Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/tWHiOJu6P6OSDzb3vyqN8-lWb-4.roa
File: tWHiOJu6P6OSDzb3vyqN8-lWb-4.roa (raw, json)
Hash identifier: zzPgqL/d1kaiyCtbbAkhCRyyZVDmQCd+llA6bPoC6/g=
Subject key identifier: B5:61:E2:38:9B:BA:3F:A3:92:0F:36:F7:BF:2A:8D:F3:E9:56:6F:EE
Certificate issuer: /CN=efad344eb5f7eb1dee4b8f8435fb5b9d87663e9d
Certificate serial: 018D303DC7F9066F9398E3FE8338823D4441
Authority key identifier: EF:AD:34:4E:B5:F7:EB:1D:EE:4B:8F:84:35:FB:5B:9D:87:66:3E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7600TrX36x3uS4-ENftbnYdmPp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/tWHiOJu6P6OSDzb3vyqN8-lWb-4.roa
Signing time: Mon 22 Jan 2024 08:16:11 +0000
ROA not before: Mon 22 Jan 2024 08:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12479
IP address blocks: 1.178.224.0/19 maxlen: 19
1.178.224.0/21 maxlen: 21
1.178.232.0/21 maxlen: 21
1.178.240.0/21 maxlen: 21
1.178.248.0/21 maxlen: 21
62.36.0.0/16 maxlen: 24
62.36.21.0/24 maxlen: 24
85.48.0.0/12 maxlen: 24
85.48.188.0/24 maxlen: 24
86.104.186.0/23 maxlen: 24
89.44.184.0/22 maxlen: 24
90.160.0.0/12 maxlen: 24
93.117.88.0/21 maxlen: 21
93.117.88.0/22 maxlen: 22
93.117.92.0/22 maxlen: 22
95.214.36.0/23 maxlen: 24
107.183.128.0/17 maxlen: 17
109.205.128.0/21 maxlen: 21
109.205.128.0/22 maxlen: 22
109.205.128.0/23 maxlen: 23
109.205.130.0/23 maxlen: 23
109.205.132.0/22 maxlen: 22
109.205.132.0/23 maxlen: 23
109.205.134.0/23 maxlen: 23
113.203.128.0/18 maxlen: 18
145.1.128.0/17 maxlen: 17
145.1.128.0/19 maxlen: 19
145.1.160.0/19 maxlen: 19
145.1.192.0/20 maxlen: 20
145.1.208.0/20 maxlen: 20
145.1.224.0/22 maxlen: 22
145.1.228.0/22 maxlen: 22
145.1.232.0/21 maxlen: 21
145.1.240.0/20 maxlen: 20
149.74.0.0/16 maxlen: 16
149.74.0.0/22 maxlen: 22
149.74.0.0/24 maxlen: 24
149.74.1.0/24 maxlen: 24
149.74.2.0/23 maxlen: 23
149.74.4.0/22 maxlen: 22
149.74.4.0/23 maxlen: 23
149.74.6.0/23 maxlen: 23
149.74.8.0/22 maxlen: 22
149.74.16.0/22 maxlen: 22
149.74.20.0/22 maxlen: 22
149.74.24.0/22 maxlen: 22
149.74.28.0/22 maxlen: 22
149.74.30.0/24 maxlen: 24
149.74.32.0/20 maxlen: 20
149.74.48.0/21 maxlen: 21
149.74.56.0/22 maxlen: 22
149.74.60.0/22 maxlen: 22
149.74.64.0/21 maxlen: 21
149.74.72.0/21 maxlen: 21
149.74.80.0/22 maxlen: 22
149.74.84.0/22 maxlen: 22
149.74.88.0/22 maxlen: 22
149.74.92.0/22 maxlen: 22
149.74.96.0/20 maxlen: 20
149.74.96.0/23 maxlen: 23
149.74.98.0/23 maxlen: 23
