Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lPlPIYLydKdZvasl86amgXEesh4.roa
File: lPlPIYLydKdZvasl86amgXEesh4.roa (raw, json)
Hash identifier: 7ksyk0OZe3LQ7xfQ9JLGjWbG4IyvzwuFazGeNx/Fi/4=
Subject key identifier: 94:F9:4F:21:82:F2:74:A7:59:BD:AB:25:F3:A6:A6:81:71:1E:B2:1E
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0ABECEDF
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lPlPIYLydKdZvasl86amgXEesh4.roa
Signing time: Tue 10 May 2022 07:09:31 +0000
ROA not before: Tue 10 May 2022 07:09:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
82.140.182.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
89.117.64.0/22 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.220.0/23 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180276959 (0xabecedf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 10 07:09:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94f94f2182f274a759bdab25f3a6a681711eb21e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b0:34:d2:d0:ce:83:50:f6:a2:94:e1:30:8d:
76:4d:c7:47:2e:a6:0c:aa:97:f6:eb:c4:cb:0e:39:
64:5c:99:ce:4a:f5:74:25:eb:00:c8:ef:00:a0:55:
b6:73:36:89:72:47:38:71:37:95:31:67:33:fd:2f:
22:53:32:b2:74:34:90:c6:63:4d:b8:93:35:03:d8:
03:6a:89:d1:96:5b:3a:74:90:6d:6f:18:06:54:74:
81:6e:a0:ce:68:21:88:17:cf:5e:dd:ce:de:37:e0:
a4:c5:71:b8:98:05:9a:d9:34:84:44:53:12:ce:96:
5a:4b:a1:89:94:ab:2e:e8:16:17:ac:51:e3:72:37:
57:31:72:67:09:db:61:d4:e8:e3:c5:37:ce:27:65:
ed:1f:dc:90:66:e1:ca:21:2a:4b:2f:8a:af:85:f4:
d5:5c:66:5f:24:c2:0a:16:97:b8:b1:ef:42:c2:7f:
bd:28:fa:a9:46:82:d5:d2:1d:ad:e7:b7:f4:cf:4f:
fc:bf:2a:f8:0c:f5:6f:17:fe:68:e5:c0:26:74:af:
4b:67:eb:49:b2:c6:6d:8e:51:f3:87:05:ae:07:88:
32:86:4e:f3:e6:c2:5c:37:b2:a0:00:88:96:66:f3:
1f:db:ec:0c:e7:0d:01:ee:40:c5:03:94:00:80:12:
45:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F9:4F:21:82:F2:74:A7:59:BD:AB:25:F3:A6:A6:81:71:1E:B2:1E
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lPlPIYLydKdZvasl86amgXEesh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.200.0/24
86.38.4.0/23
86.38.175.0/24
86.38.180.0/23
86.38.189.0-86.38.190.255
86.38.200.0/24
86.38.214.0/24
86.38.220.0/23
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.68.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0-89.117.67.255
89.117.109.0/24
89.117.120.0/22
89.117.160.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:ec:37:68:3b:d3:21:d3:73:28:26:c2:7e:ae:96:ac:24:9a:
2d:0c:4f:42:d7:90:aa:97:6e:b9:6e:85:1d:a3:f0:9b:e3:32:
50:e4:d6:f6:27:91:0e:18:c9:26:60:56:07:0e:56:ad:7e:22:
8c:e1:41:1d:22:cd:35:43:63:88:a6:14:bb:69:a2:e9:84:6d:
ca:d3:ce:e9:21:c4:38:97:13:77:da:c8:a8:75:df:e3:9e:36:
02:04:4f:16:5e:ea:6b:68:f9:6b:1a:ee:fe:e1:2a:de:3e:5c:
76:42:5a:39:bb:ef:a9:3c:d1:c3:0e:af:5d:4a:c1:f0:49:6b:
9b:6f:1f:93:d7:a3:46:39:76:94:20:53:0e:18:cb:79:eb:d1:
5e:90:92:85:a7:cc:25:02:14:78:4d:cf:b6:2f:c7:ed:65:54:
29:73:2d:d3:91:74:ac:31:d7:b9:d5:e0:58:b9:14:f7:61:c1:
03:ed:21:3c:22:06:45:8e:44:c5:86:96:25:4d:b8:3d:be:a4:
2a:09:23:67:35:c2:23:af:09:17:7e:04:a1:9d:7f:2e:60:06:
1b:fa:a1:83:cf:c1:39:90:a1:bd:2a:2a:1d:d3:19:8f:ec:fc:
b2:6d:6d:67:4b:af:4f:80:01:23:9c:92:e6:0c:dd:08:b7:ce:
f6:30:bd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org