Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/EYz_7EkdBq2YxwqK0j92Ian2Dus.roa
File: EYz_7EkdBq2YxwqK0j92Ian2Dus.roa (raw, json)
Hash identifier: qAjXDL81K76l+TWPsQRk4DUnlUfKjyX0blJqp0nICI8=
Subject key identifier: 11:8C:FF:EC:49:1D:06:AD:98:C7:0A:8A:D2:3F:76:21:A9:F6:0E:EB
Certificate issuer: /CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Certificate serial: 01856DC1ABD7C5EEB8B9123B7E963EF6C7C8
Authority key identifier: CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/EYz_7EkdBq2YxwqK0j92Ian2Dus.roa
Signing time: Sun 01 Jan 2023 14:34:46 +0000
ROA not before: Sun 01 Jan 2023 14:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25145
IP address blocks: 77.92.106.0/24 maxlen: 24
77.92.109.0/24 maxlen: 24
77.92.110.0/24 maxlen: 24
77.92.107.0/24 maxlen: 24
77.92.108.0/24 maxlen: 24
77.92.111.0/24 maxlen: 24
77.92.112.0/24 maxlen: 24
77.92.113.0/24 maxlen: 24
77.92.116.0/24 maxlen: 24
77.92.117.0/24 maxlen: 24
77.92.114.0/24 maxlen: 24
77.92.115.0/24 maxlen: 24
77.92.118.0/24 maxlen: 24
77.92.123.0/24 maxlen: 24
77.92.124.0/24 maxlen: 24
77.92.122.0/24 maxlen: 24
77.92.125.0/24 maxlen: 24
77.92.120.0/24 maxlen: 24
77.92.119.0/24 maxlen: 24
77.92.126.0/24 maxlen: 24
77.92.127.0/24 maxlen: 24
77.92.96.0/24 maxlen: 24
77.92.97.0/24 maxlen: 24
77.92.98.0/24 maxlen: 24
77.92.99.0/24 maxlen: 24
77.92.102.0/24 maxlen: 24
77.92.103.0/24 maxlen: 24
77.92.100.0/24 maxlen: 24
77.92.101.0/24 maxlen: 24
77.92.104.0/24 maxlen: 24
77.92.105.0/24 maxlen: 24
213.144.97.0/24 maxlen: 24
213.144.98.0/24 maxlen: 24
213.144.96.0/24 maxlen: 24
213.144.101.0/24 maxlen: 24
213.144.99.0/24 maxlen: 24
213.144.104.0/24 maxlen: 24
213.144.105.0/24 maxlen: 24
213.144.103.0/24 maxlen: 24
213.144.107.0/24 maxlen: 24
213.144.108.0/24 maxlen: 24
213.144.106.0/24 maxlen: 24
213.144.111.0/24 maxlen: 24
213.144.112.0/24 maxlen: 24
213.144.109.0/24 maxlen: 24
213.144.110.0/24 maxlen: 24
213.144.114.0/24 maxlen: 24
213.144.115.0/24 maxlen: 24
213.144.113.0/24 maxlen: 24
213.144.118.0/24 maxlen: 24
213.144.116.0/24 maxlen: 24
213.144.117.0/24 maxlen: 24
213.144.119.0/24 maxlen: 24
213.144.121.0/24 maxlen: 24
213.144.122.0/24 maxlen: 24
213.144.120.0/24 maxlen: 24
213.144.125.0/24 maxlen: 24
213.144.123.0/24 maxlen: 24
213.144.124.0/24 maxlen: 24
213.144.126.0/24 maxlen: 24
213.144.127.0/24 maxlen: 24
185.115.208.0/24 maxlen: 24
185.115.210.0/24 maxlen: 24
185.115.211.0/24 maxlen: 24
31.40.240.0/24 maxlen: 24
31.40.240.0/22 maxlen: 22
31.40.243.0/24 maxlen: 24
31.40.241.0/24 maxlen: 24
31.40.242.0/24 maxlen: 24
2a02:ac87:ac87::/48 maxlen: 48
2a02:ac80:10::/48 maxlen: 48
2a02:ac81::/32 maxlen: 32
2a02:ac82::/32 maxlen: 32
2a02:ac80:c0::/48 maxlen: 48
2a02:ac80:40::/48 maxlen: 48
2a02:ac84::/32 maxlen: 32
2a02:ac80::/29 maxlen: 29