149.74.100.0/23 maxlen: 23
149.74.102.0/23 maxlen: 23
149.74.104.0/23 maxlen: 23
149.74.106.0/23 maxlen: 23
149.74.108.0/23 maxlen: 23
149.74.110.0/23 maxlen: 23
149.74.112.0/21 maxlen: 21
149.74.120.0/21 maxlen: 21
149.74.128.0/22 maxlen: 22
149.74.132.0/22 maxlen: 22
149.74.134.0/24 maxlen: 24
149.74.136.0/22 maxlen: 22
149.74.140.0/22 maxlen: 22
149.74.144.0/22 maxlen: 22
149.74.148.0/22 maxlen: 22
149.74.152.0/21 maxlen: 21
149.74.160.0/22 maxlen: 22
149.74.160.0/23 maxlen: 23
149.74.164.0/22 maxlen: 22
149.74.168.0/22 maxlen: 22
149.74.170.0/24 maxlen: 24
149.74.172.0/22 maxlen: 22
149.74.176.0/22 maxlen: 22
149.74.178.0/24 maxlen: 24
149.74.180.0/22 maxlen: 22
149.74.184.0/22 maxlen: 22
149.74.187.0/24 maxlen: 24
149.74.188.0/22 maxlen: 22
149.74.192.0/22 maxlen: 22
149.74.196.0/22 maxlen: 22
149.74.197.0/24 maxlen: 24
149.74.199.0/24 maxlen: 24
149.74.200.0/22 maxlen: 22
149.74.204.0/22 maxlen: 22
149.74.208.0/22 maxlen: 22
149.74.208.0/23 maxlen: 23
149.74.210.0/23 maxlen: 23
149.74.212.0/22 maxlen: 22
149.74.216.0/22 maxlen: 22
149.74.220.0/22 maxlen: 22
149.74.224.0/22 maxlen: 22
149.74.232.0/22 maxlen: 22
149.74.236.0/22 maxlen: 22
149.74.240.0/22 maxlen: 22
149.74.244.0/22 maxlen: 22
149.74.248.0/22 maxlen: 22
149.74.251.0/24 maxlen: 24
149.74.252.0/22 maxlen: 22
149.74.252.0/23 maxlen: 23
151.252.16.0/21 maxlen: 21
152.41.0.0/17 maxlen: 17
161.199.192.0/22 maxlen: 22
176.10.16.0/21 maxlen: 21
176.10.24.0/21 maxlen: 21
176.104.64.0/19 maxlen: 19
185.124.36.0/22 maxlen: 22
185.132.192.0/22 maxlen: 22
185.147.93.0/24 maxlen: 24
188.93.32.0/22 maxlen: 22
188.126.128.0/19 maxlen: 19
188.126.128.0/22 maxlen: 22
188.126.132.0/22 maxlen: 22
188.126.136.0/22 maxlen: 22
188.126.140.0/22 maxlen: 22
188.126.144.0/22 maxlen: 22
188.126.148.0/22 maxlen: 22
188.126.152.0/22 maxlen: 22
188.126.156.0/23 maxlen: 23
188.126.158.0/23 maxlen: 23
188.126.158.0/24 maxlen: 24
188.208.0.0/20 maxlen: 20
188.208.0.0/22 maxlen: 22
188.208.4.0/22 maxlen: 22
188.208.8.0/22 maxlen: 22
188.208.8.0/24 maxlen: 24
188.208.9.0/24 maxlen: 24
188.208.12.0/22 maxlen: 22
188.208.12.0/24 maxlen: 24
188.208.13.0/24 maxlen: 24
188.208.14.0/24 maxlen: 24
188.208.40.0/21 maxlen: 21
188.239.128.0/19 maxlen: 19
188.239.128.0/21 maxlen: 21
188.239.144.0/22 maxlen: 22
188.239.148.0/22 maxlen: 22
188.239.152.0/23 maxlen: 23
188.239.154.0/23 maxlen: 23
188.239.156.0/23 maxlen: 23
