Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/fsE7Q50e6cwiEMVMaBe9sgDJ4b4.roa
File: fsE7Q50e6cwiEMVMaBe9sgDJ4b4.roa (raw, json)
Hash identifier: Ofa17VW6R+9PLz87DRa+zjiiF9O7pmo9waukVedOdL8=
Subject key identifier: 7E:C1:3B:43:9D:1E:E9:CC:22:10:C5:4C:68:17:BD:B2:00:C9:E1:BE
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B594E0F
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/fsE7Q50e6cwiEMVMaBe9sgDJ4b4.roa
Signing time: Sun 12 Jun 2022 14:17:03 +0000
ROA not before: Sun 12 Jun 2022 14:17:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 89.116.115.0/24 maxlen: 24
86.38.37.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.117.87.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
89.117.27.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.7.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
86.38.235.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190402063 (0xb594e0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jun 12 14:17:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ec13b439d1ee9cc2210c54c6817bdb200c9e1be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:09:93:39:cb:ae:7a:99:20:08:94:81:78:
f4:b2:7c:36:b8:3d:9d:a8:11:fb:1d:70:9a:3b:fc:
34:48:d8:c4:ea:bd:eb:19:58:34:55:3c:16:85:e2:
35:99:ca:a7:62:7c:42:a5:78:49:d5:71:a6:73:05:
2f:31:99:6a:fb:51:b5:9e:fd:61:dc:35:a6:11:58:
ad:d7:13:25:2c:25:89:c7:9f:6e:a4:af:ec:06:46:
5e:ad:63:47:7c:97:36:2b:d3:c6:56:67:33:90:8c:
fd:e7:c2:ea:3c:01:d4:28:18:d9:fb:b8:2d:4c:11:
00:b4:83:cf:c1:3e:0f:10:b3:d3:23:a5:15:cb:80:
28:9e:62:a2:1a:65:cd:8a:df:07:be:59:e3:a8:53:
68:d9:8e:7f:a8:d1:d3:15:a4:ad:58:77:e4:31:8a:
fe:a6:ae:11:46:01:28:36:1b:00:94:cc:3c:2d:d2:
f7:cb:cd:4a:01:ba:f0:e9:5c:c6:c1:0a:d3:9e:0a:
4a:ac:16:1d:1e:ea:20:b1:6e:ee:61:b3:7c:2d:b4:
a8:87:77:e1:9b:cb:a0:5a:78:98:55:4b:7a:fd:ae:
ae:df:ed:9b:3b:49:fb:a9:35:54:2b:e1:d0:ff:84:
1e:98:ce:ea:8a:3c:3c:6f:32:7d:33:e6:e6:bb:a7:
81:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C1:3B:43:9D:1E:E9:CC:22:10:C5:4C:68:17:BD:B2:00:C9:E1:BE
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/fsE7Q50e6cwiEMVMaBe9sgDJ4b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.171.0/24
86.38.7.0/24
86.38.37.0/24
86.38.177.0/24
86.38.200.0/24
86.38.235.0/24
86.38.238.0/24
89.116.56.0/24
89.116.100.0/24
89.116.115.0/24
89.116.125.0/24
89.117.27.0/24
89.117.87.0/24
89.117.109.0/24
Signature Algorithm: sha256WithRSAEncryption
94:55:e4:87:b2:b2:5f:84:0d:63:92:6c:4f:e3:b3:2e:ca:0c:
68:9c:e5:5d:33:e6:2d:c4:85:48:14:e0:20:41:f8:41:91:1e:
18:1b:12:9c:3f:42:78:33:1b:8e:a7:0d:a1:8e:98:6e:d1:b4:
9e:c4:11:8d:45:73:d6:c1:7c:d0:c7:7b:2f:06:35:53:95:38:
a3:10:15:87:0e:4b:5b:a1:00:87:b5:d3:c9:db:8b:1c:0e:4f:
4b:54:b4:04:13:18:30:2b:02:0d:b1:db:92:b0:f1:90:a2:95:
8d:08:73:00:94:2a:a5:1d:9a:81:cd:f6:0f:4c:43:6d:25:82:
df:4b:fd:7d:bd:08:3d:12:f1:21:47:37:af:b7:19:bf:8d:2f:
1f:f8:d4:1d:5f:9d:d9:d0:bb:66:bd:b5:06:10:59:8f:7f:8f:
5d:c9:ad:c5:c9:4b:14:21:72:f2:ff:1e:88:96:b0:af:62:59:
ec:a4:96:33:c3:7f:c1:f2:84:84:f3:05:9f:23:cf:b7:e4:5d:
16:e8:4d:18:26:48:bb:f2:ca:f6:75:76:30:37:b5:16:c7:39:
d5:12:13:a7:08:84:34:90:97:5d:13:dd:44:f5:ca:bc:cc:23:
8f:3f:09:54:33:4b:bb:b7:ad:26:64:97:35:2e:26:67:2d:f5:
89:76:22:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org