAwQBJd3IMAwDBAAl3csDBAAl3c4DBAAuIoYDBAMuIogD
BAIuIpQDBAIu5dADBAMu59ADBAA+IEAwDAMEAT4gQgMEAD4gRjAMAwQAPiBJAwQA
PiBMMAwDBAA+IFMDBAE+IFQDBAI+IFgDBAA+IF4DBAVPhsAwDAMEBE+OUAMEAE+O
XDAMAwQGUE9AAwQAUE9MAwQAUE9PMAwDBABQ+lcDBAVQ+kADBAVVcgADBABX+TcD
BABZaGEDBABZaHMDBABZaHYDBABZ3wEDBAFc/ygDBAJc/ywDBABdvzoDBABdvzwD
BABdvz8wDAMEBF+hkAMEBV+hwDAMAwQCX6HkAwQEX6HgAwQDkf/oAwQDlX4QMAwD
BASyEJADBACyEJwDBAGyEJ4DBAK5B+gDBAK5UdwDBAK5ZggDBAK5dwADBAK5q8AD
BAK58bADBAK59IQDBATZTwAwFAQCAAIwDgMFACoBBZADBQMqBaQAMA0GCSqGSIb3
DQEBCwUAA4IBAQCMd1pOF23TyDPwfD89+msJRPUXS8Hyzz04rYGoY9MrUsrNX+b9
LhxkUFyMu/CsSwo2prMsR06MNJHQzBnvV7GFHNmoa7wskt6Vq4r+r60Q0SNgpqn+
nJgZxlhHl1PgAYCTjQy+RfiUQTMfZBplwIscNNvKelP97rQpdhU4sgIut3C+w2jZ
bDeCOCL869ZqWNmLyYjV6m2DoNsB6gY+94a/Brdte8oxWRQAw5Xap7znXDsI06NY
t+63+dyOHpqCyDH7V1OQLkPkLtgVf5pQBYkI24hfCqiT0sl2KsmSyFYOSCKFymsS
gHBvSpDjI2UUrUDlOfPjYQIGOmc1aMjBEuPy
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:51 2024 by rpki-client on console-fra.rpki-client.org