Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/R_6WoZmIOZA5KCpFeI5LKFk4xBc.roa
File: R_6WoZmIOZA5KCpFeI5LKFk4xBc.roa (raw, json)
Hash identifier: o/1VWRjdgE41oXyv9BOmyqYH+l7fc9jQa9s31QVchdU=
Subject key identifier: 47:FE:96:A1:99:88:39:90:39:28:2A:45:78:8E:4B:28:59:38:C4:17
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0181E40235B6C850DE9691A3D74B436A88AA
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/R_6WoZmIOZA5KCpFeI5LKFk4xBc.roa
Signing time: Sat 09 Jul 2022 17:29:18 +0000
ROA not before: Sat 09 Jul 2022 17:29:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e4:02:35:b6:c8:50:de:96:91:a3:d7:4b:43:6a:88:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jul 9 17:29:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47fe96a19988399039282a45788e4b285938c417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:29:86:a6:7c:8f:38:db:51:0b:c6:c3:8e:1d:
8b:8e:45:3a:af:ad:80:b9:24:2c:da:f7:df:48:dd:
60:40:10:d1:65:34:91:ec:17:e8:9a:cd:5b:3d:83:
27:6a:ef:27:45:d7:64:d0:af:af:c1:cb:25:f1:e2:
ea:a5:85:a3:92:40:f3:16:76:1f:3f:20:51:66:86:
0e:73:ac:e5:88:f9:80:ba:53:c0:f1:45:58:df:59:
6b:0d:0c:c5:6b:c5:ba:f1:78:ee:42:c2:b7:2b:bd:
7b:dc:91:d4:c5:55:a9:1c:41:7a:2f:48:0c:ca:e5:
c6:87:c4:da:ec:15:93:06:31:b0:7c:4c:49:b2:b6:
ab:cb:a6:dd:61:a9:90:05:5f:12:4c:3d:2d:f9:13:
cf:d5:4c:43:f9:42:81:e6:47:3c:9f:ec:89:79:d5:
96:c2:0f:16:69:aa:7b:cc:23:a9:de:36:8d:d7:4f:
43:0f:37:aa:c9:4a:b0:7c:06:32:82:25:a1:f7:0a:
f8:1c:d0:75:66:9c:c1:c9:5e:6d:1e:f9:8e:cc:3c:
21:3b:ef:97:8d:88:ca:f9:2c:8a:8d:65:d0:e5:48:
cb:54:c7:bc:bb:ad:26:4f:2a:d3:88:22:36:05:df:
d1:8d:3e:4b:aa:59:0a:69:56:b2:d3:7f:13:e7:30:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FE:96:A1:99:88:39:90:39:28:2A:45:78:8E:4B:28:59:38:C4:17
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/R_6WoZmIOZA5KCpFeI5LKFk4xBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.32.0/23
89.117.36.0/23
89.117.70.0/23
89.117.94.0/23
89.117.102.0/23
89.117.116.0/23
89.117.158.0/23
89.117.190.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
52:51:a2:15:ff:42:33:4c:dd:dd:ff:19:0d:45:8d:71:45:29:
75:b7:da:32:b0:07:9f:f4:14:8d:d1:93:96:8f:c5:53:c0:1f:
1a:ac:05:fe:23:12:05:39:1f:e3:b3:a3:e8:f4:4c:c5:34:5f:
60:2b:b3:eb:e8:b8:01:94:2c:b7:b2:d3:16:91:2c:26:ad:29:
7d:28:51:07:84:e4:5e:35:7d:8e:d2:28:a1:a6:7a:77:c1:b3:
59:f6:78:c1:55:ad:3a:7c:98:2a:f5:c9:a0:d7:be:6a:d5:fa:
f4:90:a3:2b:79:a3:42:c5:61:c9:ce:61:fb:17:e7:3f:c3:5f:
a0:2a:f5:14:bb:ed:f5:67:01:90:36:12:36:86:69:60:2c:04:
24:2d:b6:12:1a:23:8a:1e:48:e8:d1:42:20:09:23:64:0a:3e:
45:61:51:52:b0:ab:65:3e:e7:ca:20:cf:88:91:d3:cb:7b:04:
ff:9b:2e:d7:9c:3d:ac:d2:1e:b8:12:a0:a3:a4:bf:86:ae:63:
6b:76:67:49:5e:56:c3:2a:f1:e4:3f:d3:b9:f7:8f:31:47:2a:
f1:c7:ef:d7:2f:4f:fa:80:bf:52:c8:bf:c7:2b:35:c4:1b:67:
8d:65:9a:d2:e4:18:a1:da:9d:d6:f5:d5:e3:2f:ef:ed:6e:a3:
b8:d7:1d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org