Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mQE4Fd8eENAj6j2XbTXnVhDhbDc.roa
File: mQE4Fd8eENAj6j2XbTXnVhDhbDc.roa (raw, json)
Hash identifier: j9L5+tNwyZTOuY6cszWW62khzLOy+nx5GpjbejdF6ZU=
Subject key identifier: 99:01:38:15:DF:1E:10:D0:23:EA:3D:97:6D:35:E7:56:10:E1:6C:37
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 08F53F0C
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mQE4Fd8eENAj6j2XbTXnVhDhbDc.roa
Signing time: Wed 19 Jan 2022 08:53:56 +0000
ROA not before: Wed 19 Jan 2022 08:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15419
IP address blocks: 84.46.170.0/23 maxlen: 23
82.140.178.0/24 maxlen: 24
86.38.3.0/24 maxlen: 24
82.140.189.0/24 maxlen: 24
86.38.8.0/21 maxlen: 21
89.116.2.0/23 maxlen: 23
89.116.4.0/22 maxlen: 22
89.116.1.0/24 maxlen: 24
89.116.8.0/22 maxlen: 22
89.116.12.0/23 maxlen: 23
89.116.16.0/23 maxlen: 23
217.9.241.0/24 maxlen: 24
217.9.242.0/24 maxlen: 24
89.116.15.0/24 maxlen: 24
89.116.19.0/24 maxlen: 24
89.116.20.0/22 maxlen: 22
89.116.24.0/21 maxlen: 21
217.9.254.0/23 maxlen: 23
89.116.32.0/21 maxlen: 21
89.116.41.0/24 maxlen: 24
89.116.42.0/23 maxlen: 23
89.116.44.0/22 maxlen: 22
89.116.48.0/22 maxlen: 22
185.149.152.0/22 maxlen: 22
89.116.112.0/23 maxlen: 23
89.116.116.0/22 maxlen: 22
89.116.140.0/23 maxlen: 23
89.116.102.0/23 maxlen: 23
89.116.220.0/23 maxlen: 23
82.140.131.0/24 maxlen: 24
89.116.236.0/23 maxlen: 23
89.116.252.0/23 maxlen: 23
89.116.168.0/23 maxlen: 23
2a02:2630::/29 maxlen: 29
2a02:2630::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150290188 (0x8f53f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jan 19 08:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99013815df1e10d023ea3d976d35e75610e16c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:eb:65:3e:b0:ec:33:f8:f3:75:03:a4:5a:00:
e9:35:ed:97:1c:b5:30:08:4a:e2:a3:ea:f9:65:f0:
b9:b9:be:84:bd:80:fd:e0:14:8f:08:4f:ea:f6:62:
b4:5b:46:61:de:e5:a2:64:d3:6e:1b:3a:cb:17:ff:
16:25:e6:36:db:ae:79:9f:45:05:5c:ce:72:df:ce:
f1:85:96:8a:95:e8:04:6a:ff:d8:af:6d:a1:39:7f:
d6:86:22:6b:5f:8d:d8:e9:28:59:f0:45:14:39:db:
d5:79:64:c4:e4:dc:01:60:3c:57:e3:c6:de:b6:a4:
f4:82:83:9b:d4:ac:24:f4:fb:12:2e:98:78:e2:5a:
7c:4c:4d:ef:b6:e7:e6:f1:a5:2c:20:7f:de:fb:8c:
ff:60:89:5a:84:84:eb:04:ee:46:75:10:7a:98:33:
8c:22:78:2d:ac:a5:ab:50:ae:9f:ff:79:18:82:5e:
4a:a3:42:db:d5:2d:e7:3d:e6:4c:61:cc:f8:03:32:
4a:d3:b0:ed:0c:9c:17:a7:ec:ad:90:92:cb:a7:45:
ac:39:a1:19:6a:86:df:f5:ff:48:a5:0b:9c:94:69:
40:58:7f:30:ae:d3:ab:bb:83:75:d3:5d:c9:20:83:
09:5c:06:ad:b2:e9:fa:bd:5d:31:12:a9:e2:e9:72:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:01:38:15:DF:1E:10:D0:23:EA:3D:97:6D:35:E7:56:10:E1:6C:37
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mQE4Fd8eENAj6j2XbTXnVhDhbDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.131.0/24
