Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9jtoIdkLPeUyPrZgqNOl76ZgBG0.roa
File: 9jtoIdkLPeUyPrZgqNOl76ZgBG0.roa (raw, json)
Hash identifier: VmlPeML4vYXPVnoEr4L5PgMo3P2YRjNWEXsjZWxoC3o=
Subject key identifier: F6:3B:68:21:D9:0B:3D:E5:32:3E:B6:60:A8:D3:A5:EF:A6:60:04:6D
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182D9AD9D619C36D27253E4530405611033
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9jtoIdkLPeUyPrZgqNOl76ZgBG0.roa
Signing time: Fri 26 Aug 2022 10:23:30 +0000
ROA not before: Fri 26 Aug 2022 10:23:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d9:ad:9d:61:9c:36:d2:72:53:e4:53:04:05:61:10:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 26 10:23:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f63b6821d90b3de5323eb660a8d3a5efa660046d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1a:e9:7e:02:4e:d9:fc:c0:dc:d4:22:09:ab:
e7:0e:e7:6b:58:a3:6a:fb:35:73:af:e4:e4:4f:f0:
37:9f:bc:c6:0b:8c:74:d1:7b:5b:8f:9f:9d:fd:28:
ec:ea:ec:cd:b7:f0:29:55:24:a8:af:61:6c:d9:a5:
85:43:1f:c8:96:66:9c:4a:19:af:f9:c0:a8:18:38:
d9:36:2e:7f:bb:60:98:de:f0:58:22:c0:eb:fb:50:
07:02:5d:20:d2:38:cd:64:c2:91:f3:b2:dd:e9:58:
46:b7:7d:7a:23:fb:29:92:e8:ba:e1:bf:92:80:90:
b6:9a:02:d2:36:84:cb:fd:82:06:88:db:0a:31:ac:
24:97:da:f7:0a:ef:88:cd:cf:98:d9:69:9f:3c:8e:
b5:b5:81:e8:95:09:55:f7:93:c7:cf:f2:86:7c:39:
e1:e3:6e:be:e4:fd:0f:62:e1:d4:13:31:c8:eb:5d:
36:d1:e1:9b:3a:fb:f2:86:de:15:0f:d8:8e:17:f9:
11:92:80:f7:d8:e6:6b:ea:dd:70:09:59:20:1a:6f:
b5:bf:2b:7f:2d:84:ae:82:62:c3:e6:99:70:86:dd:
0f:ee:2e:17:0c:15:ee:14:aa:d7:e4:e9:ac:6c:de:
ab:cf:e7:3e:f4:b5:b6:f8:60:fd:e4:d6:36:c9:32:
35:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3B:68:21:D9:0B:3D:E5:32:3E:B6:60:A8:D3:A5:EF:A6:60:04:6D
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9jtoIdkLPeUyPrZgqNOl76ZgBG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.92.0/24
89.116.108.0/24
89.116.125.0/24
89.116.132.0/24
89.116.135.0/24
89.116.150.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.252.0/24
89.117.8.0/23
89.117.32.0/23
89.117.94.0/23
89.117.102.0/23
89.117.116.0/23
89.117.190.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f4:44:be:1b:79:18:34:da:c8:9a:3f:9c:80:30:ae:82:4c:
41:c7:9a:5b:ed:a5:d4:6a:13:61:e7:2a:04:0e:b8:18:7c:20:
22:74:b8:63:b3:39:41:f1:3e:1a:98:ef:34:7f:74:a8:6e:4a:
5c:08:23:58:54:4a:81:9c:91:a0:0f:bc:ce:f5:26:47:d4:15:
