Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bdTTWMx4IZri1a6RUbW6rNvz9Ss.roa
File: bdTTWMx4IZri1a6RUbW6rNvz9Ss.roa (raw, json)
Hash identifier: kqqdQOIBDOZoedFKD98JJ8hCL4u62c+VqH+ZZI84AjQ=
Subject key identifier: 6D:D4:D3:58:CC:78:21:9A:E2:D5:AE:91:51:B5:BA:AC:DB:F3:F5:2B
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A35F63B
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bdTTWMx4IZri1a6RUbW6rNvz9Ss.roa
Signing time: Thu 07 Apr 2022 19:36:14 +0000
ROA not before: Thu 07 Apr 2022 19:36:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 89.116.115.0/24 maxlen: 24
86.38.37.0/24 maxlen: 24
89.117.87.0/24 maxlen: 24
84.46.170.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.7.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
89.116.102.0/24 maxlen: 24
86.38.235.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171308603 (0xa35f63b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 7 19:36:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dd4d358cc78219ae2d5ae9151b5baacdbf3f52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5f:32:33:0c:ea:f7:53:98:84:59:1c:24:b7:
f7:f4:ed:cd:48:fa:7f:b4:9d:00:5d:28:6a:fa:3d:
1b:15:89:dc:5c:a9:ba:1d:45:c5:aa:68:b5:b7:a7:
cd:2c:9a:ef:96:44:38:24:2c:a5:fa:ef:c5:e8:f4:
94:16:8d:eb:a4:7d:3e:68:04:1c:f4:5f:80:9f:f1:
3c:e8:33:42:4a:38:7d:46:1d:ef:e2:8c:ca:b7:a1:
94:92:6f:d5:0c:ea:85:81:14:19:a3:2c:ba:0a:07:
8f:c7:5c:4f:29:db:1e:7d:ba:df:c5:68:11:09:f4:
be:40:26:bd:88:57:d7:4b:d1:47:fa:1b:a5:06:8b:
84:34:87:37:70:46:8d:2d:60:7d:40:a6:57:06:89:
5d:12:94:d2:f6:22:cc:bb:9b:78:85:5b:4e:fa:0c:
d6:72:cb:dd:48:9d:eb:75:6d:b6:2d:62:c7:ec:02:
a9:c7:c9:36:91:01:7d:fd:35:ad:4f:2d:ce:79:14:
8e:3d:d0:d6:07:f2:f5:e9:50:39:b6:dc:d0:29:8c:
67:fc:9a:78:8d:1c:a3:35:b2:77:b2:fd:05:f2:d6:
bb:26:1d:09:7f:4b:ee:7a:c6:d3:f9:e2:5d:c7:dd:
e7:bd:ad:98:1f:e8:60:f4:e9:8f:d5:5c:a0:77:9f:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D4:D3:58:CC:78:21:9A:E2:D5:AE:91:51:B5:BA:AC:DB:F3:F5:2B
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bdTTWMx4IZri1a6RUbW6rNvz9Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.170.0/23
86.38.7.0/24
86.38.37.0/24
86.38.177.0/24
86.38.200.0/24
86.38.235.0/24
86.38.238.0/24
89.116.56.0/24
89.116.100.0/24
89.116.102.0/24
89.116.115.0/24
89.117.87.0/24
89.117.109.0/24
89.117.139.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:28:c6:9c:3c:91:41:11:26:e9:a6:70:fe:2c:b0:2d:2c:c5:
ad:cd:7c:8c:23:10:da:ba:13:08:a7:ee:8f:4c:28:12:15:88:
53:19:e6:77:6e:0b:43:ef:c0:ca:90:5f:b3:86:9a:fb:22:cc:
97:19:c4:ec:3f:b3:b4:e8:3f:94:2e:fb:e8:d0:52:2e:9b:8f:
1f:28:cf:1b:14:c8:14:2c:14:30:10:95:03:4d:7c:09:39:9f:
f6:87:bb:f5:d0:8e:1d:13:9a:85:0d:ab:23:3a:61:1f:7a:73:
43:ae:a0:fd:d9:81:91:8f:03:3d:22:70:27:e8:91:a2:a2:e6:
7e:04:38:13:4f:28:bc:a4:5b:88:a2:5f:7a:a8:ff:61:1a:75:
c4:66:cd:27:de:5b:07:d2:16:5d:db:ef:eb:45:0d:4a:ee:c2:
75:47:71:07:cd:fa:ba:55:e3:44:37:80:c2:d4:90:dc:5e:f3:
5c:96:7b:aa:58:e1:3d:45:af:85:29:46:16:8b:3e:a4:db:5f:
9d:6d:81:8e:f4:8a:d3:16:01:d8:2b:83:d6:84:25:bd:ff:1e:
02:a4:7b:3d:f7:ca:72:93:c8:22:1f:cd:8f:ba:79:08:da:ca:
07:76:11:d0:c1:35:f1:4b:4c:14:68:3f:bb:ba:07:68:f2:56:
55:75:c9:74
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIECjX2OzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDQw
NzE5MzYxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmRkNGQzNThjYzc4
MjE5YWUyZDVhZTkxNTFiNWJhYWNkYmYzZjUyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ9fMjMM6vdTmIRZHCS39/TtzUj6f7SdAF0oavo9GxWJ3Fyp
uh1FxapotbenzSya75ZEOCQspfrvxej0lBaN66R9PmgEHPRfgJ/xPOgzQko4fUYd
7+KMyrehlJJv1QzqhYEUGaMsugoHj8dcTynbHn2638VoEQn0vkAmvYhX10vRR/ob
pQaLhDSHN3BGjS1gfUCmVwaJXRKU0vYizLubeIVbTvoM1nLL3Uid63Vtti1ix+wC
qcfJNpEBff01rU8tznkUjj3Q1gfy9elQObbc0CmMZ/yaeI0cozWyd7L9BfLWuyYd
CX9L7nrG0/niXcfd572tmB/oYPTpj9VcoHefIDMCAwEAAaOCAlcwggJTMB0GA1Ud
DgQWBBRt1NNYzHghmuLVrpFRtbqs2/P1KzAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L2JkVFRXTXg0SVpyaTFhNlJVYlc2ck52ejlTcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBt
BggrBgEFBQcBBwEB/wReMFwwWgQCAAEwVAMEAVQuqgMEAFYmBwMEAFYmJQMEAFYm
sQMEAFYmyAMEAFYm6wMEAFYm7gMEAFl0OAMEAFl0ZAMEAFl0ZgMEAFl0cwMEAFl1
VwMEAFl1bQMEAFl1izANBgkqhkiG9w0BAQsFAAOCAQEAvSjGnDyRQREm6aZw/iyw
LSzFrc18jCMQ2roTCKfuj0woEhWIUxnmd24LQ+/AypBfs4aa+yLMlxnE7D+ztOg/
lC776NBSLpuPHyjPGxTIFCwUMBCVA018CTmf9oe79dCOHROahQ2rIzphH3pzQ66g
/dmBkY8DPSJwJ+iRoqLmfgQ4E08ovKRbiKJfeqj/YRp1xGbNJ95bB9IWXdvv60UN
Su7CdUdxB836ulXjRDeAwtSQ3F7zXJZ7qljhPUWvhSlGFos+pNtfnW2BjvSK0xYB
2CuD1oQlvf8eAqR7PffKcpPIIh/Nj7p5CNrKB3YR0ME18UtMFGg/u7oHaPJWVXXJ
dA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org