Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/hX82WhXwOkYcMuwyiG_JEfCDYJU.roa
File: hX82WhXwOkYcMuwyiG_JEfCDYJU.roa (raw, json)
Hash identifier: 7vI+EKziKTU0PFjEURSv/zSPN5uZ8tLgcvzfIq4iotQ=
Subject key identifier: 85:7F:36:5A:15:F0:3A:46:1C:32:EC:32:88:6F:C9:11:F0:83:60:95
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0988BA1F
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/hX82WhXwOkYcMuwyiG_JEfCDYJU.roa
Signing time: Mon 14 Feb 2022 07:33:30 +0000
ROA not before: Mon 14 Feb 2022 07:33:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.216.0/23 maxlen: 24
89.117.218.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.226.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
89.117.167.0/24 maxlen: 24
84.46.234.0/23 maxlen: 24
89.117.168.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.72.0/22 maxlen: 24
89.116.88.0/23 maxlen: 24
86.38.220.0/23 maxlen: 24
89.116.91.0/24 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.239.0/24 maxlen: 24
89.116.246.0/23 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.250.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.164.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.180.0/22 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.202.0/24 maxlen: 24
89.116.212.0/22 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.4.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.117.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159955487 (0x988ba1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 14 07:33:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=857f365a15f03a461c32ec32886fc911f0836095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:36:98:0f:64:a6:5d:b2:65:32:6f:27:c5:
b3:7a:79:16:f5:8a:7b:fa:16:c5:a8:e9:c5:1c:13:
8a:f3:7f:c5:06:20:d6:9d:41:9b:f6:45:d8:6b:5c:
f5:04:38:78:2c:74:a3:fb:6e:f1:3c:6e:d6:f9:db:
aa:7e:33:87:77:bd:02:3b:60:98:5f:1d:56:99:1a:
92:fd:5c:3d:7a:6b:b2:4f:ab:e8:e6:60:2b:b1:93:
9e:83:c1:1a:5b:2e:c6:97:a9:f5:28:51:95:1c:18:
af:20:75:d5:d5:65:43:73:56:08:91:8e:f2:88:a8:
b0:6d:1a:67:60:3a:fc:85:72:99:93:09:ba:0a:98:
f8:fc:06:70:0a:27:cc:a0:12:d6:85:f3:5a:53:3b:
3d:89:d7:ca:8f:4c:3f:2e:77:a9:94:17:d5:a2:85:
68:3d:f9:7f:76:9b:e6:24:bd:f5:03:2b:bd:9a:c5:
05:c9:9a:48:b9:6a:b1:fb:ea:ca:bd:64:06:a1:ea:
7b:3c:eb:48:66:b4:94:61:b0:df:fb:ed:42:a7:34:
c6:b2:6e:e1:8f:18:51:64:61:3c:8b:1d:91:9a:f7:
ab:1b:e5:b5:0e:48:0d:f4:5a:fd:ba:f4:82:e4:9b:
3c:70:8e:f0:98:e2:cd:a8:d2:1f:e5:44:ec:94:8d:
39:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7F:36:5A:15:F0:3A:46:1C:32:EC:32:88:6F:C9:11:F0:83:60:95
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/hX82WhXwOkYcMuwyiG_JEfCDYJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.4.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.220.0/23
86.38.246.0/23
89.116.52.0/23
89.116.58.0/23
89.116.68.0-89.116.70.255
89.116.72.0-89.116.76.255
89.116.88.0/23
89.116.91.0-89.116.92.255
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.146.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0-89.116.166.255
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.193.0/24
89.116.202.0/24
89.116.210.0-89.116.215.255
89.116.218.0/24
89.116.239.0/24
89.116.242.0/23
89.116.246.0/23
