Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/50ZVcgHiSXrX2WyB4bUeV86bpwg.roa
File: 50ZVcgHiSXrX2WyB4bUeV86bpwg.roa (raw, json)
Hash identifier: ik9HRzQdEc/UenJbQHyjheO1ovDMUMuMF1pCenrkJNw=
Subject key identifier: E7:46:55:72:01:E2:49:7A:D7:D9:6C:81:E1:B5:1E:57:CE:9B:A7:08
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 09604299
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/50ZVcgHiSXrX2WyB4bUeV86bpwg.roa
Signing time: Mon 07 Feb 2022 10:46:03 +0000
ROA not before: Mon 07 Feb 2022 10:46:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.216.0/23 maxlen: 24
89.117.226.0/23 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.117.168.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.72.0/22 maxlen: 24
86.38.220.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.246.0/23 maxlen: 24
89.116.242.0/23 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.164.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.180.0/22 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.212.0/22 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.4.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157303449 (0x9604299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 7 10:46:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e746557201e2497ad7d96c81e1b51e57ce9ba708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2a:ce:56:2b:7b:01:22:19:5e:47:3d:41:aa:
c7:d3:de:41:67:07:c0:e2:ac:7f:e1:99:4c:1f:b6:
ee:42:cd:80:0b:0b:31:fc:d4:3a:6d:ea:ec:00:37:
50:84:eb:a3:b9:b4:64:b1:a2:a2:8f:8e:ef:1e:ac:
45:c8:64:39:68:3f:c6:92:f1:4c:86:ab:13:da:7d:
0b:ea:f1:07:96:aa:cb:c6:a5:aa:96:28:d5:c5:24:
65:9b:11:40:a6:8c:bd:43:8a:9b:a9:4c:c2:5b:4f:
89:19:df:4d:f6:41:ee:8c:eb:a3:ac:6e:bc:08:3b:
61:d0:60:af:0d:bc:85:8c:47:89:40:b2:de:1c:9a:
7d:3d:98:d7:50:f6:14:ae:15:d1:b7:49:ba:5d:b3:
0b:f9:b6:b3:16:b3:55:52:cc:a0:d2:8b:9e:7e:2f:
ba:bc:d1:ca:dd:3d:92:59:8a:48:9f:24:11:1e:50:
d7:e3:9e:51:4b:28:0a:cf:97:85:f6:c3:db:db:e8:
25:48:53:28:ad:22:c6:2a:72:ba:e4:69:32:58:6e:
b2:b7:4e:73:e2:54:cc:e7:c3:b9:08:30:48:78:bf:
2d:59:14:f4:04:3f:f0:dc:ac:6e:d4:fa:08:99:a2:
f0:e8:33:57:9d:62:82:aa:d5:36:81:a8:39:fc:ed:
78:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:46:55:72:01:E2:49:7A:D7:D9:6C:81:E1:B5:1E:57:CE:9B:A7:08
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/50ZVcgHiSXrX2WyB4bUeV86bpwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.4.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.220.0/23
86.38.246.0/23
89.116.52.0/23
89.116.58.0/23
89.116.68.0/23
89.116.72.0-89.116.76.255
89.116.88.0/23
89.116.106.0/23
89.116.126.0/23
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.146.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.163.0-89.116.166.255
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.180.0-89.116.185.255
89.116.210.0-89.116.215.255
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0/22
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.132.0/22
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.168.0/23
89.117.216.0/23
89.117.226.0-89.117.229.255
Signature Algorithm: sha256WithRSAEncryption
23:d2:39:01:5b:c1:f1:3b:90:de:2b:fc:2a:16:a6:b1:b4:88:
55:1f:b8:e5:4e:38:8d:0a:e3:bf:ba:0e:17:a2:31:df:ca:71:
32:7e:f3:7e:fb:cb:60:aa:df:7f:94:03:eb:11:7f:3c:af:da:
78:fc:5a:5c:81:6f:82:1b:01:e0:e7:86:4f:c9:d2:03:5a:61:
ad:8f:d7:64:c0:cc:1e:9f:d3:37:ef:fc:61:ed:35:9e:3b:b3:
95:60:00:df:71:4c:7e:50:de:b9:f3:bc:f9:64:0d:bb:7f:b1:
c3:f2:b2:b4:97:a3:51:10:9c:1b:f5:4c:5b:06:c5:a1:17:aa:
bb:57:a4:36:e1:8a:bb:5c:40:f7:a9:ad:2c:9d:0d:eb:80:80:
52:49:3b:0d:f5:59:88:b5:22:ba:b4:d9:12:e4:de:37:85:a0:
6d:64:d2:46:c4:6d:5a:a2:df:53:d4:10:21:3b:d8:4a:8d:01:
11:dd:97:e0:ee:63:cb:75:78:3b:22:5e:d3:45:23:b5:fd:b5:
95:c5:54:df:c3:96:bb:fb:cc:de:6f:8f:f0:2c:f9:67:04:f8:
ae:e3:a1:7d:e8:7f:f9:db:e5:b2:43:5d:22:ee:34:a0:43:59:
3d:dc:99:66:31:f7:8f:37:1b:bf:76:d7:3c:91:83:1a:79:9a:
63:0a:e8:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org