82.140.178.0/24
82.140.189.0/24
84.46.170.0/23
86.38.3.0/24
86.38.8.0/21
89.116.1.0-89.116.13.255
89.116.15.0-89.116.17.255
89.116.19.0-89.116.39.255
89.116.41.0-89.116.51.255
89.116.102.0/23
89.116.112.0/23
89.116.116.0/22
89.116.140.0/23
89.116.168.0/23
89.116.220.0/23
89.116.236.0/23
89.116.252.0/23
185.149.152.0/22
217.9.241.0-217.9.242.255
217.9.254.0/23
IPv6:
2a02:2630::/29
Signature Algorithm: sha256WithRSAEncryption
6d:97:d0:ab:6d:2d:e8:52:cb:cf:db:06:f3:7b:f1:b1:10:cf:
44:c3:95:73:68:95:06:b4:f9:90:cc:a6:ea:ef:b6:9e:15:d9:
9d:d5:46:bb:ff:8d:a0:1b:c8:a6:c9:3f:b4:05:06:25:39:63:
57:61:2d:e9:9c:2d:14:27:0b:66:86:94:9c:f7:dc:17:d7:57:
56:c9:d4:03:f2:9d:2f:61:e8:3f:ee:b2:25:7a:0d:c1:8c:04:
bb:39:fa:a0:f2:65:27:0d:02:86:a9:8e:dd:64:a9:17:ca:8a:
f4:54:1b:90:04:8f:b1:47:88:3e:71:0e:8c:e5:e7:0e:7e:ec:
d8:0a:df:23:52:10:8b:08:73:b5:73:ce:09:56:21:d0:57:af:
65:09:b4:9d:85:8a:8e:8d:b2:90:f3:5c:31:28:04:0b:82:d0:
0a:a9:0e:61:2b:c4:d2:17:fb:81:3f:df:25:e4:79:fd:78:e1:
34:88:bf:7f:85:0f:7e:ed:87:b2:b5:16:df:60:21:5d:12:cf:
7b:ec:a6:50:8f:ef:56:c4:90:54:1a:ae:1b:94:49:9c:3a:61:
a3:9b:b9:f5:13:8b:9c:01:e4:32:5c:40:92:04:76:9b:53:70:
b4:d6:5b:7d:55:43:ee:ae:16:69:51:52:4e:c6:a1:65:72:31:
56:80:c8:88
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgIECPU/DDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDEx
OTA4NTM1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTkwMTM4MTVkZjFl
MTBkMDIzZWEzZDk3NmQzNWU3NTYxMGUxNmMzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANbrZT6w7DP483UDpFoA6TXtlxy1MAhK4qPq+WXwubm+hL2A
/eAUjwhP6vZitFtGYd7lomTTbhs6yxf/FiXmNtuueZ9FBVzOct/O8YWWipXoBGr/
2K9toTl/1oYia1+N2OkoWfBFFDnb1XlkxOTcAWA8V+PG3rak9IKDm9SsJPT7Ei6Y
eOJafExN77bn5vGlLCB/3vuM/2CJWoSE6wTuRnUQepgzjCJ4Laylq1Cun/95GIJe
SqNC29Ut5z3mTGHM+AMyStOw7QycF6fsrZCSy6dFrDmhGWqG3/X/SKULnJRpQFh/
MK7Tq7uDddNdySCDCVwGrbLp+r1dMRKp4ulyQGsCAwEAAaOCAr0wggK5MB0GA1Ud
DgQWBBSZATgV3x4Q0CPqPZdtNedWEOFsNzAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L21RRTRGZDhlRU5BajZqMlhiVFhuVmhEaGJEYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
0gYIKwYBBQUHAQcBAf8EgcIwgb8wga0EAgABMIGmAwQAUoyDAwQAUoyyAwQAUoy9
AwQBVC6qAwQAViYDAwQDViYIMAwDBABZdAEDBAFZdAwwDAMEAFl0DwMEAVl0EDAM
AwQAWXQTAwQDWXQgMAwDBABZdCkDBAJZdDADBAFZdGYDBAFZdHADBAJZdHQDBAFZ
dIwDBAFZdKgDBAFZdNwDBAFZdOwDBAFZdPwDBAK5lZgwDAMEANkJ8QMEANkJ8gME
AdkJ/jANBAIAAjAHAwUDKgImMDANBgkqhkiG9w0BAQsFAAOCAQEAbZfQq20t6FLL
z9sG83vxsRDPRMOVc2iVBrT5kMym6u+2nhXZndVGu/+NoBvIpsk/tAUGJTljV2Et
6ZwtFCcLZoaUnPfcF9dXVsnUA/KdL2HoP+6yJXoNwYwEuzn6oPJlJw0ChqmO3WSp
F8qK9FQbkASPsUeIPnEOjOXnDn7s2ArfI1IQiwhztXPOCVYh0FevZQm0nYWKjo2y
kPNcMSgEC4LQCqkOYSvE0hf7gT/fJeR5/XjhNIi/f4UPfu2HsrUW32AhXRLPe+ym
UI/vVsSQVBquG5RJnDpho5u59ROLnAHkMlxAkgR2m1NwtNZbfVVD7q4WaVFSTsah
ZXIxVoDIiA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org