2a02:ac80:7370::/48 maxlen: 48
2a02:ac80:70::/48 maxlen: 48
2a02:ac80:f0::/48 maxlen: 48
2a02:ac87:59cb::/48 maxlen: 48
2a02:ac83::/32 maxlen: 32
2a02:ac80:20::/48 maxlen: 48
2a02:ac80:a0::/48 maxlen: 48
2a02:ac87:5900::/48 maxlen: 48
2a02:ac80:d0::/48 maxlen: 48
2a02:ac80:50::/48 maxlen: 48
2a02:ac80:a00::/48 maxlen: 48
2a02:ac80:f000::/48 maxlen: 48
2a02:ac80:d00::/48 maxlen: 48
2a02:ac80:4000::/48 maxlen: 48
2a02:ac80:700::/48 maxlen: 48
2a02:ac80:c000::/48 maxlen: 48
2a02:ac80:e00::/48 maxlen: 48
2a02:ac80:b000::/48 maxlen: 48
2a02:ac80:b00::/48 maxlen: 48
2a02:ac80:500::/48 maxlen: 48
2a02:ac80:6000::/48 maxlen: 48
2a02:ac80:e000::/48 maxlen: 48
2a02:ac80:3000::/48 maxlen: 48
2a02:ac80:1000::/48 maxlen: 48
2a02:ac80:200::/48 maxlen: 48
2a02:ac80:300::/48 maxlen: 48
2a02:ac80:d000::/48 maxlen: 48
2a02:ac80:600::/48 maxlen: 48
2a02:ac80:7000::/48 maxlen: 48
2a02:ac80:400::/48 maxlen: 48
2a02:ac80:5000::/48 maxlen: 48
2a02:ac80:c00::/48 maxlen: 48
2a02:ac80:a000::/48 maxlen: 48
2a02:ac80:2000::/48 maxlen: 48
2a02:ac80:f00::/48 maxlen: 48
2a02:ac80:100::/48 maxlen: 48
2a02:ac85::/32 maxlen: 32
2a02:ac87::/32 maxlen: 32
2a02:ac80:b0::/48 maxlen: 48
2a02:ac80:30::/48 maxlen: 48
2a02:ac80::/32 maxlen: 32
2a02:ac80:60::/48 maxlen: 48
2a02:ac80:e0::/48 maxlen: 48
2a02:ac86::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ab:d7:c5:ee:b8:b9:12:3b:7e:96:3e:f6:c7:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Validity
Not Before: Jan 1 14:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=118cffec491d06ad98c70a8ad23f7621a9f60eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:65:bc:d8:db:09:bc:40:40:a8:c8:29:e9:28:
bc:c7:b6:80:9b:6b:10:eb:80:46:69:92:1f:23:61:
10:b0:f7:5f:d8:88:da:f6:ea:0c:f3:ab:9f:47:33:
b9:fa:47:9a:4d:97:b7:a0:fd:05:42:1b:0c:e3:0b:
91:44:3f:cc:62:76:29:93:74:fe:16:5a:fe:d1:83:
c4:62:e3:86:ab:43:65:4f:68:ee:36:96:16:bc:a2:
db:37:1a:fd:8c:71:31:ce:e2:20:22:07:07:0d:e0:
d7:27:6f:d3:79:af:a5:a2:62:eb:90:41:0b:04:03:
b7:c0:64:a2:3a:fe:69:2f:41:68:f3:01:f9:b0:14:
8e:1c:23:ce:41:f5:e1:a9:b6:49:01:55:46:01:bb:
e9:b4:75:35:95:f1:4f:07:45:43:6e:5e:ed:44:48:
91:ea:7b:7f:c7:76:0a:4a:04:e6:41:68:29:31:62:
91:b1:0e:43:02:bb:d7:41:bd:af:f9:ec:47:da:30:
98:f5:aa:32:a4:68:cb:5e:65:13:21:da:95:7c:f1:
99:0f:41:ee:6f:1b:26:ab:64:17:f5:d3:60:7e:ef:
b0:b8:99:0e:29:19:e3:90:f0:ff:83:7b:da:a1:ce:
a8:7c:47:49:30:a1:5c:91:d6:a6:15:1d:5b:57:d1:
d4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8C:FF:EC:49:1D:06:AD:98:C7:0A:8A:D2:3F:76:21:A9:F6:0E:EB
X509v3 Authority Key Identifier:
keyid:CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/EYz_7EkdBq2YxwqK0j92Ian2Dus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.240.0/22
77.92.96.0-77.92.120.255
77.92.122.0-77.92.127.255
185.115.208.0/24
