Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9w3DU9B24elURsd71g2qWTNSoWM.roa
File: 9w3DU9B24elURsd71g2qWTNSoWM.roa (raw, json)
Hash identifier: y5qqchaHQbVSefOhEMitVN70RCDjvMItXY3mM8O2kps=
Subject key identifier: F7:0D:C3:53:D0:76:E1:E9:54:46:C7:7B:D6:0D:AA:59:33:52:A1:63
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0181E4023389A82214507F8B5A18B7CEF63F
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9w3DU9B24elURsd71g2qWTNSoWM.roa
Signing time: Sat 09 Jul 2022 17:29:18 +0000
ROA not before: Sat 09 Jul 2022 17:29:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e4:02:33:89:a8:22:14:50:7f:8b:5a:18:b7:ce:f6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jul 9 17:29:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f70dc353d076e1e95446c77bd60daa593352a163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:38:35:ef:f9:db:6a:9b:96:85:3a:53:3c:c6:
cf:da:25:b7:3e:3d:d0:db:b9:11:47:b4:57:23:fa:
82:bb:31:74:82:e8:69:65:ad:4c:39:b7:39:2d:1a:
31:99:15:24:9b:b9:9f:7e:d7:8f:f1:0b:8a:f7:2c:
30:bc:ab:b5:9c:b4:f8:aa:35:59:c0:0f:16:59:ba:
67:6c:3c:ae:e5:5c:0d:c0:6a:75:df:48:81:ba:04:
21:0e:21:05:71:ac:3b:07:8d:49:e6:f1:84:2d:c0:
01:86:bf:43:02:b0:26:20:23:51:96:69:9c:80:52:
99:cd:3c:56:3c:ec:3e:8d:6d:cc:69:13:6b:a4:4f:
bb:8b:52:23:b3:03:4b:ba:74:9b:f1:a6:5d:14:38:
d4:8c:1e:52:fb:22:3f:09:80:9c:69:eb:2e:c8:88:
95:6f:9d:c1:c7:b5:c0:e8:93:f0:36:a7:9a:1b:ad:
2a:a7:ca:6e:f6:68:c3:fc:ac:61:e3:29:ab:0e:d2:
14:b9:fc:7b:18:80:96:cb:74:ff:22:b6:15:e4:1e:
e7:78:75:5a:ea:19:e4:b0:0d:f6:76:72:d2:73:2b:
3f:f0:7e:ba:a8:2c:d8:5c:1b:e3:1f:ab:c5:2d:04:
86:89:69:0b:2c:ea:e4:03:c3:db:9c:ad:67:07:bc:
2b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0D:C3:53:D0:76:E1:E9:54:46:C7:7B:D6:0D:AA:59:33:52:A1:63
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/9w3DU9B24elURsd71g2qWTNSoWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:35:fd:b1:17:4c:74:9e:e4:96:43:39:fa:eb:cd:cf:97:ef:
7c:4a:22:36:bd:1b:12:d9:78:0c:93:11:c6:31:6e:18:b2:62:
cb:f9:ff:bc:7d:43:83:1d:df:18:ab:ea:85:f2:65:9f:75:85:
69:97:0d:15:a4:05:02:cb:a0:b1:a4:04:ca:f2:76:65:3a:5d:
f0:84:1a:16:80:46:d4:9b:33:f7:91:d0:04:52:06:59:3c:5f:
8a:74:e8:31:af:ad:5d:c8:ac:cc:62:a7:28:6a:7e:ce:d8:01:
ea:34:35:e6:c0:94:44:69:9a:53:b4:1e:69:26:03:a1:ba:48:
42:71:c8:d9:29:3a:3f:fa:12:41:63:6a:81:f9:e4:a4:58:5b:
d8:84:18:40:31:71:d3:e9:c2:ba:42:76:b6:41:54:63:a1:cf:
2b:c4:46:15:b7:16:12:fd:72:cc:cc:66:46:69:99:36:d7:19:
6e:e3:04:0d:08:59:2b:0a:bc:9a:97:88:2c:3b:a2:78:ff:16:
92:f6:3d:6c:69:f3:b4:e0:11:b9:77:d4:06:7d:bd:21:db:78:
79:41:3d:b0:bb:4b:58:70:ca:d1:00:e1:84:c2:e4:84:10:32:
e9:50:e7:54:cc:55:15:73:75:fa:a6:43:74:af:65:c6:e3:f8:
b9:18:d4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org