Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SS0VOS0N9--ANk6LPiz7um26VwE.roa
File: SS0VOS0N9--ANk6LPiz7um26VwE.roa (raw, json)
Hash identifier: cdV4dPXSocAMpWJcC1Qd8R5KgBLSXofUL+VXAyjzgDc=
Subject key identifier: 49:2D:15:39:2D:0D:F7:EF:80:36:4E:8B:3E:2C:FB:BA:6D:BA:57:01
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A937877
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SS0VOS0N9--ANk6LPiz7um26VwE.roa
Signing time: Mon 02 May 2022 08:32:48 +0000
ROA not before: Mon 02 May 2022 08:32:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.218.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.112.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.115.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.54.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.99.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.223.0/24 maxlen: 24
89.116.221.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.203.0/24 maxlen: 24
89.116.209.0/24 maxlen: 24
89.116.208.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177436791 (0xa937877)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 2 08:32:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=492d15392d0df7ef80364e8b3e2cfbba6dba5701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4d:8a:5d:2e:06:b6:fd:40:a2:f0:12:2c:90:
7d:d7:ba:5b:c7:ef:a8:f2:36:16:d4:bf:93:cf:80:
ac:41:d7:11:ff:66:dc:b8:59:5f:29:2a:d8:8a:a2:
5e:f0:47:95:6b:df:64:f2:3a:90:6c:d9:c0:d3:c4:
47:ca:60:53:a4:da:4c:86:7e:ba:f0:da:07:c9:06:
38:ba:c9:0d:1e:ae:dd:70:9e:9d:01:f6:5a:73:c6:
11:1d:36:dd:98:38:37:36:f6:8e:09:87:13:b1:cb:
9d:db:ef:32:53:7c:f2:95:d0:e0:21:b0:ae:44:56:
7f:16:b4:1a:4d:58:3e:27:9f:b1:90:ac:fa:3b:a0:
eb:6c:b8:76:83:f2:91:ad:49:25:67:8c:f8:7e:70:
a3:5f:4b:15:2a:c5:53:10:59:c0:98:f8:60:78:11:
b1:61:16:0c:fb:6c:3e:18:c6:2a:54:69:96:0b:0d:
1d:e2:e6:8a:23:07:0a:33:96:f1:68:de:f2:ae:4a:
e6:d6:3d:3b:f3:44:11:1c:f4:66:94:2a:1b:ae:60:
f1:9c:c9:6f:19:fc:34:09:94:3a:a2:bd:7e:95:a7:
a6:27:61:44:01:a7:b0:98:bf:f6:c6:4e:5a:2b:d9:
2c:f0:38:21:54:51:dc:17:a9:88:0e:8b:82:41:1a:
3f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2D:15:39:2D:0D:F7:EF:80:36:4E:8B:3E:2C:FB:BA:6D:BA:57:01
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/SS0VOS0N9--ANk6LPiz7um26VwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.182.0/23
86.38.202.0/23
89.116.54.0/24
89.116.70.0/24
89.116.76.0/24
89.116.88.0/23
89.116.99.0/24
89.116.103.0/24
89.116.106.0/23
89.116.112.0/23
89.116.115.0/24
89.116.126.0-89.116.128.255
89.116.130.0/23
89.116.135.0/24
89.116.141.0/24
89.116.148.0/23
89.116.156.0/24
89.116.158.0/24
89.116.161.0/24
89.116.171.0/24
89.116.175.0/24
89.116.177.0/24
89.116.193.0/24
89.116.203.0/24
89.116.208.0/22
89.116.218.0/24
89.116.220.0/23
89.116.223.0/24
89.116.233.0/24
89.116.252.0/23
89.116.255.0/24
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.68.0/24
89.117.72.0-89.117.85.255
89.117.88.0/22
89.117.96.0/22
89.117.102.0/23
89.117.109.0/24
89.117.112.0/22
89.117.129.0-89.117.130.255
89.117.132.0/22
89.117.142.0/23
89.117.215.0/24
89.117.218.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b8:47:c1:18:8a:1e:0a:12:10:93:1b:13:b0:55:43:ef:6d:
73:0d:98:6f:e8:54:a7:e5:61:5b:94:b9:20:40:e9:0a:05:62:
9a:d3:47:54:a7:93:91:9f:0f:3d:fd:0b:15:8d:7d:38:47:83:
99:38:b5:ca:f1:25:e2:3f:ef:c5:55:bd:2c:f5:10:0b:8b:49:
95:15:33:b2:bd:ba:0d:2a:a0:2a:23:0d:db:00:a1:02:db:4c:
0a:d7:4d:51:8a:b8:69:db:1b:6a:80:46:ba:9d:64:45:8a:16:
96:2e:59:15:46:5c:a2:7f:dc:b5:d6:31:47:62:ca:82:2c:f2:
9e:04:88:5b:03:9c:25:3d:b7:17:5c:21:c8:1c:2e:55:3a:15:
8d:32:77:44:ab:4e:fd:c5:13:34:50:75:b7:22:07:ca:c5:33:
66:62:88:61:7f:3c:88:a6:ab:94:78:1b:40:7b:f2:df:06:48:
df:13:cc:6b:4e:e3:e0:e3:dc:84:7f:a7:2f:20:a6:17:98:71:
4f:a4:ef:01:eb:59:0e:c3:7f:f9:a3:48:3c:f9:88:27:b3:d1:
68:50:ce:43:af:f7:7a:19:0e:3f:e7:80:6c:e3:74:cf:77:c8:
6a:81:f7:cb:e1:ad:e5:73:d4:65:4d:2d:95:7f:4e:68:34:3d:
64:c8:f6:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org