Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/XlqVDkdFgRHBpIUUqY7x2DhB0RM.roa
File: XlqVDkdFgRHBpIUUqY7x2DhB0RM.roa (raw, json)
Hash identifier: c3USjFUR9MiuYs+nNn6MUnbCcTtORKqxge8RZ1l33xg=
Subject key identifier: 5E:5A:95:0E:47:45:81:11:C1:A4:85:14:A9:8E:F1:D8:38:41:D1:13
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 098A54D8
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/XlqVDkdFgRHBpIUUqY7x2DhB0RM.roa
Signing time: Mon 14 Feb 2022 08:00:45 +0000
ROA not before: Mon 14 Feb 2022 08:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 84.46.170.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
82.140.182.0/24 maxlen: 24
89.117.48.0/20 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.216.0/22 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160060632 (0x98a54d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 14 08:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e5a950e47458111c1a48514a98ef1d83841d113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a1:c4:82:67:59:3a:c1:83:cf:f0:76:30:6e:
04:1d:83:01:40:b3:51:a7:8b:82:e6:a5:46:ee:25:
cb:d3:51:d7:d5:a8:ca:6d:c6:08:c0:ab:2a:ca:68:
5a:b9:a6:2c:8a:2e:09:cf:51:95:3d:07:8b:e7:37:
f8:da:76:bc:d4:e7:08:69:1b:44:08:bb:59:67:bb:
e5:76:0f:99:bd:fc:e9:fe:3f:fd:73:df:66:c8:f5:
da:73:21:95:7f:f6:b3:f4:50:c4:80:8c:27:12:6c:
01:5c:c6:41:3d:69:56:d3:70:a3:fc:03:88:97:c5:
f3:90:b3:55:6c:02:3c:55:51:f9:18:c7:ce:0c:b7:
a5:49:b0:1e:87:45:57:d2:49:3d:89:72:5e:6a:cd:
bd:2f:1c:7b:e6:d6:45:eb:1f:1e:d7:d1:84:07:c4:
17:86:be:b7:16:c1:99:54:d1:f3:39:0a:cd:fb:e8:
f4:92:9c:db:24:0d:14:bf:97:97:ef:2c:f8:f1:65:
86:dc:63:56:52:82:b7:eb:b6:73:70:e1:da:4f:f2:
de:a0:c2:b4:94:cd:f7:92:76:07:45:c0:fd:fb:97:
5c:5e:39:5a:6c:f2:6b:45:0b:7a:fc:af:70:e4:f2:
f9:45:fd:7d:c2:14:26:1c:49:bb:59:de:02:b6:ca:
54:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5A:95:0E:47:45:81:11:C1:A4:85:14:A9:8E:F1:D8:38:41:D1:13
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/XlqVDkdFgRHBpIUUqY7x2DhB0RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.170.0/24
84.46.200.0/24
86.38.175.0/24
86.38.180.0/23
86.38.189.0-86.38.190.255
86.38.200.0/24
86.38.214.0/24
86.38.216.0/22
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
89.116.56.0/24
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.117.11.0/24
89.117.48.0/20
89.117.109.0/24
89.117.120.0/22
Signature Algorithm: sha256WithRSAEncryption
99:17:2b:71:05:06:a7:f1:f7:79:c4:05:8a:a0:99:40:25:7c:
0d:be:94:d7:73:a3:c1:97:ee:e5:56:6c:09:b6:4a:2d:2c:c9:
08:fa:fe:63:ff:34:48:74:87:4c:1b:5d:63:f1:31:38:7d:08:
fe:76:30:39:80:b8:33:08:33:60:43:1f:f5:e5:4b:63:c0:67:
70:7b:6f:b5:95:28:bf:f6:a9:91:c3:25:d6:4f:89:ed:a3:28:
7c:53:2b:d6:a2:03:b2:cf:29:1f:76:58:b4:c3:39:7b:ba:8a:
eb:c6:01:ee:11:07:68:03:37:5c:51:01:57:0e:69:a2:6e:26:
96:73:f8:2e:0d:6e:5f:5b:72:69:59:df:b1:7e:b8:4b:41:ae:
9f:9c:bf:2e:ac:8e:c2:18:55:14:9a:8f:ab:fa:6a:f4:bb:7e:
da:01:bb:32:a1:43:34:89:8b:d7:53:24:51:a7:c5:c2:db:c4:
fc:56:81:89:35:13:af:b1:2d:22:2a:8b:9d:a9:d7:49:50:bb:
1a:68:66:f7:4c:c1:bd:ad:51:fd:17:c8:0b:09:fb:91:17:bb:
4d:f5:9a:79:29:62:bd:ca:b7:9e:cc:91:a2:ac:33:f2:70:39:
43:9e:60:15:86:45:ff:5b:64:8f:d9:33:fb:f3:4a:de:02:d2:
0e:0a:51:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org