e0:3c:38:81:d0:b2:32:e6:d7:83:fe:da:ba:19:50:fa:b0:65:
ed:07:b5:40:00:ba:39:bb:ef:17:ec:fe:f0:87:17:5e:fb:95:
36:0a:04:02:57:15:8c:ee:ad:d2:6d:66:db:5e:00:f2:fd:30:
80:95:91:20:48:e8:a9:ae:ea:fd:3d:62:60:5c:34:bb:7f:9c:
02:64:a8:4e:ad:d2:ea:bc:27:c8:d7:7b:bb:55:21:23:b3:18:
dd:16:27:a6:1d:4d:33:78:75:ab:4f:c5:7a:23:60:e9:35:ff:
a9:d4:e8:db:fa:1f:ca:b6:70:0c:44:02:e6:db:3f:f9:93:c7:
26:46:57:07:2f:4c:e7:63:eb:84:59:79:7f:28:3b:51:8b:5b:
86:51:2f:0a:24:05:f2:be:04:e8:e3:64:f4:f8:d5:b2:6a:6b:
85:a6:d1:cb:5b:35:58:ef:69:44:e2:5f:56:9b:8a:eb:ad:e3:
90:c0:55:b5
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgISAYLZrZ1hnDbSclPkUwQFYRAzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0Njk4NTg1ZTVlYmQxMWM5NjljN2VkNGEzMjBlZGFmYzlk
MTc4MjIwHhcNMjIwODI2MTAyMzMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjNiNjgyMWQ5MGIzZGU1MzIzZWI2NjBhOGQzYTVlZmE2NjAwNDZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihrpfgJO2fzA3NQiCavnDudrWKNq
+zVzr+TkT/A3n7zGC4x00Xtbj5+d/Sjs6uzNt/ApVSSor2Fs2aWFQx/IlmacShmv
+cCoGDjZNi5/u2CY3vBYIsDr+1AHAl0g0jjNZMKR87Ld6VhGt316I/spkui64b+S
gJC2mgLSNoTL/YIGiNsKMawkl9r3Cu+Izc+Y2WmfPI61tYHolQlV95PHz/KGfDnh
426+5P0PYuHUEzHI61020eGbOvvyht4VD9iOF/kRkoD32OZr6t1wCVkgGm+1vyt/
LYSugmLD5plwht0P7i4XDBXuFKrX5OmsbN6rz+c+9LW2+GD95NY2yTI1FwIDAQAB
o4ICsjCCAq4wHQYDVR0OBBYEFPY7aCHZCz3lMj62YKjTpe+mYARtMB8GA1UdIwQY
MBaAFMRphYXl69Eclpx+1KMg7a/J0XgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgt
OWQ2MDAxZjc4YTcwLzEvOWp0b0lka0xQZVV5UHJaZ3FOT2w3NlpnQkcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgtOWQ2MDAxZjc4YTcw
LzEveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHHBggrBgEFBQcBBwEB/wSBtzCBtDCBsQQCAAEwgaoDBAFW
JrIDBAJWJrgDBAFWJsoDBAFWJvYDBAFZdDoDBABZdFwDBABZdGwDBABZdH0DBABZ
dIQDBABZdIcDBABZdJYDBABZdKEDBABZdKMDBABZdKYwDAMEA1l0uAMEAFl0ugME
AVl00gMEAFl0/AMEAVl1CAMEAVl1IAMEAVl1XgMEAVl1ZgMEAVl1dAMEAFl1vgME
AFl13gMEAVl15AMEAFl19QMEAFl1+jANBgkqhkiG9w0BAQsFAAOCAQEAi/REvht5
GDTayJo/nIAwroJMQceaW+2l1GoTYecqBA64GHwgInS4Y7M5QfE+GpjvNH90qG5K
XAgjWFRKgZyRoA+8zvUmR9QV4Dw4gdCyMubXg/7auhlQ+rBl7Qe1QAC6ObvvF+z+
8IcXXvuVNgoEAlcVjO6t0m1m214A8v0wgJWRIEjoqa7q/T1iYFw0u3+cAmSoTq3S
6rwnyNd7u1UhI7MY3RYnph1NM3h1q0/FeiNg6TX/qdTo2/ofyrZwDEQC5ts/+ZPH
JkZXBy9M52PrhFl5fyg7UYtbhlEvCiQF8r4E6ONk9PjVsmprhabRy1s1WO9pROJf
VpuK663jkMBVtQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org