Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/0nfY3Prp66HXKYApVKuDV2C0k7s.roa
File: 0nfY3Prp66HXKYApVKuDV2C0k7s.roa (raw, json)
Hash identifier: Y52doobuEXDYb6ItgA7WIsKjjOKsUAyWxkl4B6RtjsE=
Subject key identifier: D2:77:D8:DC:FA:E9:EB:A1:D7:29:80:29:54:AB:83:57:60:B4:93:BB
Certificate issuer: /CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Certificate serial: 01892680A34253F4F552CD6FB315FB743B7C
Authority key identifier: AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/0nfY3Prp66HXKYApVKuDV2C0k7s.roa
Signing time: Wed 05 Jul 2023 14:41:51 +0000
ROA not before: Wed 05 Jul 2023 14:41:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25229
IP address blocks: 77.121.17.0/24 maxlen: 24
77.121.16.0/24 maxlen: 24
77.121.15.0/24 maxlen: 24
77.121.13.0/24 maxlen: 24
109.201.227.0/24 maxlen: 24
77.121.12.0/24 maxlen: 24
77.121.18.0/24 maxlen: 24
77.121.19.0/24 maxlen: 24
77.121.24.0/24 maxlen: 24
77.121.23.0/24 maxlen: 24
77.121.22.0/24 maxlen: 24
77.121.21.0/24 maxlen: 24
77.121.20.0/24 maxlen: 24
77.121.30.0/24 maxlen: 24
77.121.29.0/24 maxlen: 24
77.121.28.0/24 maxlen: 24
77.121.26.0/24 maxlen: 24
77.121.25.0/24 maxlen: 24
93.74.0.0/17 maxlen: 18
93.74.0.0/16 maxlen: 17
109.201.226.0/24 maxlen: 24
109.201.225.0/24 maxlen: 24
109.201.224.0/24 maxlen: 24
77.120.4.0/24 maxlen: 24
77.120.6.0/24 maxlen: 24
93.73.0.0/16 maxlen: 17
93.72.0.0/16 maxlen: 17
93.72.0.0/15 maxlen: 16
95.69.240.0/21 maxlen: 22
95.69.250.0/23 maxlen: 24
95.69.248.0/22 maxlen: 23
77.123.64.0/19 maxlen: 20
77.123.0.0/18 maxlen: 19
77.123.32.0/19 maxlen: 20
77.123.160.0/19 maxlen: 20
95.69.192.0/19 maxlen: 20
141.170.226.0/24 maxlen: 24
45.15.234.0/23 maxlen: 23
141.170.229.0/24 maxlen: 24
141.170.227.0/24 maxlen: 24
141.170.233.0/24 maxlen: 24
141.170.232.0/24 maxlen: 24
141.170.231.0/24 maxlen: 24
141.170.230.0/24 maxlen: 24
141.170.238.0/24 maxlen: 24
95.69.224.0/21 maxlen: 22
141.170.236.0/24 maxlen: 24
77.123.96.0/21 maxlen: 22
77.123.104.0/21 maxlen: 22
95.69.128.0/20 maxlen: 21
95.69.144.0/21 maxlen: 22
77.123.112.0/21 maxlen: 22
95.69.152.0/22 maxlen: 23
77.123.120.0/21 maxlen: 22
77.123.128.0/19 maxlen: 20
95.69.156.0/22 maxlen: 23
95.69.160.0/19 maxlen: 20
77.123.144.0/22 maxlen: 22
188.230.28.0/22 maxlen: 23
188.230.26.0/23 maxlen: 24
188.230.32.0/21 maxlen: 22
188.230.40.0/21 maxlen: 22
188.230.48.0/21 maxlen: 22