185.115.210.0/23
213.144.96.0/22
213.144.101.0/24
213.144.103.0-213.144.127.255
IPv6:
2a02:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
a5:80:47:de:d0:e9:64:51:cc:50:29:cb:35:b3:e9:95:b5:bb:
45:08:71:0c:6b:51:48:8a:c0:cb:68:19:ca:0a:10:95:76:7d:
dc:ef:b4:a2:32:dd:92:88:14:f4:2e:c2:01:0e:27:36:ac:79:
54:0e:f2:aa:55:d8:a6:e4:6c:29:3b:42:09:fc:77:3f:21:90:
3a:75:fe:1f:6a:fb:81:4b:ec:cf:dd:f7:a6:dc:23:cb:49:22:
da:b6:ec:89:84:ad:c6:67:d9:28:d3:33:b4:f9:28:b5:2d:99:
41:d1:fd:a2:e6:bf:14:17:cd:31:d9:5e:d7:b3:32:fd:e0:68:
66:2c:dd:b7:64:43:84:72:4f:a0:16:4c:27:e9:b9:95:01:3c:
48:3f:a5:03:11:57:33:84:ab:71:a2:d4:29:ba:56:40:69:95:
e7:e0:41:77:9b:49:00:1b:4d:80:fb:1f:92:27:9b:2e:cc:b8:
d0:85:e8:13:19:81:af:f7:64:ce:95:d9:55:d2:af:14:7f:88:
b5:af:de:24:65:b4:18:a5:2a:64:64:66:88:e8:61:66:81:d2:
7e:38:96:15:a4:49:bf:6f:fb:7a:84:2c:ac:27:88:86:37:3a:
3b:42:fc:51:4c:80:c5:8e:17:2f:fa:e1:18:5e:79:2e:5d:49:
60:18:db:a7
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAYVtwavXxe64uRI7fpY+9sfIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOTYyMThjMjBlZmQ4ZmU1M2ZjYTk5OTBiNzI1ZGQ3OTYz
Yzg4NWMwHhcNMjMwMTAxMTQzNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMThjZmZlYzQ5MWQwNmFkOThjNzBhOGFkMjNmNzYyMWE5ZjYwZWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGW82NsJvEBAqMgp6Si8x7aAm2sQ
64BGaZIfI2EQsPdf2Ija9uoM86ufRzO5+keaTZe3oP0FQhsM4wuRRD/MYnYpk3T+
Flr+0YPEYuOGq0NlT2juNpYWvKLbNxr9jHExzuIgIgcHDeDXJ2/Tea+lomLrkEEL
BAO3wGSiOv5pL0Fo8wH5sBSOHCPOQfXhqbZJAVVGAbvptHU1lfFPB0VDbl7tREiR
6nt/x3YKSgTmQWgpMWKRsQ5DArvXQb2v+exH2jCY9aoypGjLXmUTIdqVfPGZD0Hu
bxsmq2QX9dNgfu+wuJkOKRnjkPD/g3vaoc6ofEdJMKFckdamFR1bV9HUSQIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFBGM/+xJHQatmMcKitI/diGp9g7rMB8GA1UdIwQY
MBaAFMqWIYwg79j+U/ypmQtyXdeWPIhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXBZaGpDRHYyUDVUX0ttWkMzSmQxNVk4aUZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC85NzU1ZDUtN2YwYi00MjdmLWFmZTAt
ZDcxMmQ0NzM4MDQ2LzEvRVl6XzdFa2RCcTJZeHdxSzBqOTJJYW4yRHVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC85NzU1ZDUtN2YwYi00MjdmLWFmZTAtZDcxMmQ0NzM4MDQ2
LzEveXBZaGpDRHYyUDVUX0ttWkMzSmQxNVk4aUZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQCHyjwMAwD
BAVNXGADBABNXHgwDAMEAU1cegMEB01cAAMEALlz0AMEAblz0gMEAtWQYAMEANWQ
ZTAMAwQA1ZBnAwQH1ZAAMA0EAgACMAcDBQMqAqyAMA0GCSqGSIb3DQEBCwUAA4IB
AQClgEfe0OlkUcxQKcs1s+mVtbtFCHEMa1FIisDLaBnKChCVdn3c77SiMt2SiBT0
LsIBDic2rHlUDvKqVdim5GwpO0IJ/Hc/IZA6df4favuBS+zP3fem3CPLSSLatuyJ
hK3GZ9ko0zO0+Si1LZlB0f2i5r8UF80x2V7XszL94GhmLN23ZEOEck+gFkwn6bmV
ATxIP6UDEVczhKtxotQpulZAaZXn4EF3m0kAG02A+x+SJ5suzLjQhegTGYGv92TO
ldlV0q8Uf4i1r94kZbQYpSpkZGaI6GFmgdJ+OJYVpEm/b/t6hCysJ4iGNzo7QvxR
TIDFjhcv+uEYXnkuXUlgGNun
-----END CERTIFICATE-----
Generated at Tue May 13 00:28:07 2025 by rpki-client