Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ZhTRvtC5XODDgqlPG5gZHXe-jAw.roa
File: ZhTRvtC5XODDgqlPG5gZHXe-jAw.roa (raw, json)
Hash identifier: JaVcT6qEtADg5aB4sV0azTHCiJnP29JnH4FqGx6F3Qc=
Subject key identifier: 66:14:D1:BE:D0:B9:5C:E0:C3:82:A9:4F:1B:98:19:1D:77:BE:8C:0C
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AD91935
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ZhTRvtC5XODDgqlPG5gZHXe-jAw.roa
Signing time: Sat 14 May 2022 11:23:41 +0000
ROA not before: Sat 14 May 2022 11:23:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 86.38.151.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
89.117.118.0/24 maxlen: 24
89.117.124.0/24 maxlen: 24
89.116.168.0/24 maxlen: 24
89.117.136.0/24 maxlen: 24
82.140.182.0/24 maxlen: 24
89.117.38.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
86.38.7.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181999925 (0xad91935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 14 11:23:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6614d1bed0b95ce0c382a94f1b98191d77be8c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f1:06:32:9a:01:b5:0b:d6:91:b4:5a:de:e2:
76:42:2f:26:00:b8:10:15:77:ed:7e:3e:d2:91:01:
0c:0a:8d:45:4f:b2:06:96:22:81:05:7b:35:12:58:
e1:15:01:18:49:7e:d9:18:dc:46:0c:b7:61:b2:af:
f4:5f:c6:9b:b8:14:d0:10:53:c5:d3:2e:77:a5:53:
70:17:a2:4d:10:d2:e5:48:4a:90:f4:66:43:6e:c7:
01:d5:10:2a:ee:81:b7:79:7f:55:1a:59:51:40:5a:
dc:52:f5:1a:8c:b7:73:92:4d:8f:a2:56:85:e9:74:
42:36:67:a1:9a:6d:38:86:2a:a0:9b:20:84:e0:c3:
b5:a8:88:d2:f9:d9:4c:0c:33:5f:e7:d3:e9:77:e3:
aa:a6:a2:14:ee:31:98:10:e5:f5:60:67:90:93:62:
04:88:39:cc:d5:5a:10:75:f1:ae:d4:de:67:cd:36:
8c:9a:c9:f1:50:2d:7f:31:c2:af:ec:7e:37:15:3f:
8c:e9:b4:1d:29:93:b9:b7:16:34:08:0c:71:07:3a:
d1:f2:54:2f:ac:3c:4c:f1:c0:ab:99:8c:e8:01:18:
70:5b:ee:db:d9:24:72:a8:b8:66:c3:8e:88:18:af:
db:42:57:17:81:c1:35:a6:65:66:f4:c4:b0:18:86:
5c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:14:D1:BE:D0:B9:5C:E0:C3:82:A9:4F:1B:98:19:1D:77:BE:8C:0C
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ZhTRvtC5XODDgqlPG5gZHXe-jAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/24
84.46.171.0/24
86.38.7.0/24
86.38.151.0/24
89.116.96.0/24
89.116.168.0/24
89.116.193.0/24
89.117.38.0/24
89.117.118.0/24
89.117.124.0/24
89.117.136.0/24
Signature Algorithm: sha256WithRSAEncryption
49:48:08:c0:2a:0c:26:21:5f:ae:e2:f8:b4:d2:c5:0c:6c:c6:
4f:07:16:5d:6e:23:f5:1e:66:ba:88:fa:d8:a4:64:44:1e:d2:
f2:8d:31:13:23:95:e7:5b:e7:4e:65:a7:5c:56:0a:0b:94:66:
51:c0:19:eb:70:90:ce:ec:d0:cd:53:b8:33:fa:e8:7d:48:9b:
a4:f7:fb:87:3a:10:fc:b3:b9:b6:06:ab:a9:61:f1:b1:a7:43:
43:55:99:bf:48:7a:43:2d:dd:a3:6a:97:a7:99:64:1d:08:7e:
64:d1:2b:8e:c1:08:a8:5a:d6:9c:6b:41:ea:e8:0b:fb:17:a2:
da:d3:8a:95:03:15:ce:89:90:55:70:df:7c:12:79:71:5f:5b:
04:02:cc:2f:21:c0:7d:8c:5c:53:0a:51:dd:d7:18:9e:d4:4c:
3e:2d:7a:ba:23:e8:ec:22:c2:8d:a3:38:b0:71:aa:c5:d5:77:
ce:47:ea:41:4a:d0:17:21:e1:4e:0f:60:2f:26:2a:44:d0:2b:
c0:52:4d:ff:58:ae:64:1e:df:86:57:83:57:9f:84:43:76:66:
13:c4:40:9f:fd:86:cd:b1:66:96:77:17:40:20:95:29:b8:36:
81:d8:88:82:bb:45:c5:b4:0c:8a:5e:b2:54:35:33:a6:33:3b:
a0:fc:37:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org