188.239.158.0/23 maxlen: 23
188.240.128.0/20 maxlen: 20
188.240.128.0/21 maxlen: 21
188.240.136.0/22 maxlen: 22
188.240.140.0/22 maxlen: 22
192.157.192.0/18 maxlen: 24
192.157.192.0/22 maxlen: 22
192.157.196.0/22 maxlen: 22
192.157.200.0/21 maxlen: 21
192.157.208.0/21 maxlen: 21
192.157.216.0/21 maxlen: 21
193.124.1.0/24 maxlen: 24
193.124.25.0/24 maxlen: 24
193.124.31.0/24 maxlen: 24
193.124.32.0/24 maxlen: 24
193.124.37.0/24 maxlen: 24
193.124.43.0/24 maxlen: 24
193.124.51.0/24 maxlen: 24
193.124.61.0/24 maxlen: 24
193.124.70.0/23 maxlen: 24
193.124.81.0/24 maxlen: 24
193.124.85.0/24 maxlen: 24
193.124.120.0/24 maxlen: 24
193.124.132.0/24 maxlen: 24
193.124.135.0/24 maxlen: 24
193.124.255.0/24 maxlen: 24
194.58.28.0/23 maxlen: 24
194.58.30.0/24 maxlen: 24
194.58.35.0/24 maxlen: 24
194.58.80.0/23 maxlen: 24
194.58.84.0/22 maxlen: 24
194.135.0.0/24 maxlen: 24
194.135.3.0/24 maxlen: 24
194.135.19.0/24 maxlen: 24
194.135.28.0/23 maxlen: 24
194.135.31.0/24 maxlen: 24
194.135.56.0/22 maxlen: 24
194.135.76.0/22 maxlen: 24
194.135.101.0/24 maxlen: 24
194.135.102.0/24 maxlen: 24
194.135.125.0/24 maxlen: 24
194.135.126.0/23 maxlen: 24
194.135.134.0/24 maxlen: 24
194.135.196.0/22 maxlen: 24
195.254.182.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:3d:c7:f9:06:6f:93:98:e3:fe:83:38:82:3d:44:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efad344eb5f7eb1dee4b8f8435fb5b9d87663e9d
Validity
Not Before: Jan 22 08:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b561e2389bba3fa3920f36f7bf2a8df3e9566fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a8:20:4d:2f:4f:d0:2d:b5:7d:e9:3c:62:96:
96:74:b4:2f:a8:2d:94:f6:c9:7f:ba:ab:08:42:56:
a8:71:a9:39:79:09:a2:cf:cf:51:3c:d9:e8:33:30:
4c:ea:e9:65:25:32:1c:85:b4:c5:57:a4:34:0d:02:
aa:b7:83:df:c4:a2:2f:6f:3c:5e:4f:1d:43:6e:76:
d9:7f:51:15:f7:cd:8b:fc:c7:fb:90:f0:e6:55:3c:
1a:0e:ca:a1:5e:9d:6e:3d:25:3a:de:fe:4b:65:d7:
69:83:e6:9d:20:a9:dc:2f:94:b1:f9:d9:46:0f:14:
6a:da:d9:b5:73:99:24:d1:67:43:37:e1:c6:c8:d2:
16:45:99:f2:f6:8b:8f:08:e7:82:f2:1d:a5:af:04:
55:4d:75:c5:8c:0c:ad:93:42:08:3c:df:e3:e8:4e:
14:37:11:77:05:59:50:d3:8b:fe:71:ef:4a:ef:5c:
b6:e1:55:ed:97:2f:b4:96:5f:6a:a4:2a:ba:cb:b6:
b8:e2:c0:d9:a8:e9:b3:5d:56:c5:1f:a8:16:45:28:
f5:f0:e1:5b:cf:10:7e:68:b2:e5:0a:8d:ff:81:94:
ca:a1:f1:36:5c:f8:92:ce:82:3e:b2:79:23:67:0a:
