Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/c52lKVDhhEgW3wZ-ww3ua9ZH-xM.roa
File: c52lKVDhhEgW3wZ-ww3ua9ZH-xM.roa (raw, json)
Hash identifier: hEOrp9037UaeqE/OrXui5O757fQcW6+KFpg5VET2jFc=
Subject key identifier: 73:9D:A5:29:50:E1:84:48:16:DF:06:7E:C3:0D:EE:6B:D6:47:FB:13
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182A668B3C88AA6A32D27EDAEEE2EB6233A
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/c52lKVDhhEgW3wZ-ww3ua9ZH-xM.roa
Signing time: Tue 16 Aug 2022 11:27:35 +0000
ROA not before: Tue 16 Aug 2022 11:27:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:68:b3:c8:8a:a6:a3:2d:27:ed:ae:ee:2e:b6:23:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 16 11:27:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=739da52950e1844816df067ec30dee6bd647fb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:bd:ce:01:d5:68:bf:e3:5b:9a:4c:5a:7c:
21:b6:e5:c7:75:de:1e:e6:d0:b2:aa:a8:76:d5:7c:
ea:16:69:fe:e9:b7:ca:53:0b:29:e1:e0:06:57:3a:
1e:09:ee:a1:8b:fa:c3:b9:88:ef:b4:3c:3f:ac:1e:
14:c2:92:07:21:db:e2:c1:4d:6d:7f:4a:99:4e:ab:
62:33:bc:db:9b:1f:32:68:a5:a4:2a:67:9c:2c:22:
72:ec:b2:6b:cf:aa:63:e9:28:11:5b:b9:bb:ad:2b:
37:b2:ac:3d:cd:3a:81:d8:0b:0a:ee:0e:28:9b:3a:
4a:5c:9c:1d:9e:6a:46:2f:f4:4b:cd:c2:cf:5a:d3:
67:83:fc:28:e3:cc:44:fa:f9:38:52:a3:42:fc:1c:
48:cd:cb:ee:a5:f2:95:83:40:0c:a2:f3:4c:8d:de:
13:f5:ad:c3:0d:e9:42:7e:31:3c:a6:13:b9:27:41:
16:ba:5f:cb:37:f7:ab:4f:3d:09:35:73:3b:f9:86:
0d:60:87:84:cc:c1:b3:f0:78:56:de:7d:84:74:1e:
d4:79:f8:39:a4:77:14:55:51:da:64:f4:e2:66:40:
02:43:07:e1:5c:aa:81:25:49:16:ec:8a:22:88:50:
69:44:25:21:c0:01:50:41:0d:ac:77:df:a0:ff:71:
da:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9D:A5:29:50:E1:84:48:16:DF:06:7E:C3:0D:EE:6B:D6:47:FB:13
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/c52lKVDhhEgW3wZ-ww3ua9ZH-xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.252.0/23
89.117.8.0/23
89.117.12.0/23
89.117.32.0/23
89.117.36.0/23
89.117.70.0/23
89.117.94.0/23
89.117.102.0/23
89.117.116.0/23
89.117.158.0/23
89.117.190.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:73:ae:6a:45:d3:59:1b:07:c8:7c:6c:10:83:55:a1:7f:55:
d8:f5:1b:7d:1d:3b:16:5f:17:6c:07:b3:5c:d1:d3:db:47:a1:
31:7d:ec:4a:e7:93:6f:26:30:e7:95:a5:b7:19:db:78:e6:d4:
9c:0c:d8:cb:9d:25:61:fc:53:2b:8b:9c:a3:4d:ea:89:ce:97:
b0:19:8f:bf:b1:11:85:1d:47:1f:4c:b1:c1:3e:c3:13:b8:f1:
ed:d9:f2:6c:b0:f7:59:e4:7b:8b:7d:92:0f:0b:57:fe:cf:c9:
14:bf:a4:55:e7:25:df:4e:32:0e:61:ba:b9:ad:cb:38:6e:90:
8a:b0:0b:4a:a1:a2:5c:67:0b:18:c9:8a:99:89:35:0f:6f:37:
08:2f:0a:f3:14:47:4c:ea:49:d6:46:3e:f2:6f:2d:a2:3b:1a:
89:16:8c:18:de:c6:88:c6:c2:ca:8f:04:b0:17:cf:3e:f0:10:
3c:27:d2:b1:31:bd:72:a1:f3:28:de:1c:f0:7d:b0:da:47:48:
19:8c:02:c9:e6:c4:0b:0f:19:43:e8:b5:0f:34:52:06:20:4f:
8c:bd:b8:85:29:5a:e0:8f:1c:2e:b6:eb:99:d5:90:55:6b:d7:
c1:79:cd:b0:e4:f9:30:f1:8a:75:67:15:cf:6d:c1:b0:73:89:
43:c5:e9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org