Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ciwMwieUnQzd91X-uym2HwcIkF4.roa
File: ciwMwieUnQzd91X-uym2HwcIkF4.roa (raw, json)
Hash identifier: jzjrREBVF7ym4soh6OzYt7Ox1eNas+sPbktHWdGDFgk=
Subject key identifier: 72:2C:0C:C2:27:94:9D:0C:DD:F7:55:FE:BB:29:B6:1F:07:08:90:5E
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0BAF8ABC
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ciwMwieUnQzd91X-uym2HwcIkF4.roa
Signing time: Fri 01 Jul 2022 05:45:02 +0000
ROA not before: Fri 01 Jul 2022 05:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196053692 (0xbaf8abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jul 1 05:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=722c0cc227949d0cddf755febb29b61f0708905e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:74:d7:3d:18:e8:e8:27:53:a8:4a:e4:f1:ae:
8a:67:c8:a9:a5:5c:c2:11:c2:22:d1:0b:bb:60:29:
98:28:29:40:a8:5e:48:76:d9:94:31:a4:dc:ab:62:
38:72:21:9f:9d:af:4e:02:0c:09:26:79:9a:97:98:
c0:a6:55:ec:2b:31:2f:9f:f5:da:e4:f1:04:43:6f:
7a:cd:f5:62:99:49:3c:37:dd:f7:50:4e:5c:84:8b:
69:79:ef:a3:92:dd:ce:1b:7c:32:2d:73:22:a7:8d:
78:80:9e:13:9e:36:bb:5c:c6:a1:30:4e:61:c8:70:
c4:36:2a:09:47:21:b8:68:6d:46:97:f3:cc:5a:72:
60:98:5e:8f:8c:ae:b5:09:0e:9f:cd:66:8c:fe:b7:
9d:03:ce:e1:06:8a:5b:cb:6b:75:c1:02:f7:17:a1:
ab:66:b1:12:f1:20:3f:10:e5:bb:d4:52:18:ae:10:
91:0f:57:ce:99:1c:b3:99:94:bf:de:11:c4:d6:7f:
5c:b9:8d:87:c2:55:68:f4:da:b7:f0:c7:77:15:87:
c9:29:a3:4c:1d:d1:aa:8e:fd:c0:93:07:ce:bd:37:
4b:a8:96:83:3e:f0:b3:76:ab:69:b4:86:cd:af:00:
6b:62:34:86:7f:62:96:ea:57:31:5a:01:98:71:50:
23:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2C:0C:C2:27:94:9D:0C:DD:F7:55:FE:BB:29:B6:1F:07:08:90:5E
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/ciwMwieUnQzd91X-uym2HwcIkF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.193.0/24
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
61:0c:98:36:bc:a0:c4:81:de:55:8f:8e:9a:dd:49:ea:14:8d:
a9:31:4d:37:9c:c7:7d:73:eb:28:0a:74:eb:5c:eb:ef:12:c9:
10:74:8d:3d:90:86:08:ec:e1:52:5a:06:be:93:c8:0f:6b:a8:
9f:8e:c2:f5:9e:94:f7:df:f0:64:f8:e8:a8:e2:96:b3:1b:d6:
f4:f1:5d:34:f7:8a:49:3f:a0:1d:d7:c6:12:97:5f:5a:4e:1b:
02:36:ba:34:bb:f2:1f:28:4d:cc:33:7a:e9:dd:75:16:d6:d1:
a6:97:69:7b:b3:d5:d3:51:07:0f:2d:0d:5b:a5:8b:72:31:85:
60:d3:da:84:ad:04:12:55:f4:7d:f6:66:61:ac:c9:e6:94:48:
84:1d:37:0e:01:8a:5d:d7:11:73:75:41:43:fa:22:d8:97:81:
ef:29:d2:00:ad:4b:1e:82:97:2d:52:26:e7:57:de:62:92:bc:
87:27:50:6c:1e:35:6e:94:0d:92:18:8f:d7:54:b2:90:76:09:
ec:d9:0e:ab:65:76:92:fd:e9:ce:ec:01:71:9e:17:2d:ed:43:
9d:d7:ae:35:fa:c0:59:15:de:42:39:70:75:ae:cc:44:6e:c7:
66:4b:59:22:e3:16:e4:30:eb:ff:98:ec:8a:d3:32:c7:95:c2:
1c:55:d1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org