73:99:c2:7f:33:48:a5:57:38:7d:75:f7:c0:f5:fd:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:61:E2:38:9B:BA:3F:A3:92:0F:36:F7:BF:2A:8D:F3:E9:56:6F:EE
X509v3 Authority Key Identifier:
keyid:EF:AD:34:4E:B5:F7:EB:1D:EE:4B:8F:84:35:FB:5B:9D:87:66:3E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7600TrX36x3uS4-ENftbnYdmPp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/tWHiOJu6P6OSDzb3vyqN8-lWb-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1a830a-f061-4cdc-bafb-a2fe9f015d71/1/7600TrX36x3uS4-ENftbnYdmPp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.178.224.0/19
62.36.0.0/16
85.48.0.0/12
86.104.186.0/23
89.44.184.0/22
90.160.0.0/12
93.117.88.0/21
95.214.36.0/23
107.183.128.0/17
109.205.128.0/21
113.203.128.0/18
145.1.128.0/17
149.74.0.0/16
151.252.16.0/21
152.41.0.0/17
161.199.192.0/22
176.10.16.0/20
176.104.64.0/19
185.124.36.0/22
185.132.192.0/22
185.147.93.0/24
188.93.32.0/22
188.126.128.0/19
188.208.0.0/20
188.208.40.0/21
188.239.128.0/19
188.240.128.0/20
192.157.192.0/18
193.124.1.0/24
193.124.25.0/24
193.124.31.0-193.124.32.255
193.124.37.0/24
193.124.43.0/24
193.124.51.0/24
193.124.61.0/24
193.124.70.0/23
193.124.81.0/24
193.124.85.0/24
193.124.120.0/24
193.124.132.0/24
193.124.135.0/24
193.124.255.0/24
194.58.28.0-194.58.30.255
194.58.35.0/24
194.58.80.0/23
194.58.84.0/22
194.135.0.0/24
194.135.3.0/24
194.135.19.0/24
194.135.28.0/23
194.135.31.0/24
194.135.56.0/22
194.135.76.0/22
194.135.101.0-194.135.102.255
194.135.125.0-194.135.127.255
194.135.134.0/24
194.135.196.0/22
195.254.182.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:3f:d3:f4:13:b0:e6:7c:de:f3:c2:61:d1:13:42:46:94:a0:
f1:cc:0b:b3:6d:fe:86:c3:4b:82:b1:d4:07:2b:5e:4c:31:06:
59:66:ec:58:82:3f:1f:c7:fe:73:5d:fe:7d:f7:9b:de:e4:12:
97:2d:a6:52:11:51:39:eb:86:bd:62:c6:eb:1e:57:51:c3:76:
29:79:f2:39:10:5b:10:38:8a:79:17:fb:43:50:49:85:f4:76:
f2:3b:fb:69:cb:86:ca:53:c3:56:a9:63:7d:c6:58:82:c3:b4:
5b:6a:5d:05:66:f4:b7:0f:18:5b:0e:34:15:c0:dc:ed:65:70:
a7:6f:a6:99:14:1b:5a:0d:78:c2:b0:e9:00:4c:37:4d:af:36:
7b:79:4e:8f:3a:18:44:22:d7:72:04:a2:bc:68:05:68:0a:3c:
3a:4e:9a:4a:9f:39:e7:0a:55:1a:4e:e4:17:a8:70:be:26:cb:
ff:e5:1a:ec:74:8c:4f:89:a5:62:c6:86:20:b8:fc:9a:c0:a5:
ce:14:77:43:e3:ac:8b:3b:ac:5d:36:23:33:f4:06:65:98:ad:
79:9a:19:c4:14:6c:c5:3c:e0:37:1b:d7:b2:8b:40:63:af:47:
0f:4b:79:5c:8b:08:84:bb:7c:1f:7e:8a:46:09:4b:1a:93:2a:
c6:3f:02:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 05:42:41 2025 by rpki-client