Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/doyMCLglcdfDFOBhDjt80oEgITM.roa
File: doyMCLglcdfDFOBhDjt80oEgITM.roa (raw, json)
Hash identifier: UqCkln/B+Vm/LFROZZGihLm3z4abfP6wrxOU16o57mI=
Subject key identifier: 76:8C:8C:08:B8:25:71:D7:C3:14:E0:61:0E:3B:7C:D2:81:20:21:33
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182D8FEC081D33152C69CAD3B8E5630D117
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/doyMCLglcdfDFOBhDjt80oEgITM.roa
Signing time: Fri 26 Aug 2022 07:12:30 +0000
ROA not before: Fri 26 Aug 2022 07:12:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.112.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.115.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.54.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.99.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.223.0/24 maxlen: 24
89.116.221.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.203.0/24 maxlen: 24
89.116.209.0/24 maxlen: 24
89.116.208.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d8:fe:c0:81:d3:31:52:c6:9c:ad:3b:8e:56:30:d1:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 26 07:12:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=768c8c08b82571d7c314e0610e3b7cd281202133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:82:b7:da:d0:83:56:0f:df:71:41:3c:65:09:
9d:65:ef:24:15:38:90:a0:5d:62:b4:ec:e9:11:d6:
a4:65:38:31:ff:38:b9:34:4c:67:61:d6:99:ac:34:
32:96:8f:c6:a5:e9:64:3a:55:57:30:63:47:d7:00:
ae:84:ac:8f:c9:af:c4:d9:6d:3b:e2:e1:e7:9a:fc:
e8:0a:21:a6:62:03:4a:4c:8b:2a:0d:a7:a1:a4:50:
1b:ed:d9:cd:8a:e5:de:ea:1d:63:5d:03:d1:ac:13:
c1:f7:6c:18:22:68:64:f5:e8:90:1f:d5:7f:79:83:
af:22:07:d3:06:1e:14:ed:44:a1:41:5e:33:2e:84:
0a:a6:3f:9b:51:a1:8c:f2:77:36:db:20:98:36:b8:
3c:eb:a6:27:bd:eb:36:18:b6:a1:93:7d:ec:70:a3:
c0:29:df:57:44:91:13:54:0e:47:b2:38:95:f2:ba:
ab:58:7e:71:5b:b7:34:fc:62:02:e8:1a:74:f8:92:
6f:1a:b7:62:9e:51:f2:cf:0d:a2:89:c1:7b:f0:66:
c7:05:39:29:96:8f:57:1d:7e:dc:f0:31:f6:1d:c2:
c7:45:c5:63:0a:e4:e4:07:66:02:e3:82:a4:fe:86:
59:f1:da:1f:ef:21:fe:37:93:fa:a4:ab:2e:d0:ca:
c3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8C:8C:08:B8:25:71:D7:C3:14:E0:61:0E:3B:7C:D2:81:20:21:33
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/doyMCLglcdfDFOBhDjt80oEgITM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.202.0/23
89.116.54.0/24
89.116.70.0/24
89.116.88.0/23
89.116.99.0/24
89.116.103.0/24
89.116.106.0/23
89.116.112.0/23
89.116.115.0/24
89.116.126.0/23
89.116.135.0/24
89.116.156.0/24
89.116.161.0/24
89.116.171.0/24
89.116.175.0/24
89.116.177.0/24
89.116.193.0/24
89.116.203.0/24
89.116.208.0/22
89.116.218.0/24
89.116.220.0/23
89.116.223.0/24
89.116.233.0/24
89.116.252.0/24
89.117.28.0-89.117.33.255
89.117.68.0/24
89.117.72.0/21
89.117.84.0/23
89.117.88.0/22
89.117.102.0/23
89.117.109.0/24
89.117.129.0-89.117.130.255
89.117.132.0/22
89.117.142.0/23
89.117.215.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f1:ac:1c:d0:c5:a4:c8:85:63:92:68:fe:f9:43:97:0a:64:
ff:6d:93:e2:14:26:d0:9b:cf:7b:da:77:b3:90:d5:46:f6:b3:
3b:27:3f:0c:1f:9a:80:94:54:b7:6f:ce:8a:c6:6d:82:fb:82:
c2:85:29:cf:ff:ce:4a:16:3e:92:68:52:c0:ca:dc:dd:48:87:
1f:e3:bd:13:3d:91:bb:bf:7d:26:ce:34:3a:fb:dc:60:85:43:
ab:b0:04:70:2d:95:de:7d:8a:4c:30:24:4b:d3:51:9d:63:b5:
c0:00:cb:8b:ee:73:34:a7:7b:ef:3e:3b:ff:ec:c4:28:08:dc:
b5:ee:ee:e0:f3:df:3b:d7:66:ae:c7:96:ce:27:31:1f:27:26:
eb:52:77:d5:fd:59:05:87:2f:9c:0e:e8:a6:6a:19:9a:78:16:
2e:c2:fc:d4:48:b4:21:09:2a:93:74:77:5c:34:b6:f7:4e:4e:
c0:aa:3e:59:ea:a3:04:2a:21:4c:f6:16:e4:61:39:16:41:cd:
14:61:1b:95:95:83:79:88:9b:9f:45:e9:40:10:e3:94:7c:e1:
37:c1:94:33:9b:19:4d:26:96:13:ae:f3:81:81:f6:bf:c5:0e:
e6:ad:24:69:54:f9:9e:09:e4:d3:a1:f0:7a:30:f9:ea:15:27:
59:f1:31:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org