188.230.56.0/21 maxlen: 22
188.230.64.0/21 maxlen: 22
188.230.78.0/23 maxlen: 24
77.122.128.0/17 maxlen: 18
188.230.74.0/23 maxlen: 24
188.230.0.0/21 maxlen: 22
188.230.0.0/22 maxlen: 23
188.230.4.0/23 maxlen: 24
188.230.8.0/21 maxlen: 22
188.230.16.0/21 maxlen: 22
188.230.24.0/23 maxlen: 24
77.244.32.0/20 maxlen: 21
188.230.80.0/21 maxlen: 22
188.230.88.0/22 maxlen: 23
188.230.96.0/23 maxlen: 24
188.230.118.0/23 maxlen: 24
188.230.116.0/23 maxlen: 24
188.230.120.0/22 maxlen: 23
188.230.126.0/23 maxlen: 24
77.121.128.0/20 maxlen: 21
77.121.144.0/20 maxlen: 21
77.121.160.0/19 maxlen: 20
77.121.72.0/21 maxlen: 22
77.121.80.0/20 maxlen: 21
77.121.96.0/20 maxlen: 21
77.121.96.0/19 maxlen: 20
77.121.112.0/20 maxlen: 21
77.122.0.0/17 maxlen: 18
193.189.96.0/23 maxlen: 24
77.122.0.0/16 maxlen: 17
77.121.192.0/20 maxlen: 21
77.121.192.0/19 maxlen: 20
77.121.208.0/21 maxlen: 22
77.121.216.0/21 maxlen: 22
77.121.224.0/19 maxlen: 20
77.120.200.0/21 maxlen: 22
77.120.208.0/21 maxlen: 22
77.120.112.0/22 maxlen: 22
77.120.128.0/18 maxlen: 19
109.201.232.0/22 maxlen: 23
109.201.228.0/22 maxlen: 23
109.201.238.0/23 maxlen: 24
109.201.236.0/23 maxlen: 24
109.201.240.0/20 maxlen: 21
77.121.64.0/21 maxlen: 22
77.120.216.0/22 maxlen: 23
77.120.224.0/20 maxlen: 21
77.120.224.0/22 maxlen: 23
77.120.220.0/22 maxlen: 23
77.120.232.0/22 maxlen: 23
77.120.228.0/22 maxlen: 23
77.120.236.0/22 maxlen: 23
77.120.240.0/20 maxlen: 21
77.121.0.0/21 maxlen: 22
77.121.8.0/22 maxlen: 23
93.79.96.0/21 maxlen: 22
93.79.104.0/21 maxlen: 22
93.79.112.0/23 maxlen: 24
93.79.114.0/23 maxlen: 24
93.79.112.0/21 maxlen: 22
93.79.120.0/21 maxlen: 22
93.79.64.0/19 maxlen: 20
77.120.52.0/22 maxlen: 23
77.120.64.0/21 maxlen: 22
77.120.60.0/22 maxlen: 23
77.120.72.0/21 maxlen: 22
77.120.80.0/22 maxlen: 23
77.120.80.0/20 maxlen: 21
77.120.84.0/22 maxlen: 23
77.120.88.0/22 maxlen: 23
77.120.92.0/22 maxlen: 23
77.120.96.0/19 maxlen: 20
77.120.0.0/20 maxlen: 21
77.120.16.0/20 maxlen: 21
77.120.32.0/20 maxlen: 21
93.78.96.0/19 maxlen: 20
93.78.128.0/17 maxlen: 18
93.78.128.0/18 maxlen: 19
93.79.0.0/18 maxlen: 19
93.79.0.0/19 maxlen: 20
93.79.32.0/19 maxlen: 20
93.78.192.0/18 maxlen: 19
93.77.192.0/19 maxlen: 20
93.77.224.0/19 maxlen: 20
93.77.128.0/19 maxlen: 20
93.78.32.0/20 maxlen: 21
93.78.48.0/21 maxlen: 22
93.78.56.0/21 maxlen: 22
