Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa
File: _i5EEt_MJkV0B-q_EHDNP4eJXdg.roa (raw, json)
Hash identifier: wa2TVV+D6UQCQC4gYGycJdyQE6dNTND89xLmvViZP/4=
Subject key identifier: FE:2E:44:12:DF:CC:26:45:74:07:EA:BF:10:70:CD:3F:87:89:5D:D8
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 01835ADAC75A06DA11BECDC111C7F5FCF2D1
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa
Signing time: Tue 20 Sep 2022 12:23:50 +0000
ROA not before: Tue 20 Sep 2022 12:23:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
89.116.135.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
86.38.220.0/23 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
86.38.180.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
84.46.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:da:c7:5a:06:da:11:be:cd:c1:11:c7:f5:fc:f2:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Sep 20 12:23:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe2e4412dfcc26457407eabf1070cd3f87895dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:28:cc:33:8a:a4:77:4a:51:e4:11:31:98:27:
ac:e4:18:02:49:dc:89:73:77:62:50:38:d7:5d:83:
18:10:d0:c1:f9:2c:97:51:de:45:83:d1:07:50:bb:
a9:95:6b:ce:37:9d:d5:19:6b:51:d9:d0:b0:9a:82:
33:a8:53:e1:93:9e:1f:22:f2:5d:56:56:db:56:50:
5c:5f:3c:5b:ba:2c:34:3c:77:f5:8f:cc:2e:b8:bb:
84:f5:0a:93:df:8b:7f:80:1a:02:00:33:0a:cd:97:
04:2a:68:72:1c:1a:20:db:47:83:54:3e:a6:98:76:
45:49:f1:ca:8c:f9:d7:42:a5:4c:1b:c7:2a:fb:56:
c4:b9:9b:1d:5c:ac:72:02:22:2a:ca:e4:30:9f:ba:
b2:6e:91:81:f1:5a:1d:db:a2:27:fa:32:f8:68:03:
d5:28:54:8f:0e:26:00:b8:26:62:c2:69:94:6c:c9:
1c:ec:3a:08:5c:24:90:ce:e7:ef:6c:34:e8:10:3a:
ce:43:56:e8:7e:e6:9c:c9:02:21:e3:a6:49:a6:41:
5a:ab:c7:f4:fc:9b:64:e8:4d:fc:04:10:ea:41:1f:
41:ad:6e:98:64:e7:c9:69:dc:f0:33:85:6f:04:6d:
e5:6a:67:f0:18:8a:e3:ba:09:f2:5b:29:03:9f:fb:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2E:44:12:DF:CC:26:45:74:07:EA:BF:10:70:CD:3F:87:89:5D:D8
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.200.0/24
86.38.4.0/23
86.38.180.0/22
86.38.189.0/24
86.38.200.0/24
86.38.220.0/23
86.38.242.0/23
86.38.246.0/23
89.116.56.0/24
89.116.135.0/24
89.116.156.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0/20
89.117.109.0/24
Signature Algorithm: sha256WithRSAEncryption
70:dc:33:b5:e0:dc:7a:6e:95:a9:1b:72:4f:2e:07:40:85:58:
e4:04:9d:04:bf:b3:dd:3f:0a:a2:f0:b5:66:20:cc:75:fb:81:
bf:eb:78:09:2a:1d:e6:ac:f5:c5:15:19:b8:f7:df:cd:9b:85:
90:20:3f:e7:92:d1:dd:1c:38:36:c7:7d:7b:48:d3:76:66:0a:
27:d7:9e:8f:31:f2:2c:8c:6c:7d:ed:69:04:55:e5:8d:53:4b:
b4:14:91:84:0a:59:1a:d9:f4:e8:87:d8:4c:97:7e:0c:71:1f:
b7:ae:71:41:eb:fe:97:b5:b6:a5:92:f5:29:fc:a4:68:48:e7:
50:5f:b2:bb:45:1c:f5:c6:d9:ec:2e:9b:d9:0d:fc:8d:be:ba:
07:87:5e:ed:7e:86:1e:78:7a:73:cc:9f:39:85:da:3d:c9:5f:
70:1d:19:92:21:d8:73:16:39:fa:cc:7c:89:47:5c:7f:48:e4:
62:84:bb:0f:a1:24:cb:d9:3b:2c:eb:e0:23:71:5c:86:80:0d:
44:78:f7:03:ef:6f:33:84:39:53:fe:18:d4:50:7b:97:51:56:
ec:00:fc:9a:c6:55:d9:ad:c6:53:14:84:16:c0:97:5d:4d:cd:
de:0f:9d:75:81:3c:54:f9:d0:a3:e2:0d:d9:bf:db:da:19:1f:
ea:cb:07:6b
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYNa2sdaBtoRvs3BEcf1/PLRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0Njk4NTg1ZTVlYmQxMWM5NjljN2VkNGEzMjBlZGFmYzlk
MTc4MjIwHhcNMjIwOTIwMTIyMzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTJlNDQxMmRmY2MyNjQ1NzQwN2VhYmYxMDcwY2QzZjg3ODk1ZGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSjMM4qkd0pR5BExmCes5BgCSdyJ
c3diUDjXXYMYENDB+SyXUd5Fg9EHULuplWvON53VGWtR2dCwmoIzqFPhk54fIvJd
VlbbVlBcXzxbuiw0PHf1j8wuuLuE9QqT34t/gBoCADMKzZcEKmhyHBog20eDVD6m
mHZFSfHKjPnXQqVMG8cq+1bEuZsdXKxyAiIqyuQwn7qybpGB8Vod26In+jL4aAPV
KFSPDiYAuCZiwmmUbMkc7DoIXCSQzufvbDToEDrOQ1bofuacyQIh46ZJpkFaq8f0
/Jtk6E38BBDqQR9BrW6YZOfJadzwM4VvBG3lamfwGIrjugnyWykDn/uzNwIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFP4uRBLfzCZFdAfqvxBwzT+HiV3YMB8GA1UdIwQY
MBaAFMRphYXl69Eclpx+1KMg7a/J0XgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgt
OWQ2MDAxZjc4YTcwLzEvX2k1RUV0X01Ka1YwQi1xX0VIRE5QNGVKWGRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgtOWQ2MDAxZjc4YTcw
LzEveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAFQuyAME
AVYmBAMEAlYmtAMEAFYmvQMEAFYmyAMEAVYm3AMEAVYm8gMEAVYm9gMEAFl0OAME
AFl0hwMEAFl0nAMEAFl0rwMEAFl0sQMEAFl02gMEAVl08gMEAVl09gMEAFl1CwME
BFl1MAMEAFl1bTANBgkqhkiG9w0BAQsFAAOCAQEAcNwzteDcem6VqRtyTy4HQIVY
5ASdBL+z3T8KovC1ZiDMdfuBv+t4CSod5qz1xRUZuPffzZuFkCA/55LR3Rw4Nsd9
e0jTdmYKJ9eejzHyLIxsfe1pBFXljVNLtBSRhApZGtn06IfYTJd+DHEft65xQev+
l7W2pZL1KfykaEjnUF+yu0Uc9cbZ7C6b2Q38jb66B4de7X6GHnh6c8yfOYXaPclf
cB0ZkiHYcxY5+sx8iUdcf0jkYoS7D6Eky9k7LOvgI3FchoANRHj3A+9vM4Q5U/4Y
1FB7l1FW7AD8msZV2a3GUxSEFsCXXU3N3g+ddYE8VPnQo+IN2b/b2hkf6ssHaw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org