Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mAMpzi70DNsMJFsFhwga3pZguWc.roa
File: mAMpzi70DNsMJFsFhwga3pZguWc.roa (raw, json)
Hash identifier: JgLx5EblsBhMSTffc0eYqrnwDBp7teVV1kHnb4A1Ekw=
Subject key identifier: 98:03:29:CE:2E:F4:0C:DB:0C:24:5B:05:87:08:1A:DE:96:60:B9:67
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 096DAE0A
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mAMpzi70DNsMJFsFhwga3pZguWc.roa
Signing time: Wed 09 Feb 2022 07:23:07 +0000
ROA not before: Wed 09 Feb 2022 07:23:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.216.0/23 maxlen: 24
89.117.226.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.117.168.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.72.0/22 maxlen: 24
86.38.220.0/23 maxlen: 24
89.116.91.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.239.0/24 maxlen: 24
89.116.246.0/23 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.250.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.164.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.180.0/22 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.212.0/22 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.4.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.117.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158182922 (0x96dae0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 9 07:23:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=980329ce2ef40cdb0c245b0587081ade9660b967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:43:1e:da:66:43:b9:31:55:3c:e8:b3:fe:
d4:96:f0:fb:69:a8:c6:e4:9b:cd:b1:a3:88:a7:2e:
f0:c0:28:3c:2d:3a:d2:87:cb:ef:74:eb:eb:35:e0:
8e:dc:86:f0:01:3a:31:ff:82:10:6b:e1:e8:b1:ec:
63:7c:3a:be:40:05:32:b7:dd:c4:4c:84:10:7b:b2:
f5:8e:d2:9b:91:c7:aa:1e:b5:8e:88:48:bd:f6:af:
39:9d:c8:85:6b:74:9c:d3:6b:7e:2b:12:8f:d6:fe:
4f:82:01:3a:96:d1:01:6f:87:7a:87:ac:9f:55:43:
68:fa:5b:f9:27:62:91:70:e2:1c:17:94:6e:e8:7e:
72:2f:e3:63:a0:4b:46:49:b8:7b:0a:23:f8:59:1e:
b2:be:4a:30:4c:48:dc:ca:bc:78:fb:fe:4e:2c:50:
ad:61:07:09:54:03:e8:73:ea:2f:09:35:06:98:99:
d0:d7:a1:62:7c:77:0f:74:5a:fb:08:02:a0:fb:d9:
77:35:32:ef:34:b6:44:5d:9a:92:32:47:fb:57:42:
06:44:6b:25:16:66:f6:12:ee:ba:ed:3e:73:a2:f2:
96:f4:3d:59:33:e7:ab:d6:65:ab:65:2f:20:bd:8e:
82:f5:ee:17:f9:62:cb:20:7c:1a:01:62:f0:8d:7d:
44:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:03:29:CE:2E:F4:0C:DB:0C:24:5B:05:87:08:1A:DE:96:60:B9:67
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mAMpzi70DNsMJFsFhwga3pZguWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.4.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.220.0/23
86.38.246.0/23
89.116.52.0/23
89.116.58.0/23
89.116.68.0/23
89.116.72.0-89.116.76.255
89.116.88.0/23
89.116.91.0-89.116.92.255
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.146.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0-89.116.166.255
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.193.0/24
89.116.210.0-89.116.215.255
89.116.218.0/24
89.116.239.0/24
89.116.242.0/23
89.116.246.0/23
89.116.250.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0/22
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.168.0/23
89.117.188.0/24
89.117.190.0/24
89.117.216.0/23
89.117.222.0/24
89.117.226.0-89.117.229.255
89.117.245.0/24
89.117.250.0/24
89.117.254.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6f:53:e4:ed:73:76:19:3c:ff:00:15:72:e6:b6:34:cd:46:
6c:2e:a4:6e:94:32:4b:70:fe:4d:3d:e9:c1:86:9a:9c:09:de:
a4:cd:c4:6f:2d:cd:fa:7b:6b:fc:38:dd:dd:38:21:83:f4:f6:
57:e0:88:1a:47:6b:7c:c3:bd:05:b5:eb:7c:97:3c:8f:43:13:
8f:68:1d:ec:39:81:4d:5d:a4:aa:0f:f5:88:9a:71:5b:1b:ae:
ca:77:e2:69:43:ae:e0:41:a0:19:0a:bc:95:38:66:61:7e:f7:
65:51:76:cc:d1:a8:f3:28:97:d0:a8:67:bb:ff:da:65:93:ab:
46:19:84:1c:51:c2:d8:7a:f0:c1:c1:dd:da:b5:9a:09:ed:53:
99:36:c1:6f:cd:ee:f3:7e:32:d9:0c:46:c2:0f:e8:08:ba:3d:
3f:7a:21:fb:ff:da:27:af:f4:8d:b0:2a:84:a3:d4:10:d1:40:
6d:21:ca:16:a8:af:8d:9d:bb:4e:90:3b:92:b4:54:ac:0e:cd:
d5:69:45:42:dc:34:60:20:dc:ca:5a:94:99:2b:46:65:94:d7:
ea:ff:de:7d:b1:dd:a7:45:06:db:16:0a:43:68:24:16:49:7d:
b2:59:64:61:52:72:18:e7:2b:1c:11:55:fc:ed:2c:15:59:86:
06:99:36:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org