93.78.0.0/19 maxlen: 20
93.77.0.0/19 maxlen: 20
93.76.160.0/19 maxlen: 20
95.69.232.0/24 maxlen: 24
141.170.244.0/22 maxlen: 23
141.170.250.0/23 maxlen: 24
141.170.248.0/23 maxlen: 24
95.69.253.0/24 maxlen: 24
95.69.252.0/24 maxlen: 24
95.69.255.0/24 maxlen: 24
95.69.254.0/24 maxlen: 24
93.76.192.0/18 maxlen: 19
93.77.64.0/18 maxlen: 19
82.144.192.0/19 maxlen: 20
93.77.32.0/20 maxlen: 21
93.77.48.0/21 maxlen: 22
93.77.56.0/21 maxlen: 22
93.76.0.0/19 maxlen: 20
93.76.32.0/20 maxlen: 21
93.76.48.0/20 maxlen: 21
93.75.224.0/19 maxlen: 20
93.76.112.0/20 maxlen: 21
93.76.128.0/19 maxlen: 20
141.170.226.0/23 maxlen: 24
141.170.224.0/23 maxlen: 24
45.15.234.0/24 maxlen: 24
141.170.234.0/23 maxlen: 24
141.170.240.0/22 maxlen: 23
93.76.64.0/20 maxlen: 21
93.76.80.0/21 maxlen: 22
93.76.88.0/21 maxlen: 22
93.76.96.0/21 maxlen: 22
93.76.104.0/21 maxlen: 22
93.75.64.0/21 maxlen: 22
93.75.72.0/21 maxlen: 22
93.75.80.0/21 maxlen: 22
188.230.71.0/24 maxlen: 24
188.230.77.0/24 maxlen: 24
93.75.88.0/21 maxlen: 22
188.230.76.0/24 maxlen: 24
188.230.73.0/24 maxlen: 24
188.230.72.0/24 maxlen: 24
93.75.0.0/19 maxlen: 20
188.230.7.0/24 maxlen: 24
93.75.32.0/19 maxlen: 20
93.75.160.0/21 maxlen: 22
93.75.168.0/21 maxlen: 22
93.75.176.0/21 maxlen: 22
93.75.184.0/21 maxlen: 22
93.75.192.0/19 maxlen: 20
93.75.192.0/18 maxlen: 19
93.75.96.0/19 maxlen: 20
188.230.98.0/24 maxlen: 24
188.230.95.0/24 maxlen: 24
188.230.94.0/24 maxlen: 24
188.230.105.0/24 maxlen: 24
188.230.104.0/24 maxlen: 24
188.230.103.0/24 maxlen: 24
188.230.102.0/24 maxlen: 24
93.75.112.0/20 maxlen: 21
188.230.100.0/24 maxlen: 24
188.230.99.0/24 maxlen: 24
188.230.112.0/24 maxlen: 24
188.230.111.0/24 maxlen: 24
188.230.109.0/24 maxlen: 24
188.230.108.0/24 maxlen: 24
188.230.107.0/24 maxlen: 24
188.230.106.0/24 maxlen: 24
93.75.128.0/20 maxlen: 21
93.75.128.0/19 maxlen: 20
188.230.115.0/24 maxlen: 24
188.230.113.0/24 maxlen: 24
188.230.124.0/24 maxlen: 24
93.75.144.0/20 maxlen: 21
93.74.128.0/17 maxlen: 18
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:80:a3:42:53:f4:f5:52:cd:6f:b3:15:fb:74:3b:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Validity
Not Before: Jul 5 14:41:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d277d8dcfae9eba1d729802954ab835760b493bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d5:77:e7:74:0b:d9:09:7f:38:a3:59:69:96:
2f:de:78:34:cd:52:40:5d:63:f9:d7:7a:4e:57:a0:
c8:55:d3:bf:77:19:ef:c9:28:54:e8:43:92:b9:6a:
be:be:bf:0b:31:3c:ce:f1:7e:f9:88:25:41:0f:d0:
fa:9b:0f:8a:f4:aa:a4:06:36:1e:3a:00:c1:17:ae:
98:ad:14:77:87:3e:d6:f9:03:f2:04:c7:2f:74:95:
4e:cf:18:f9:23:ff:b4:83:e5:b2:46:01:24:10:cb:
ec:be:fc:46:c4:9f:e9:a0:78:d2:91:86:fd:1e:fb:
cd:74:82:27:d4:74:1d:0a:57:3e:ae:de:c6:27:22:
41:ae:f3:82:91:4d:a9:c3:dc:9f:b3:ad:0c:f4:88:
7f:40:2a:4b:b9:f9:8c:e4:87:02:ca:97:81:30:11:
e7:da:34:d7:16:fe:a4:5b:98:d7:52:f7:94:42:a1:
2e:a8:d9:2c:50:ff:80:c3:29:74:9b:80:c5:4b:7a:
54:d4:3c:bb:10:15:f9:91:d1:6a:90:ea:00:e1:c7:
54:6e:a2:d6:01:b4:06:3d:a1:b7:8e:d1:4f:e8:1d:
06:2a:00:19:08:60:51:55:97:82:86:26:0e:55:c8:
77:d3:09:4e:60:3a:54:75:be:8a:8f:50:93:04:53:
8b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:77:D8:DC:FA:E9:EB:A1:D7:29:80:29:54:AB:83:57:60:B4:93:BB
X509v3 Authority Key Identifier:
keyid:AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/0nfY3Prp66HXKYApVKuDV2C0k7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/rV7aCh50ecTKeP5BxY0X6dE7Z6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.234.0/23
77.120.0.0-77.120.47.255
77.120.52.0/22
77.120.60.0-77.120.191.255
77.120.200.0-77.121.13.255
77.121.15.0-77.121.26.255
77.121.28.0-77.121.30.255
77.121.64.0-77.123.191.255
77.244.32.0/20
82.144.192.0/19
93.72.0.0-93.77.159.255
93.77.192.0-93.78.63.255
93.78.96.0-93.79.127.255
95.69.128.0-95.69.232.255
95.69.240.0/20
109.201.224.0/19
141.170.224.0/22
141.170.229.0-141.170.236.255
141.170.238.0/24
141.170.240.0-141.170.251.255
188.230.0.0-188.230.91.255
188.230.94.0-188.230.100.255
188.230.102.0-188.230.109.255
188.230.111.0-188.230.113.255
188.230.115.0-188.230.124.255
188.230.126.0/23
193.189.96.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:dc:1f:38:9c:25:a7:0f:20:83:ff:ad:01:eb:ca:3b:0f:40:
51:13:13:2e:d1:e8:b1:f2:d7:1c:a7:4c:ac:3f:9e:c7:14:77:
14:65:5c:b3:54:09:52:a0:5f:53:b8:d3:89:13:f1:8d:70:44:
1d:aa:92:2e:6a:7f:8c:30:7f:2b:f0:0f:fa:35:8b:4a:3f:31:
cf:06:e2:1a:0c:2e:6b:77:43:e0:bc:b2:81:59:be:9a:32:67:
ba:a0:cb:2c:3a:81:b0:53:d3:50:1a:83:5a:dd:06:70:fa:30:
af:3f:ed:73:12:f3:a7:ed:96:66:79:97:67:84:26:f5:26:f1:
65:6e:6c:b1:93:86:d9:e9:97:c9:e2:c8:6c:96:cf:c0:60:8b:
e5:dc:04:c6:71:56:ed:9c:51:5e:2b:b7:da:1d:8d:eb:cb:42:
eb:b3:44:c8:b0:c0:5c:3f:26:ab:da:6b:d0:3b:e8:b0:a4:d2:
16:37:c0:73:51:de:8c:f2:06:42:58:56:37:58:99:3c:aa:8e:
