Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lZ_Yn4-LI3Oo3_TXeXam4Yi1qFA.roa
File: lZ_Yn4-LI3Oo3_TXeXam4Yi1qFA.roa (raw, json)
Hash identifier: UaZaYa4IgEhbC1ertE7V7xFVmzLo/hKAOIpkCfM35ck=
Subject key identifier: 95:9F:D8:9F:8F:8B:23:73:A8:DF:F4:D7:79:76:A6:E1:88:B5:A8:50
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B049B67
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lZ_Yn4-LI3Oo3_TXeXam4Yi1qFA.roa
Signing time: Wed 25 May 2022 08:14:13 +0000
ROA not before: Wed 25 May 2022 08:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
89.117.64.0/22 maxlen: 24
86.38.180.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.220.0/23 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184851303 (0xb049b67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 25 08:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=959fd89f8f8b2373a8dff4d77976a6e188b5a850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:f8:1d:56:d1:3a:dd:51:92:5c:36:70:21:3b:
54:20:20:be:a2:39:3c:13:8a:52:2d:0e:a9:92:81:
2a:d5:9a:67:70:ff:ba:b5:c5:c5:a6:e1:5c:76:a8:
1b:3c:1a:3e:10:1d:13:d4:7a:ff:fc:02:9d:5d:95:
84:cd:0c:9f:66:d7:d5:ff:3a:a2:b8:e0:95:0c:ee:
8e:43:2b:e6:04:37:bc:2c:03:61:40:d3:e7:ef:06:
74:f5:25:fc:fa:94:9c:65:91:4f:77:19:97:a9:1b:
fb:75:ff:32:e1:6c:18:e7:b7:5e:28:52:39:5e:00:
7f:bc:eb:00:90:22:82:80:eb:44:97:8a:ad:33:f4:
c4:6d:9f:ea:a5:c3:c2:54:b4:8a:bb:2d:9e:09:e3:
33:b8:89:a7:88:27:76:68:a3:ce:ae:77:7d:0d:cb:
da:b5:0c:60:14:04:cb:4d:9b:4c:c9:c5:03:c9:23:
29:c0:b3:fb:b1:6f:7b:41:9e:b4:cc:60:5a:e3:c8:
58:76:87:44:63:bd:bf:42:6e:41:4a:17:7a:f7:cc:
84:6d:bb:03:c0:1e:45:74:8e:28:14:ee:5f:a8:24:
b1:8d:e6:0a:54:52:4d:5d:85:9c:8a:6e:f1:55:07:
70:90:a6:a8:b1:86:27:6b:65:e0:2a:5b:d6:ca:e7:
b0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9F:D8:9F:8F:8B:23:73:A8:DF:F4:D7:79:76:A6:E1:88:B5:A8:50
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/lZ_Yn4-LI3Oo3_TXeXam4Yi1qFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.183.0/24
84.46.200.0/24
86.38.4.0/23
86.38.180.0/22
86.38.189.0/24
86.38.200.0/24
86.38.214.0/24
86.38.220.0/23
86.38.226.0/24
86.38.238.0/24
86.38.241.0-86.38.243.255
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.68.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0-89.117.67.255
89.117.109.0/24
89.117.120.0/22
89.117.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:a2:88:c6:4a:22:5b:6a:81:7b:04:9a:80:38:81:e8:a9:be:
