Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/V5WSpLXA5dxB1NB77cDV3QirqeU.roa
File: V5WSpLXA5dxB1NB77cDV3QirqeU.roa (raw, json)
Hash identifier: 0K29NgVmR+ltyM7+dKsmYeLb2ApLiPNZjQhUw3IjVx0=
Subject key identifier: 57:95:92:A4:B5:C0:E5:DC:41:D4:D0:7B:ED:C0:D5:DD:08:AB:A9:E5
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B29A556
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/V5WSpLXA5dxB1NB77cDV3QirqeU.roa
Signing time: Thu 02 Jun 2022 10:03:20 +0000
ROA not before: Thu 02 Jun 2022 10:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 89.117.80.0/22 maxlen: 24
89.117.104.0/22 maxlen: 24
89.117.16.0/21 maxlen: 24
89.116.72.0/22 maxlen: 24
89.116.80.0/21 maxlen: 24
89.116.224.0/21 maxlen: 24
89.116.237.0/24 maxlen: 24
89.116.32.0/21 maxlen: 24
89.117.0.0/22 maxlen: 24
89.116.180.0/22 maxlen: 24
89.117.157.0/24 maxlen: 24
89.117.164.0/24 maxlen: 24
84.46.236.0/22 maxlen: 24
89.117.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187278678 (0xb29a556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jun 2 10:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=579592a4b5c0e5dc41d4d07bedc0d5dd08aba9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cb:99:b8:36:5e:ea:cd:70:69:60:ce:b9:de:
8c:3d:93:9d:37:37:f3:d0:1b:be:c7:17:29:6e:73:
4c:a7:f6:fa:76:0c:49:68:12:d7:f6:1c:32:57:5a:
1a:f2:1c:6d:95:7c:89:ff:ef:e4:a4:c0:35:e3:95:
44:d3:2e:ca:3d:7b:10:7c:97:a6:ae:87:e2:98:b9:
f8:67:e7:5c:0b:3a:83:dd:9e:56:f7:44:22:18:2d:
15:59:79:48:b5:20:a9:89:4d:34:1a:96:ba:96:41:
6f:48:ee:01:75:67:39:ed:d4:a2:14:37:f5:7d:b4:
36:9d:63:58:ab:f8:eb:9f:af:3a:ad:34:77:4a:b2:
3c:f1:8d:b9:a6:a6:22:c5:44:e6:3c:bd:08:56:5b:
bb:fb:38:03:b0:37:ce:98:17:1e:1a:cb:92:33:6e:
bc:f2:9a:a5:94:58:4e:97:ad:4b:c2:17:bd:75:78:
0d:4e:80:11:54:2c:f5:2a:76:75:47:21:9a:cb:1a:
b0:d7:af:b4:62:8c:80:e8:bd:10:a2:d9:e7:65:e1:
25:fa:ad:c6:17:0b:de:96:f5:5c:44:69:01:15:32:
a3:7c:23:3e:1b:31:3a:b7:14:a7:ae:c4:e9:5b:26:
18:c0:48:64:52:90:11:d1:0f:f4:ec:5f:63:49:dc:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:95:92:A4:B5:C0:E5:DC:41:D4:D0:7B:ED:C0:D5:DD:08:AB:A9:E5
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/V5WSpLXA5dxB1NB77cDV3QirqeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/22
89.116.32.0/21
89.116.72.0/22
89.116.80.0/21
89.116.180.0/22
89.116.224.0/21
89.116.237.0/24
89.117.0.0/22
89.117.16.0/21
89.117.80.0/22
89.117.104.0/22
89.117.157.0/24
89.117.164.0/24
89.117.171.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:ae:dc:f4:eb:d3:2f:01:86:5b:bf:78:22:aa:1f:8a:e6:b4:
f2:06:af:5c:b5:ab:6a:9d:18:f8:d4:58:6e:aa:7f:6a:db:e3:
98:f5:45:65:52:ae:75:47:e8:dd:98:69:a8:ec:f3:ee:fa:c1:
0f:34:64:4f:d8:a0:f9:f0:e5:bb:9a:fa:37:15:13:f0:d0:64:
56:da:5e:59:ee:72:f0:e8:a6:6c:89:58:8b:c9:77:75:c8:66:
1d:28:3c:a4:4d:b8:d3:24:1b:8d:8a:6b:fb:e5:fd:43:27:90:
3b:c5:37:82:6a:09:6e:0a:4b:10:1d:69:ba:7a:af:87:50:39:
41:b0:e6:42:10:68:7e:dd:7a:95:95:ab:7d:3d:ee:84:43:d8:
d0:2f:2b:c2:4b:20:d7:95:2a:29:32:e1:6a:48:ee:f9:47:bb:
d5:b3:ee:29:d8:48:15:39:b5:f0:22:93:09:40:71:65:cd:f2:
88:83:e6:23:4f:43:5f:98:99:9a:2f:53:44:f1:0e:82:d4:da:
a0:1a:0d:85:5a:95:5a:8e:d2:60:ea:e7:60:63:1d:4d:cd:22:
a8:1e:88:b7:ad:ff:03:80:26:4e:cf:37:59:3f:8d:2f:0c:c3:
d4:31:ed:6a:1a:23:38:2f:7f:81:e6:a5:e8:d7:30:5c:66:78:
a4:a9:e5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org