16:34:e1:89:fb:99:22:12:d5:1d:fe:2b:50:22:12:2a:54:7b:
1c:a4:37:2d:dc:4c:c0:7d:ea:cf:66:83:f8:f3:33:b0:97:aa:
d8:56:d8:c7:8d:17:3b:76:38:3e:df:e4:9f:46:63:68:ac:b7:
fa:b1:d7:88
-----BEGIN CERTIFICATE-----
MIIGKDCCBRCgAwIBAgISAYkmgKNCU/T1Us1vsxX7dDt8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkNWVkYTBhMWU3NDc5YzRjYTc4ZmU0MWM1OGQxN2U5ZDEz
YjY3YWEwHhcNMjMwNzA1MTQ0MTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjc3ZDhkY2ZhZTllYmExZDcyOTgwMjk1NGFiODM1NzYwYjQ5M2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9V353QL2Ql/OKNZaZYv3ng0zVJA
XWP513pOV6DIVdO/dxnvyShU6EOSuWq+vr8LMTzO8X75iCVBD9D6mw+K9KqkBjYe
OgDBF66YrRR3hz7W+QPyBMcvdJVOzxj5I/+0g+WyRgEkEMvsvvxGxJ/poHjSkYb9
HvvNdIIn1HQdClc+rt7GJyJBrvOCkU2pw9yfs60M9Ih/QCpLufmM5IcCypeBMBHn
2jTXFv6kW5jXUveUQqEuqNksUP+Awyl0m4DFS3pU1Dy7EBX5kdFqkOoA4cdUbqLW
AbQGPaG3jtFP6B0GKgAZCGBRVZeChiYOVch30wlOYDpUdb6Kj1CTBFOL0wIDAQAB
o4IDNDCCAzAwHQYDVR0OBBYEFNJ32Nz66euh1ymAKVSrg1dgtJO7MB8GA1UdIwQY
MBaAFK1e2goedHnEynj+QcWNF+nRO2eqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclY3YUNoNTBlY1RLZVA1QnhZMFg2ZEU3WjZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9mZWJiMTgtZTc4YS00ZDEyLTgwYTIt
OTQ0Y2U3ZWViMTU0LzEvMG5mWTNQcnA2NkhYS1lBcFZLdURWMkMwazdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9mZWJiMTgtZTc4YS00ZDEyLTgwYTItOTQ0Y2U3ZWViMTU0
LzEvclY3YUNoNTBlY1RLZVA1QnhZMFg2ZEU3WjZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBSAYIKwYBBQUHAQcBAf8EggE3MIIBMzCCAS8EAgABMIIB
JwMEAS0P6jALAwMDTXgDBARNeCADBAJNeDQwDAMEAk14PAMEBk14gDAMAwQDTXjI
AwQBTXkMMAwDBABNeQ8DBABNeRowDAMEAk15HAMEAE15HjAMAwQGTXlAAwQGTXuA
AwQETfQgAwQFUpDAMAsDAwNdSAMEBV1NgDAMAwQGXU3AAwQGXU4AMAwDBAVdTmAD
BAddTwAwDAMEB19FgAMEAF9F6AMEBF9F8AMEBW3J4AMEAo2q4DAMAwQAjarlAwQA
jarsAwQAjaruMAwDBASNqvADBAKNqvgwCwMDAbzmAwQCvOZYMAwDBAG85l4DBAC8
5mQwDAMEAbzmZgMEAbzmbDAMAwQAvOZvAwQBvOZwMAwDBAC85nMDBAC85nwDBAG8
5n4DBAHBvWAwDQYJKoZIhvcNAQELBQADggEBADzcHzicJacPIIP/rQHryjsPQFET
Ey7R6LHy1xynTKw/nscUdxRlXLNUCVKgX1O404kT8Y1wRB2qki5qf4wwfyvwD/o1
i0o/Mc8G4hoMLmt3Q+C8soFZvpoyZ7qgyyw6gbBT01Aag1rdBnD6MK8/7XMS86ft
lmZ5l2eEJvUm8WVubLGThtnpl8niyGyWz8Bgi+XcBMZxVu2cUV4rt9odjevLQuuz
RMiwwFw/Jqvaa9A76LCk0hY3wHNR3ozyBkJYVjdYmTyqjhY04Yn7mSIS1R3+K1Ai
EipUexykNy3cTMB96s9mg/jzM7CXqthW2MeNFzt2OD7f5J9GY2ist/qx14g=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:03 2023 by rpki-client on console.sobornost.net