Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/p-2CcKhzh4sISjYaO4AQ17r9apM.roa
File: p-2CcKhzh4sISjYaO4AQ17r9apM.roa (raw, json)
Hash identifier: CqbdnzmNtgK4aP40LyzEm3dHDDXePd/LtNKlaq0JnC0=
Subject key identifier: A7:ED:82:70:A8:73:87:8B:08:4A:36:1A:3B:80:10:D7:BA:FD:6A:93
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 097B8971
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/p-2CcKhzh4sISjYaO4AQ17r9apM.roa
Signing time: Fri 11 Feb 2022 17:14:25 +0000
ROA not before: Fri 11 Feb 2022 17:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
82.140.182.0/24 maxlen: 24
89.117.48.0/20 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.216.0/22 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159091057 (0x97b8971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 11 17:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7ed8270a873878b084a361a3b8010d7bafd6a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a2:81:b6:7b:b4:ec:fc:e6:69:3b:a5:89:e8:
6c:05:38:54:de:bc:59:21:59:31:4a:1a:92:29:42:
de:b0:68:13:ba:4c:60:11:a7:dc:c7:ab:a4:0a:68:
86:85:03:7f:91:9d:f0:e1:4c:06:c0:73:7f:f0:9d:
2e:8c:71:e3:99:c8:69:3f:93:a8:36:24:cc:ee:c1:
b9:96:fa:d7:a6:65:7f:d9:73:69:57:ca:cd:ce:41:
a9:d4:e8:a4:be:08:a5:20:de:0f:cd:16:24:07:4f:
8c:ed:14:d0:54:57:f3:d5:26:13:b2:6f:35:e0:00:
1e:29:85:41:fb:a6:16:d6:11:e2:3c:f2:88:33:52:
a4:bd:e3:bd:8f:41:cc:0c:2b:17:19:8d:89:26:2e:
26:ec:74:73:4e:25:15:33:1d:aa:99:c4:f0:bd:53:
46:bc:d5:95:dc:42:74:0d:7c:00:7a:10:53:f1:7b:
04:ca:0a:2b:51:7a:43:30:56:0c:8f:b7:5b:a4:b3:
63:5c:65:4c:b5:c3:60:27:ff:82:6b:07:1f:89:50:
81:27:c3:da:79:cd:73:0e:94:1f:36:bd:cd:c7:87:
3f:8b:95:91:8f:0c:2c:fb:9c:31:05:6a:7c:c9:b1:
00:46:17:d6:1c:4b:26:5f:a2:5d:ea:b1:62:fd:3a:
61:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:ED:82:70:A8:73:87:8B:08:4A:36:1A:3B:80:10:D7:BA:FD:6A:93
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/p-2CcKhzh4sISjYaO4AQ17r9apM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.200.0/24
86.38.175.0/24
86.38.180.0/23
86.38.189.0-86.38.190.255
86.38.200.0/24
86.38.214.0/24
86.38.216.0/22
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
89.116.56.0/24
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.117.11.0/24
89.117.48.0/20
89.117.109.0/24
89.117.120.0/22
Signature Algorithm: sha256WithRSAEncryption
86:98:29:53:72:07:d0:1f:99:72:7e:fd:9a:a4:26:09:26:06:
f8:53:e0:16:4c:a3:15:0f:3e:53:d6:a8:c3:72:b0:5d:95:fe:
0d:da:56:30:5e:50:8a:de:29:67:74:ad:59:61:1c:73:f6:20:
f5:8f:be:3c:d1:ba:71:6a:24:47:86:31:72:5c:9d:da:11:4a:
3b:e5:ec:40:6e:4e:fe:57:2a:46:cf:33:04:01:f5:47:f1:9c:
76:f0:ea:ce:0b:89:cd:c1:a1:8c:58:8c:4d:6f:6b:4d:3d:01:
8c:a0:ba:2f:82:51:74:06:fe:99:e1:61:9c:07:55:a4:53:d2:
c5:96:90:41:7e:5d:a5:13:fd:48:10:2f:f2:67:8c:06:ec:7d:
a2:b9:6f:a6:47:bf:7c:24:f8:1e:95:6c:6a:33:56:5c:3c:27:
8e:08:22:58:0f:24:49:ba:b0:f0:c8:83:32:23:58:a0:87:e5:
d5:63:f6:05:13:06:0b:01:e0:b2:03:12:4a:58:bb:cf:d0:ba:
1d:8f:e9:ef:ad:a2:01:4a:39:92:0a:2b:a1:a9:82:71:50:80:
fd:5f:9a:fe:58:71:d3:39:5b:de:d8:c2:18:58:cd:0c:bb:26:
f6:88:d7:ea:57:ca:70:e0:27:96:c1:22:e8:7f:e7:f4:fa:54:
5b:b3:48:24
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIECXuJcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDIx
MTE3MTQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTdlZDgyNzBhODcz
ODc4YjA4NGEzNjFhM2I4MDEwZDdiYWZkNmE5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCigbZ7tOz85mk7pYnobAU4VN68WSFZMUoakilC3rBoE7pM
YBGn3MerpApohoUDf5Gd8OFMBsBzf/CdLoxx45nIaT+TqDYkzO7BuZb616Zlf9lz
aVfKzc5BqdTopL4IpSDeD80WJAdPjO0U0FRX89UmE7JvNeAAHimFQfumFtYR4jzy
iDNSpL3jvY9BzAwrFxmNiSYuJux0c04lFTMdqpnE8L1TRrzVldxCdA18AHoQU/F7
BMoKK1F6QzBWDI+3W6SzY1xlTLXDYCf/gmsHH4lQgSfD2nnNcw6UHza9zceHP4uV
kY8MLPucMQVqfMmxAEYX1hxLJl+iXeqxYv06YYECAwEAAaOCAqowggKmMB0GA1Ud
DgQWBBSn7YJwqHOHiwhKNho7gBDXuv1qkzAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L3AtMkNjS2h6aDRzSVNqWWFPNEFRMTdyOWFwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
vwYIKwYBBQUHAQcBAf8Ega8wgawwgakEAgABMIGiAwQBUoy2AwQAVC7IAwQAViav
AwQBVia0MAwDBABWJr0DBABWJr4DBABWJsgDBABWJtYDBAJWJtgwDAMEAFYm4QME
AFYm4gMEAFYm7jAMAwQAVibxAwQCVibwAwQAWXQ4AwQAWXRgAwQAWXSHAwQAWXSc
AwQAWXSeAwQAWXSvAwQAWXSxAwQAWXTaAwQAWXULAwQEWXUwAwQAWXVtAwQCWXV4
MA0GCSqGSIb3DQEBCwUAA4IBAQCGmClTcgfQH5lyfv2apCYJJgb4U+AWTKMVDz5T
1qjDcrBdlf4N2lYwXlCK3ilndK1ZYRxz9iD1j7480bpxaiRHhjFyXJ3aEUo75exA
bk7+VypGzzMEAfVH8Zx28OrOC4nNwaGMWIxNb2tNPQGMoLovglF0Bv6Z4WGcB1Wk
U9LFlpBBfl2lE/1IEC/yZ4wG7H2iuW+mR798JPgelWxqM1ZcPCeOCCJYDyRJurDw
yIMyI1igh+XVY/YFEwYLAeCyAxJKWLvP0Lodj+nvraIBSjmSCiuhqYJxUID9X5r+
WHHTOVve2MIYWM0Muyb2iNfqV8pw4CeWwSLof+f0+lRbs0gk
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org