c5:63:cb:49:43:d7:07:d5:65:df:fa:fc:71:fd:e4:0b:21:67:
53:ec:ba:94:59:f5:46:be:47:53:e9:57:2f:f1:8f:1c:41:aa:
a3:86:7e:c8:89:1a:fb:ca:28:38:c9:4a:bd:51:6d:4d:eb:f2:
ef:70:25:18:f7:01:fb:97:e5:bc:61:6e:88:54:08:11:ba:73:
d0:5d:37:64:4d:0d:c9:a4:2a:79:45:31:9d:68:85:5d:df:4f:
1a:9b:36:80:8e:a4:03:a9:c7:14:a2:82:52:72:79:ca:d2:5f:
8b:da:3f:2d:57:5d:5b:fb:b1:eb:35:36:4b:e0:22:d2:36:16:
be:0d:42:cd:b4:92:40:c1:18:9a:a3:d7:bd:ff:88:07:ed:49:
b0:01:8c:95:cd:d2:1a:71:2d:20:95:d7:b9:14:0b:ff:e2:5c:
22:e2:bc:ad:77:f9:69:da:1f:97:61:cb:ca:71:3a:ab:4c:d6:
64:13:ee:48:e9:b9:9e:74:14:49:0a:41:37:b8:21:27:6d:b8:
27:0e:ef:48:4f:2f:b3:38:f7:fc:81:7f:94:c0:61:0f:5e:22:
16:bf:f2:6f:90:e9:fa:f8:8c:1f:16:e1:2e:8c:39:90:76:52:
e7:06:7a:06
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgIECwSbZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDUy
NTA4MTQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTU5ZmQ4OWY4Zjhi
MjM3M2E4ZGZmNGQ3Nzk3NmE2ZTE4OGI1YTg1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPT4HVbROt1Rklw2cCE7VCAgvqI5PBOKUi0OqZKBKtWaZ3D/
urXFxabhXHaoGzwaPhAdE9R6//wCnV2VhM0Mn2bX1f86orjglQzujkMr5gQ3vCwD
YUDT5+8GdPUl/PqUnGWRT3cZl6kb+3X/MuFsGOe3XihSOV4Af7zrAJAigoDrRJeK
rTP0xG2f6qXDwlS0irstngnjM7iJp4gndmijzq53fQ3L2rUMYBQEy02bTMnFA8kj
KcCz+7Fve0GetMxgWuPIWHaHRGO9v0JuQUoXevfMhG27A8AeRXSOKBTuX6gksY3m
ClRSTV2FnIpu8VUHcJCmqLGGJ2tl4Cpb1srnsO8CAwEAAaOCAsYwggLCMB0GA1Ud
DgQWBBSVn9ifj4sjc6jf9Nd5dqbhiLWoUDAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L2xaX1luNC1MSTNPbzNfVFhlWGFtNFlpMXFGQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
2wYIKwYBBQUHAQcBAf8EgcswgcgwgcUEAgABMIG+AwQAUoy3AwQAVC7IAwQBViYE
AwQCVia0AwQAVia9AwQAVibIAwQAVibWAwQBVibcAwQAVibiAwQAVibuMAwDBABW
JvEDBAJWJvADBAFWJvYDBABZdDgDBAFZdDoDBAFZdEQDBABZdGADBABZdIcDBABZ
dJwDBABZdJ4DBABZdK8DBABZdLEDBABZdNoDBAFZdPIDBAFZdPYDBABZdQswDAME
BFl1MAMEAll1QAMEAFl1bQMEAll1eAMEAll1oDANBgkqhkiG9w0BAQsFAAOCAQEA
S6KIxkoiW2qBewSagDiB6Km+xWPLSUPXB9Vl3/r8cf3kCyFnU+y6lFn1Rr5HU+lX
L/GPHEGqo4Z+yIka+8ooOMlKvVFtTevy73AlGPcB+5flvGFuiFQIEbpz0F03ZE0N
yaQqeUUxnWiFXd9PGps2gI6kA6nHFKKCUnJ5ytJfi9o/LVddW/ux6zU2S+Ai0jYW
vg1CzbSSQMEYmqPXvf+IB+1JsAGMlc3SGnEtIJXXuRQL/+JcIuK8rXf5adofl2HL
ynE6q0zWZBPuSOm5nnQUSQpBN7ghJ224Jw7vSE8vszj3/IF/lMBhD14iFr/yb5Dp
+viMHxbhLow5kHZS5wZ6Bg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org