Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/orulM-XIsaLK3bhWMJCYPKD5rs4.roa
File: orulM-XIsaLK3bhWMJCYPKD5rs4.roa (raw, json)
Hash identifier: DjLluvivuUR8o2Iirp00jirU0h8QRDVl/7qM60VnB4k=
Subject key identifier: A2:BB:A5:33:E5:C8:B1:A2:CA:DD:B8:56:30:90:98:3C:A0:F9:AE:CE
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AAC9BB2
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/orulM-XIsaLK3bhWMJCYPKD5rs4.roa
Signing time: Sat 07 May 2022 20:16:49 +0000
ROA not before: Sat 07 May 2022 20:16:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.68.0/24 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.218.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
89.116.70.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.91.0/24 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.117.6.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179084210 (0xaac9bb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 7 20:16:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2bba533e5c8b1a2caddb8563090983ca0f9aece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:e0:ca:c5:3e:3c:51:30:a1:45:56:fb:b7:
8c:1e:2e:ed:13:a7:39:50:4f:53:0c:a0:73:de:ba:
7a:ad:37:b5:af:d5:f5:f5:77:60:50:8e:d2:54:c4:
8e:27:a8:ec:1f:83:7b:d6:53:d0:f8:99:16:e0:00:
94:c9:24:ed:77:93:56:25:91:1f:ed:61:a1:f1:e5:
e0:d0:84:a4:14:19:1d:e9:3e:b3:af:f4:da:40:aa:
fa:c9:24:72:cc:31:a1:9c:d3:c4:cd:f1:1a:13:ca:
ab:38:46:3c:4b:de:01:55:fe:57:07:3c:04:35:38:
ce:8f:a1:d5:49:8e:c5:a7:99:6e:e3:5f:ba:56:b4:
15:27:42:2a:c0:76:a5:5c:31:c6:d9:35:07:e9:b6:
72:59:a9:e0:26:dd:b5:f2:07:64:f1:e3:8f:0d:05:
6e:35:55:b5:4d:c6:a5:6b:7d:a0:0e:f9:b1:26:2d:
b7:8d:24:c2:a2:d0:9c:c7:4a:14:30:cb:b9:df:ed:
3b:31:30:7d:8a:4f:50:ff:04:fe:4c:7e:27:46:9a:
5c:a5:cf:42:b2:1c:35:0f:30:f5:a6:8d:1f:e8:9b:
8b:d8:69:c5:2b:a4:fd:ff:5a:71:bf:86:f1:d7:d1:
03:7e:24:9d:62:4e:96:9d:58:b1:0b:67:ec:51:dc:
26:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BB:A5:33:E5:C8:B1:A2:CA:DD:B8:56:30:90:98:3C:A0:F9:AE:CE
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/orulM-XIsaLK3bhWMJCYPKD5rs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0-89.116.70.255
89.116.76.0/24
89.116.88.0/23
89.116.91.0-89.116.92.255
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0-89.117.68.255
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.188.0/24
89.117.190.0/24
89.117.215.0/24
89.117.218.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c4:c5:91:fd:c6:0a:dd:67:67:eb:11:95:82:1f:52:b0:65:
e2:07:d3:5d:78:17:04:69:67:0b:03:bf:83:78:9c:27:4c:a7:
b3:9e:e3:86:64:f5:2d:69:5f:ea:e4:d2:de:1a:a7:fb:44:15:
67:56:ac:7f:9e:6f:a5:d2:18:d5:66:7b:b7:63:79:4b:55:36:
b3:6b:1b:76:db:d6:ff:28:1a:e8:93:80:83:68:ca:8f:ad:3d:
65:88:e5:0f:c9:53:54:64:62:9c:0d:02:77:9f:e3:fe:9b:8e:
28:ef:96:aa:60:c6:86:f0:9f:c1:cb:e0:7f:cc:de:5e:c4:54:
c6:d1:cb:d5:a8:7a:02:53:c9:16:91:bb:01:7c:ac:02:1f:23:
5b:e6:bf:ec:b5:9f:64:d1:fd:c6:0e:c1:60:b2:8a:7d:f7:9f:
6e:aa:47:4c:05:af:43:7f:90:cf:ee:d9:6f:c7:97:bd:cd:70:
3b:06:81:8a:16:66:cb:77:4b:fe:fe:5f:cb:27:a3:dd:e3:f1:
35:ea:19:b9:36:31:bd:e8:1b:95:34:9f:7f:07:de:80:e9:9a:
e0:57:99:65:26:67:61:d4:1e:cf:99:7e:54:85:57:01:18:29:
44:2e:48:e7:d3:d4:7f:99:87:bd:6c:ff:d7:97:8f:32:72:30:
6d:56:fb:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org