89.116.250.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0-89.117.68.255
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.167.0-89.117.169.255
89.117.188.0/24
89.117.190.0/24
89.117.215.0-89.117.218.255
89.117.222.0/24
89.117.226.0-89.117.229.255
89.117.245.0/24
89.117.250.0/24
89.117.254.0/24
Signature Algorithm: sha256WithRSAEncryption
10:de:7d:79:21:55:52:32:e8:8e:49:65:21:ac:b3:05:2b:31:
ed:c2:5b:b4:b1:bb:11:d0:40:3e:a9:5c:44:26:fe:aa:07:d7:
97:18:1f:96:17:d8:0f:4f:fa:a4:68:44:14:bb:eb:ff:2c:34:
e4:dc:87:3b:f8:43:18:ab:70:a4:13:49:4d:9e:c3:12:d4:53:
05:d3:d6:de:13:ed:a0:37:22:05:1c:d1:10:7c:ac:7f:f0:c3:
70:76:04:77:40:ad:8c:6a:26:de:24:c6:97:94:cf:94:a2:0b:
e9:4d:f9:85:fe:90:95:5a:35:98:a0:9d:77:69:57:1d:e7:54:
4a:d7:bd:40:07:00:af:4e:fa:0a:0c:e6:65:a9:41:12:da:21:
40:68:20:4b:ca:1c:cb:87:67:0a:d1:40:c2:48:d5:3a:7f:1f:
32:a6:d7:90:1e:ca:3e:1b:e0:b7:45:0e:c7:2c:53:e2:ac:55:
9c:0f:9a:9f:e9:78:25:0e:8a:95:68:6d:f9:45:c8:2d:71:4c:
3a:cd:92:b5:97:ba:9e:64:a4:c0:4b:27:14:75:1d:79:bd:18:
13:73:97:79:84:70:81:4a:7a:81:8a:b3:26:d0:d1:a0:8f:95:
1f:ad:34:5f:38:3c:5c:96:35:3d:4b:ef:71:27:ef:0a:a2:2a:
e6:81:8c:44
-----BEGIN CERTIFICATE-----
MIIHHzCCBgegAwIBAgIECYi6HzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDIx
NDA3MzMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODU3ZjM2NWExNWYw
M2E0NjFjMzJlYzMyODg2ZmM5MTFmMDgzNjA5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ3MNpgPZKZdsmUybyfFs3p5FvWKe/oWxajpxRwTivN/xQYg
1p1Bm/ZF2Gtc9QQ4eCx0o/tu8Txu1vnbqn4zh3e9AjtgmF8dVpkakv1cPXprsk+r
6OZgK7GTnoPBGlsuxpep9ShRlRwYryB11dVlQ3NWCJGO8oiosG0aZ2A6/IVymZMJ
ugqY+PwGcAonzKAS1oXzWlM7PYnXyo9MPy53qZQX1aKFaD35f3ab5iS99QMrvZrF
BcmaSLlqsfvqyr1kBqHqezzrSGa0lGGw3/vtQqc0xrJu4Y8YUWRhPIsdkZr3qxvl
tQ5IDfRa/br0guSbPHCO8JjizajSH+VE7JSNOcMCAwEAAaOCBDkwggQ1MB0GA1Ud
DgQWBBSFfzZaFfA6Rhwy7DKIb8kR8INglTAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L2hYODJXaFh3T2tZY011d3lpR19KRWZDRFlKVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
Ak0GCCsGAQUFBwEHAQH/BIICPDCCAjgwggI0BAIAATCCAiwDBAFULuoDBAFWJgQD
BAFWJrIwDAMEAVYmtgMEAlYmuAMEAVYmygMEAVYm3AMEAVYm9gMEAVl0NAMEAVl0
OjAMAwQCWXREAwQAWXRGMAwDBANZdEgDBABZdEwDBAFZdFgwDAMEAFl0WwMEAFl0
XDAMAwQBWXRqAwQAWXRsMAwDBABZdH0DBABZdIAwDAMEAVl0ggMEAFl0hAMEAFl0
hwMEAFl0iTAMAwQBWXSSAwQAWXSWMAwDBABZdJkDBABZdJoDBABZdJ4DBABZdKEw
DAMEAFl0owMEAFl0pgMEAVl0rAMEAFl0rwMEAFl0sTAMAwQAWXSzAwQAWXS6MAwD
BABZdL0DBABZdL4DBABZdMEDBABZdMowDAMEAVl00gMEA1l00AMEAFl02gMEAFl0
7wMEAVl08gMEAVl09gMEAFl0+jAMAwQBWXUGAwQBWXUIAwQBWXUMAwQBWXUYMAwD
BAJZdRwDBAFZdSADBAFZdSQwDAMEBll1QAMEAFl1RDAMAwQBWXVGAwQBWXVUAwQC
WXVYMAwDBAFZdV4DBAJZdWADBAFZdWYDBABZdW0wDAMEBFl1cAMEAVl1dAMEAFl1
gQMEAll1hAMEAFl1iwMEAVl1jjAMAwQBWXWeAwQCWXWgMAwDBABZdacDBAFZdagD
BABZdbwDBABZdb4wDAMEAFl11wMEAFl12gMEAFl13jAMAwQBWXXiAwQBWXXkAwQA
WXX1AwQAWXX6AwQAWXX+MA0GCSqGSIb3DQEBCwUAA4IBAQAQ3n15IVVSMuiOSWUh
rLMFKzHtwlu0sbsR0EA+qVxEJv6qB9eXGB+WF9gPT/qkaEQUu+v/LDTk3Ic7+EMY
q3CkE0lNnsMS1FMF09beE+2gNyIFHNEQfKx/8MNwdgR3QK2MaibeJMaXlM+Uogvp
TfmF/pCVWjWYoJ13aVcd51RK171ABwCvTvoKDOZlqUES2iFAaCBLyhzLh2cK0UDC
SNU6fx8ypteQHso+G+C3RQ7HLFPirFWcD5qf6XglDoqVaG35RcgtcUw6zZK1l7qe
ZKTASycUdR15vRgTc5d5hHCBSnqBirMm0NGgj5UfrTRfODxcljU9S+9xJ+8Koirm
gYxE
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org