Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/YohSr-B9uW0DYM9I82k-tonLiQc.roa
File: YohSr-B9uW0DYM9I82k-tonLiQc.roa (raw, json)
Hash identifier: 8K/yA5/NN6Oqz3222yIjBDgBQX4ZLpc9MUz13BB+4Ws=
Subject key identifier: 62:88:52:AF:E0:7D:B9:6D:03:60:CF:48:F3:69:3E:B6:89:CB:89:07
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0181EC92C4C689E7572FBF5402E537858AB0
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/YohSr-B9uW0DYM9I82k-tonLiQc.roa
Signing time: Mon 11 Jul 2022 09:24:10 +0000
ROA not before: Mon 11 Jul 2022 09:24:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
89.116.135.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
86.38.220.0/23 maxlen: 24
89.116.96.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
86.38.180.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
84.46.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:92:c4:c6:89:e7:57:2f:bf:54:02:e5:37:85:8a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jul 11 09:24:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628852afe07db96d0360cf48f3693eb689cb8907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:b2:a3:4a:72:f3:7a:f8:ae:83:3d:f3:08:
61:43:98:7f:a8:9c:38:64:b4:5c:40:2a:eb:e0:5c:
dd:01:7b:2a:ce:ff:0e:a9:d2:fa:0f:b6:07:a7:1b:
fa:d6:c4:61:0d:1c:33:cd:f8:ae:7e:4d:b4:b1:77:
e8:91:74:d0:f5:a6:4a:7c:b8:44:4e:26:3f:ba:b4:
28:e8:f9:9f:01:5d:46:7c:1e:e4:53:f7:6f:29:22:
7e:53:ce:f4:34:48:09:a3:91:77:e7:77:ff:ee:33:
f2:1d:c5:a7:67:d6:5b:fa:6b:c2:80:2d:cd:66:b2:
3e:ff:aa:8f:06:87:03:a2:ef:b1:7d:4a:9d:e6:1b:
91:62:29:3a:de:b4:8b:a6:d6:15:03:0c:68:16:f7:
92:0c:ec:29:98:55:f5:b3:be:3c:ef:cd:d4:f0:24:
55:f4:60:dc:20:b5:25:c9:ca:47:38:44:10:b6:29:
e2:ec:af:e4:0a:72:13:c6:1a:d1:c2:0b:8f:7a:76:
49:43:09:69:56:55:ea:46:27:bf:e1:52:4b:4b:c6:
d6:d9:52:f2:62:6d:a2:33:dc:bd:40:8f:4f:da:19:
f9:e8:4b:0f:60:7b:e3:46:9c:f9:72:f7:45:f2:c5:
95:ba:b2:23:ca:ca:81:ae:d2:39:cb:ab:1f:c7:a3:
cf:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:88:52:AF:E0:7D:B9:6D:03:60:CF:48:F3:69:3E:B6:89:CB:89:07
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/YohSr-B9uW0DYM9I82k-tonLiQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.183.0/24
84.46.200.0/24
86.38.4.0/23
86.38.180.0/22
86.38.189.0/24
86.38.200.0/24
86.38.220.0/23
86.38.242.0/23
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0/20
89.117.109.0/24
Signature Algorithm: sha256WithRSAEncryption
27:51:c7:0d:4d:02:ec:38:3b:91:98:55:7c:84:a3:f4:6a:55:
3d:3f:be:58:82:4b:db:2f:70:5e:ce:21:db:61:30:31:b7:1f:
84:8c:16:7a:89:1b:02:44:3f:dd:1e:c2:99:47:c4:9a:ad:05:
a2:2e:d5:3b:94:77:93:9a:39:cb:4a:cf:7b:96:36:0b:a5:68:
d8:d7:f8:00:b0:3d:a7:46:11:db:7f:5f:35:a7:02:ca:c9:6c:
8b:73:8a:7a:b2:9b:d4:48:fc:e9:a8:70:48:7b:d0:e8:7e:21:
33:2e:a4:8c:72:9c:e3:38:81:51:d6:53:7e:74:e5:89:34:45:
ea:84:8e:c8:ff:e3:5b:6a:a6:0e:3d:bc:ad:3f:e8:fa:51:2b:
5d:68:6e:51:2f:e8:e8:54:43:fc:ad:98:5e:33:a1:14:e9:c8:
0e:9f:d9:3b:28:f7:d5:f6:e7:12:95:65:fa:57:7e:91:32:d9:
92:bb:85:7a:ba:08:28:ce:d9:a4:f5:6c:45:fb:d3:5c:eb:90:
ac:39:98:23:02:3d:5c:da:5f:1d:04:6a:f3:72:25:3a:f5:22:
2e:1c:ab:0f:04:dd:e2:3e:8f:88:ca:61:f1:ad:7c:0d:b1:a4:
b6:89:14:79:19:84:45:b2:1d:56:6d:92:97:9f:c7:fb:a3:84:
37:66:f1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org