Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/pQ4uCF_Jsc0MPdROYdCq7c2ZvMI.roa
File: pQ4uCF_Jsc0MPdROYdCq7c2ZvMI.roa (raw, json)
Hash identifier: ieYlP6t3x9F6TM4iRxk9hpVpSoHAb6CuYg7IA2JfF4Q=
Subject key identifier: A5:0E:2E:08:5F:C9:B1:CD:0C:3D:D4:4E:61:D0:AA:ED:CD:99:BC:C2
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B889C68
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/pQ4uCF_Jsc0MPdROYdCq7c2ZvMI.roa
Signing time: Thu 23 Jun 2022 12:58:58 +0000
ROA not before: Thu 23 Jun 2022 12:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193502312 (0xb889c68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jun 23 12:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a50e2e085fc9b1cd0c3dd44e61d0aaedcd99bcc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:88:0a:a5:33:03:fc:f1:1b:1d:11:2d:f5:44:
97:86:f3:33:30:a3:50:03:f9:e4:77:c3:8a:e5:16:
87:85:58:bd:1d:e5:c2:bb:35:e3:e5:72:77:bc:25:
80:81:44:d3:64:7a:93:7e:51:e6:84:20:25:06:69:
1d:b5:35:26:ed:07:35:6f:ae:b3:e8:fd:2a:3a:4d:
6a:60:20:8f:f6:c6:73:63:e0:ce:51:97:de:35:45:
c9:9d:16:7f:f2:49:f5:1a:b9:a0:c6:44:92:92:1e:
1b:0c:6f:d7:53:32:b0:b5:a6:4a:2b:d8:6e:14:b0:
21:75:af:eb:d4:b2:9d:88:ea:79:15:3c:48:1a:08:
1b:38:c4:a7:0b:b8:56:e3:74:48:b6:42:b8:5d:f0:
aa:91:2f:34:86:cb:d7:25:c2:14:e1:60:37:3e:e3:
2b:bb:6f:ab:9e:81:38:0f:e2:a9:e5:e1:16:29:33:
99:b7:95:f2:f4:4e:8f:0a:88:a2:4f:6a:b4:77:ed:
ff:6e:bb:44:a6:39:20:b1:46:ce:68:23:e1:05:28:
1f:fd:03:02:6a:19:04:65:f5:6b:04:b2:9f:54:21:
c7:d5:66:51:0c:42:51:4a:6c:a0:c5:80:aa:99:aa:
ca:06:a3:f8:d1:04:b0:4e:fd:aa:d2:da:15:1d:3a:
20:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0E:2E:08:5F:C9:B1:CD:0C:3D:D4:4E:61:D0:AA:ED:CD:99:BC:C2
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/pQ4uCF_Jsc0MPdROYdCq7c2ZvMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.210.0/23
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.32.0/23
89.117.36.0/23
89.117.70.0/23
89.117.94.0/23
89.117.102.0/23
89.117.116.0/23
89.117.158.0-89.117.163.255
89.117.190.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:1a:1b:19:a3:69:b7:35:02:88:df:5f:c5:70:fc:54:a2:0c:
fe:49:fa:5e:c0:bb:58:10:2a:84:44:66:05:4d:69:28:34:ff:
cd:07:56:39:67:70:6f:8b:56:85:9f:23:72:5d:78:6f:0e:50:
02:0b:d1:3c:d4:2c:2f:ae:36:a0:97:53:64:97:27:a5:2c:10:
64:0f:e3:47:a5:30:2d:b9:15:55:cd:98:e2:a0:6a:23:d2:0d:
01:1e:5e:9e:9d:9b:6e:61:29:bd:c1:02:e5:4b:d5:7d:56:46:
d5:45:e6:71:36:4f:a3:36:c2:ef:8a:f0:0b:9d:df:e5:bc:a6:
28:a4:4f:4b:ef:9f:d7:c0:2c:56:73:45:4b:48:74:da:68:37:
81:a1:ea:28:23:99:26:10:59:20:1b:d7:f7:09:3b:84:28:17:
26:89:b0:bc:d4:31:43:74:77:c5:96:2c:22:18:10:b9:9a:5e:
bd:d9:c7:89:95:48:13:3a:bd:4c:2a:9b:ff:36:5b:04:24:a3:
a2:f8:81:d3:a5:dd:1e:33:e3:f2:75:ab:79:b3:94:10:9c:98:
3b:80:e0:c1:23:fd:2d:02:9a:a9:d0:3e:68:21:5f:0c:5e:c8:
66:ec:7f:da:2e:8c:72:ff:00:c5:ce:64:00:d7:f7:40:c4:22:
34:37:14:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org