Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mvaaneYhWHea3RoBwXBSofgRZ9s.roa
File: mvaaneYhWHea3RoBwXBSofgRZ9s.roa (raw, json)
Hash identifier: sRAHBMgQJp/gh0Z/vMkrkbnNWklDBt8FsFzioT89KPQ=
Subject key identifier: 9A:F6:9A:9D:E6:21:58:77:9A:DD:1A:01:C1:70:52:A1:F8:11:67:DB
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 09A8B2C2
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mvaaneYhWHea3RoBwXBSofgRZ9s.roa
Signing time: Fri 18 Feb 2022 13:37:17 +0000
ROA not before: Fri 18 Feb 2022 13:37:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15419
IP address blocks: 84.46.170.0/23 maxlen: 23
82.140.178.0/24 maxlen: 24
82.140.189.0/24 maxlen: 24
86.38.3.0/24 maxlen: 24
86.38.8.0/21 maxlen: 21
89.116.4.0/22 maxlen: 22
89.116.1.0/24 maxlen: 24
89.116.2.0/23 maxlen: 23
89.116.8.0/22 maxlen: 22
217.9.241.0/24 maxlen: 24
89.116.15.0/24 maxlen: 24
89.116.12.0/23 maxlen: 23
89.116.16.0/23 maxlen: 23
217.9.242.0/24 maxlen: 24
89.116.19.0/24 maxlen: 24
89.116.20.0/22 maxlen: 22
217.9.254.0/23 maxlen: 23
89.116.41.0/24 maxlen: 24
89.116.42.0/23 maxlen: 23
185.149.152.0/22 maxlen: 22
89.116.112.0/23 maxlen: 23
89.116.116.0/22 maxlen: 22
89.116.140.0/23 maxlen: 23
89.116.102.0/23 maxlen: 23
89.116.220.0/23 maxlen: 23
82.140.131.0/24 maxlen: 24
89.116.236.0/23 maxlen: 23
89.116.252.0/23 maxlen: 23
89.116.168.0/23 maxlen: 23
2a02:2630::/29 maxlen: 29
2a02:2630::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162050754 (0x9a8b2c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 18 13:37:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9af69a9de62158779add1a01c17052a1f81167db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:63:5a:7b:e7:86:b1:f0:f2:8d:9d:02:1e:19:
a4:3c:bd:ba:dc:5b:3b:00:a8:11:7a:7f:07:2c:05:
fd:de:80:18:e7:3a:d9:fa:92:19:17:48:51:0f:ff:
fe:b1:a0:f8:08:4d:c7:a1:3e:73:eb:89:f1:f1:66:
8b:2a:97:ce:73:6c:c4:ae:26:12:81:ee:fd:28:d9:
4c:bc:ff:7f:ba:6f:16:b4:ec:78:2b:f7:60:4c:14:
c4:1e:ce:7c:8b:92:2a:29:06:f3:63:dd:1c:f7:f2:
a3:28:df:bd:4b:8a:1e:4e:b4:74:41:fe:ef:db:2a:
c7:26:2d:77:eb:80:25:3b:9d:5c:d7:6c:f8:07:35:
b9:3c:e8:28:67:3e:8f:67:25:e5:8b:37:1f:70:c5:
01:b0:17:a8:6f:28:e4:1b:11:14:f2:35:17:2e:4b:
76:72:c9:94:ea:61:6a:6d:64:94:f2:d4:6d:39:f4:
f8:c4:aa:de:65:2a:27:87:aa:a1:9d:22:2e:a4:36:
98:22:24:9e:cd:c3:93:8c:62:70:c5:b1:51:76:ee:
04:76:56:55:a4:2f:be:08:19:59:1d:ed:c4:6c:40:
19:a6:87:e6:c7:b6:a6:ab:52:ea:14:73:18:32:7c:
c3:28:08:3a:40:e5:af:58:ba:f3:22:58:d1:d0:57:
05:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F6:9A:9D:E6:21:58:77:9A:DD:1A:01:C1:70:52:A1:F8:11:67:DB
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mvaaneYhWHea3RoBwXBSofgRZ9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.131.0/24
82.140.178.0/24
82.140.189.0/24
84.46.170.0/23
86.38.3.0/24
86.38.8.0/21
89.116.1.0-89.116.13.255
89.116.15.0-89.116.17.255
89.116.19.0-89.116.23.255
89.116.41.0-89.116.43.255
89.116.102.0/23
89.116.112.0/23
89.116.116.0/22
89.116.140.0/23
89.116.168.0/23
89.116.220.0/23
89.116.236.0/23
89.116.252.0/23
185.149.152.0/22
217.9.241.0-217.9.242.255
217.9.254.0/23
IPv6:
2a02:2630::/29
Signature Algorithm: sha256WithRSAEncryption
31:9e:e4:b3:b2:80:53:f7:62:c0:40:f2:8b:ad:9d:0d:4d:77:
ff:99:f6:36:77:bc:c5:ba:e1:22:98:32:ad:92:09:f5:b8:a5:
7f:44:3b:03:11:c4:23:39:4d:ae:15:4a:85:ab:07:ac:18:4f:
9b:c4:49:5f:79:55:53:57:b5:ca:31:02:cb:a2:e1:d0:dd:0d:
fe:fe:90:c9:92:85:30:52:5c:8a:52:3b:d5:0a:53:ab:4a:9d:
cd:33:9c:65:f7:39:08:e6:04:7e:d7:cc:95:62:c7:e3:58:fb:
03:cc:f2:fc:ec:e4:1f:e2:d5:c2:28:ed:fe:74:4b:7d:e1:74:
52:7d:68:cb:a7:e1:85:5d:51:f7:7f:27:62:fd:e3:d0:4d:df:
50:61:dc:3d:70:21:ae:37:58:e5:23:d8:b6:93:b1:8a:ee:be:
d4:b8:b6:a7:ee:f4:17:db:10:a4:5c:dd:31:7c:61:78:9f:f1:
5c:95:da:1a:07:c2:10:31:85:7b:bb:f4:5b:5c:51:43:65:22:
c4:51:01:ca:8a:53:5a:86:06:b6:fa:e1:32:50:e9:6f:c6:79:
0a:2a:0b:6e:8b:0e:83:cb:25:3d:21:e5:92:f6:df:8a:af:5e:
52:18:01:76:bd:f9:f8:96:e6:01:e1:2e:d5:7e:53:cb:08:02:
7c:33:40:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:34 2025 by rpki-client