Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/HmhoaokJvHDpPalBaXewD4tZbY8.roa
File: HmhoaokJvHDpPalBaXewD4tZbY8.roa (raw, json)
Hash identifier: 4cOnY56fZQr620R7Zw4MFK3RVI6Pbi+bRLKn2ijABoc=
Subject key identifier: 1E:68:68:6A:89:09:BC:70:E9:3D:A9:41:69:77:B0:0F:8B:59:6D:8F
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 018290B1B84B3201798140E721C50D1959DD
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/HmhoaokJvHDpPalBaXewD4tZbY8.roa
Signing time: Fri 12 Aug 2022 06:15:42 +0000
ROA not before: Fri 12 Aug 2022 06:15:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:90:b1:b8:4b:32:01:79:81:40:e7:21:c5:0d:19:59:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 12 06:15:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e68686a8909bc70e93da9416977b00f8b596d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:54:37:56:b8:0a:51:99:fb:72:c3:6a:a2:6f:
96:30:68:15:d5:c7:41:29:21:1f:63:6d:3d:9f:42:
b7:1e:51:95:af:a3:50:fb:78:03:0a:ee:62:9e:0d:
14:1c:d7:f8:7e:a4:ca:0e:ad:eb:94:1f:39:81:82:
e4:e6:33:75:1c:3c:f3:14:10:63:77:ad:0d:89:c4:
bc:ed:df:83:5c:08:ca:d5:31:46:02:ce:0d:22:f7:
e2:40:88:56:b1:51:a6:a0:1b:f7:9b:a1:d8:2b:f1:
f7:5a:16:a7:36:f0:d0:ca:90:de:33:51:95:48:9b:
ee:e3:27:73:df:af:30:9a:af:bf:e5:71:c3:92:69:
98:03:c3:51:61:fd:15:62:d3:cd:7d:3f:de:04:b1:
1b:2e:3e:09:08:ae:64:bd:e6:6e:f4:35:9c:6a:f1:
e5:6f:34:45:c5:da:56:c1:9e:84:51:0f:67:cc:13:
ac:cf:e7:b3:3c:aa:93:a6:ac:d1:21:ed:d5:94:7a:
09:41:88:20:a8:5e:31:b4:75:47:f0:8e:27:bc:6c:
ca:e1:f1:e8:c0:74:9b:91:b6:92:38:22:03:2f:df:
67:86:29:ab:68:e8:7a:f1:ab:94:3c:79:61:6f:6c:
6e:17:e3:6a:d6:a1:9d:c1:3f:63:b1:4a:8e:38:10:
61:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:68:68:6A:89:09:BC:70:E9:3D:A9:41:69:77:B0:0F:8B:59:6D:8F
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/HmhoaokJvHDpPalBaXewD4tZbY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.190.0/24
89.117.215.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ca:c8:98:7d:d0:30:4c:dd:d7:9d:72:b3:95:22:82:48:dd:
bb:3f:6d:02:e8:e9:47:37:15:2e:d5:97:e0:8b:e8:29:6e:ec:
b4:ab:8c:19:ef:d9:03:61:a2:38:02:4a:04:97:15:df:79:ff:
f9:20:64:0c:3c:80:73:05:e2:03:37:78:20:55:4c:19:82:cd:
4a:e1:42:7e:85:89:59:2d:c8:36:e8:eb:79:a5:b9:aa:4e:42:
98:81:6f:d8:88:39:f0:c1:f5:89:c6:0d:63:58:3c:ef:5d:ee:
4e:12:9b:dd:a0:57:86:e2:6f:78:92:fb:e0:84:47:dd:46:be:
cd:b1:15:c5:26:4c:ae:a9:e5:2e:da:54:f3:7e:10:36:25:1c:
bd:ec:18:7d:89:1c:8d:10:cf:9b:63:ef:9f:db:dc:1a:70:1d:
d2:fd:5b:e3:83:ac:ad:98:04:bc:2a:ce:44:e1:e6:10:e8:06:
d8:df:cb:0a:d0:56:68:05:74:85:5b:75:7f:05:ad:b2:4a:dd:
6b:78:ec:a7:87:2a:08:15:22:bd:f8:be:b6:92:be:44:50:04:
d2:d7:59:05:07:91:3e:d3:ae:b4:5a:1f:39:b5:7d:39:37:de:
45:40:7e:29:7d:6e:83:b5:ea:b8:62:ab:f4:47:c9:c5:61:c9:
2a:05:c3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org