Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SGahAfIJB5sUx5NCuQXlufD1NoY.roa
File: SGahAfIJB5sUx5NCuQXlufD1NoY.roa (raw, json)
Hash identifier: fnrtCE/rVp77ngE3RKiUmEROE74vH4ZqRjiIL+Z5V34=
Subject key identifier: 48:66:A1:01:F2:09:07:9B:14:C7:93:42:B9:05:E5:B9:F0:F5:36:86
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182A598EA3A5D650B7867B006B805BD3476
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SGahAfIJB5sUx5NCuQXlufD1NoY.roa
Signing time: Tue 16 Aug 2022 07:40:38 +0000
ROA not before: Tue 16 Aug 2022 07:40:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:98:ea:3a:5d:65:0b:78:67:b0:06:b8:05:bd:34:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 16 07:40:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4866a101f209079b14c79342b905e5b9f0f53686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:90:92:5a:65:4b:51:94:fc:ad:9f:cc:4b:e5:
f2:6e:cd:7c:7a:27:82:5b:5e:19:33:8f:fc:48:e6:
df:f5:cc:fa:9c:d9:c9:2b:33:56:36:9a:59:07:59:
d5:d8:67:4a:8b:95:a3:44:c1:ed:a2:88:71:e3:15:
59:fb:10:f6:42:93:8a:a9:63:f0:d2:a9:e5:00:fc:
81:56:8f:79:b0:83:bc:cd:d8:9b:96:28:ee:e2:53:
70:5d:d0:7a:b8:ed:28:3b:44:82:27:0d:13:14:0d:
5b:af:f2:6f:09:11:d7:71:30:7a:c0:e4:c3:ac:7a:
87:28:8e:8b:b6:03:65:0a:fe:40:51:eb:ce:cb:d4:
95:d8:31:38:b8:e1:56:7c:2f:31:0f:9c:a5:39:c2:
0c:39:e7:09:59:a5:29:f7:12:ec:ca:5a:8b:10:91:
11:4e:86:90:96:08:2b:c0:f8:a6:95:22:2c:c8:e3:
00:71:6e:68:ee:7e:49:6b:4c:6a:99:b7:bb:81:7b:
24:3b:60:a6:84:ad:eb:a0:39:2a:7e:41:62:53:35:
17:3f:e5:ce:57:75:58:58:b2:c0:40:f2:77:d8:9f:
66:3d:27:0d:a0:81:d0:1c:b7:ce:6e:0d:8b:5e:75:
35:e7:44:3c:27:a7:51:d3:78:38:4e:6e:6e:6a:e0:
06:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:66:A1:01:F2:09:07:9B:14:C7:93:42:B9:05:E5:B9:F0:F5:36:86
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SGahAfIJB5sUx5NCuQXlufD1NoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.184.0-89.116.186.255
89.116.193.0/24
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:47:25:6b:65:50:0f:01:1d:23:05:ed:45:be:0f:d7:e8:97:
c8:55:c6:df:13:fe:10:bf:14:bc:42:5b:bb:e8:3e:29:f4:c7:
64:b2:31:28:dd:bb:4e:54:bb:4f:7c:1d:4d:f9:e1:aa:53:72:
fe:2e:4d:6c:cf:77:81:94:7a:ce:71:65:9a:f4:a9:90:6d:57:
a3:1a:89:e0:16:04:bb:1d:da:ea:77:48:c9:33:39:d3:1a:1f:
5c:de:d7:80:35:c3:ef:bd:95:12:dd:4b:4e:8c:fc:0f:62:ca:
cd:36:b8:a6:4e:05:f3:90:77:78:83:9d:cb:58:d9:ea:5c:7d:
45:1a:ff:b2:1b:59:e9:ce:1c:75:85:ed:14:84:97:e6:bd:e2:
c8:53:c5:76:11:26:85:57:da:72:50:2d:0b:7e:ce:f9:c5:cd:
34:7d:b0:52:a8:a5:75:19:1b:a1:40:c3:17:27:a6:2e:52:15:
90:12:1e:40:1d:b4:f7:14:5b:48:dd:8c:3e:95:63:85:04:86:
7d:18:d7:46:0e:4b:54:b2:8a:19:04:a1:ef:99:34:51:d4:56:
f3:a7:1e:72:9f:3e:55:b3:1f:43:ec:8d:3f:71:67:3b:be:ff:
99:17:92:e7:0e:85:e2:54:86:ad:de:49:59:9f:65:53:b0:65:
80:c1:8e:96
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org