Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/7apxgkLqxveprDz1EbxDLaVBiUM.roa
File: 7apxgkLqxveprDz1EbxDLaVBiUM.roa (raw, json)
Hash identifier: mhDTz2mPTWyy4WH7ds1OceqR5Iokw2cBXQedTO/RIik=
Subject key identifier: ED:AA:71:82:42:EA:C6:F7:A9:AC:3C:F5:11:BC:43:2D:A5:41:89:43
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A834811
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/7apxgkLqxveprDz1EbxDLaVBiUM.roa
Signing time: Wed 27 Apr 2022 07:06:24 +0000
ROA not before: Wed 27 Apr 2022 07:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.68.0/24 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.218.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
89.116.70.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.91.0/24 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.250.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.117.6.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.202.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.117.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176375825 (0xa834811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 27 07:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edaa718242eac6f7a9ac3cf511bc432da5418943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:13:0d:15:ea:a8:1e:00:09:35:04:98:4d:da:
94:17:80:1c:80:09:04:db:d3:49:22:7c:24:3a:3a:
6e:ac:24:90:ee:36:56:50:1a:5c:07:f2:d6:34:04:
94:6d:a8:64:8f:c9:f6:94:9a:8a:d8:8e:e5:3d:b4:
1b:33:5f:1b:02:63:37:4d:27:5a:21:25:17:db:8a:
3b:e1:c7:63:a5:48:72:25:ac:fd:9a:17:3a:d1:b5:
03:e3:47:ee:af:20:6e:1c:9e:b3:2e:36:9d:7d:5d:
80:a0:28:b3:95:62:d9:c9:31:ea:82:5a:35:5c:ab:
c9:a4:d3:21:24:80:d6:71:0a:a5:01:4e:3f:32:75:
f6:8b:50:2a:43:6c:c2:d6:c6:1c:3c:7e:01:91:db:
77:c3:19:39:eb:b4:99:e0:c2:9c:37:17:d8:9e:f5:
28:b1:30:06:12:f7:8c:b1:2d:d2:d9:0a:2d:2d:5a:
19:3a:bb:f8:bc:40:ea:5b:63:bb:97:6f:09:76:9d:
b8:2c:4b:f0:13:65:81:a9:75:4b:f5:e7:48:08:30:
d6:a2:45:5f:16:f2:fb:e5:24:31:ac:48:ea:e2:fa:
bd:64:23:b2:ca:e8:ef:ed:9f:17:4c:c5:3a:a2:a4:
8d:12:23:50:9b:c7:7c:a3:8a:54:7e:3e:da:c3:de:
a1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AA:71:82:42:EA:C6:F7:A9:AC:3C:F5:11:BC:43:2D:A5:41:89:43
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/7apxgkLqxveprDz1EbxDLaVBiUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0-89.116.70.255
89.116.76.0/24
89.116.88.0/23
89.116.91.0-89.116.92.255
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.202.0/24
89.116.210.0/23
89.116.218.0/24
89.116.250.0/24
89.116.252.0/23
89.116.255.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0-89.117.68.255
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.188.0/24
89.117.190.0/24
89.117.215.0/24
89.117.218.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
89.117.254.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:26:25:9d:08:6d:4b:86:3d:a3:dd:91:55:6b:68:d4:67:3a:
fa:20:ff:e5:e8:b7:99:48:e3:08:9e:81:e0:19:01:87:ce:6c:
49:92:5a:25:fb:e2:0f:aa:79:6b:99:37:40:63:31:5a:84:b8:
6f:ae:d7:df:71:b9:f6:61:0c:03:fb:2b:3b:20:07:06:dd:25:
da:56:73:43:d5:d4:56:53:a5:74:57:c2:2f:ba:73:da:8d:9c:
d5:0c:2e:9c:30:23:78:b1:e1:e7:31:e6:bf:c0:0a:57:92:4a:
da:b2:3e:19:94:2b:8b:ab:36:f2:be:ec:ed:6c:61:fc:87:77:
98:c3:37:bf:f9:b9:3c:6c:a8:cd:11:c3:67:c1:c9:da:40:0a:
fc:06:35:8f:a5:83:94:2d:85:08:9f:0a:ab:ef:1a:b6:6b:04:
da:fb:8c:99:0f:af:7f:49:7c:f4:2b:3c:b7:fe:4f:5d:28:0c:
a4:27:3e:3f:f8:06:66:09:4d:cc:86:cb:7a:e1:db:7b:1a:4f:
34:92:83:c6:ed:6e:7e:fc:ea:4f:78:8c:c4:ce:f0:74:27:62:
9b:ad:a5:f1:c9:1f:e2:ab:37:48:00:c1:93:4f:02:b6:8a:47:
3a:e0:3d:f1:e7:10:b1:22:2f:ed:31:50:4b:39:02:ae:42:04:
cf:d2:53:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org