Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/px0CKZlLbHtCFOodZ0TNTjaHPEE.roa
File: px0CKZlLbHtCFOodZ0TNTjaHPEE.roa (raw, json)
Hash identifier: IbCrxhHxQka+gmGgBH1kO7MIoGXL4YQTNtVGnxjYQZc=
Subject key identifier: A7:1D:02:29:99:4B:6C:7B:42:14:EA:1D:67:44:CD:4E:36:87:3C:41
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 018287B772260061BECE858C439844A7938C
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/px0CKZlLbHtCFOodZ0TNTjaHPEE.roa
Signing time: Wed 10 Aug 2022 12:25:22 +0000
ROA not before: Wed 10 Aug 2022 12:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:b7:72:26:00:61:be:ce:85:8c:43:98:44:a7:93:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 10 12:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a71d0229994b6c7b4214ea1d6744cd4e36873c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1c:c7:65:14:db:46:e4:48:73:76:6c:7c:f9:
78:74:b3:ce:a1:19:2b:52:a9:ea:15:d8:10:4f:4a:
8d:0d:65:24:88:d5:59:1e:2a:7b:39:c4:16:f2:ca:
48:3c:12:95:c7:89:5d:68:11:89:d3:d9:df:27:c7:
97:5f:9d:18:1d:06:8e:60:48:85:a8:28:28:ae:03:
ba:96:70:15:ed:ea:29:42:0f:bc:76:3f:83:43:f6:
81:18:14:12:08:96:96:44:13:0b:3d:42:f2:b6:c0:
15:3a:20:bc:69:d3:d5:c8:02:2e:65:f8:c1:6a:16:
9f:66:b7:aa:25:2f:40:db:00:f6:d6:80:3f:90:61:
c0:36:61:95:73:45:f2:1d:15:a1:0b:04:42:ee:90:
a6:a0:af:91:10:80:46:bc:95:09:78:db:ac:67:a4:
fc:65:b7:cb:b0:fe:7c:fa:24:b2:76:a8:4e:d6:32:
b4:b2:13:8d:89:58:61:6a:f1:49:2a:9b:93:78:95:
1e:70:c6:81:65:68:08:a2:61:b6:a2:cd:ae:c0:cc:
d8:98:5b:4b:9d:64:09:4f:37:8f:e7:83:8a:5d:2f:
bf:6c:a8:e2:fd:2f:54:2c:b6:05:2c:b5:bd:c3:b7:
29:4c:63:a0:41:3d:19:1e:9f:35:15:fa:3b:37:d1:
4d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1D:02:29:99:4B:6C:7B:42:14:EA:1D:67:44:CD:4E:36:87:3C:41
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/px0CKZlLbHtCFOodZ0TNTjaHPEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.148.0-89.116.150.255
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:7c:d3:64:bc:d1:4b:a3:f8:4b:89:6d:0c:3b:d4:38:bd:40:
3a:4d:f6:37:06:16:bc:ff:1a:15:2e:b0:05:ba:6f:09:dd:f9:
95:91:da:8d:7d:32:48:3c:e8:72:69:21:cd:99:07:68:16:fd:
3e:ae:fb:92:30:9e:44:87:72:8c:21:eb:de:a0:1a:a0:66:73:
96:2e:47:24:8b:48:95:e9:f4:33:14:49:2b:de:5e:b1:e8:ea:
27:0f:6a:ff:94:50:5a:31:0b:93:3b:80:b0:74:f5:b7:72:44:
b2:5d:46:f1:6d:ad:14:91:e6:95:bf:84:b4:1e:49:0b:55:bd:
bf:29:78:19:8d:c0:48:ec:07:97:33:05:61:6f:0a:c0:64:18:
04:52:0f:51:94:f7:1b:2f:4c:26:04:65:c8:04:d2:d7:80:fe:
4f:71:c2:10:cb:57:64:fe:fa:00:67:b6:b1:ac:d7:4f:07:ad:
66:07:7b:6f:22:ae:ff:94:a9:48:ab:0a:ce:7d:66:86:fd:8b:
f3:a6:65:ac:9c:db:72:be:5c:14:b8:94:a8:6f:97:eb:6f:72:
4e:40:bf:e1:c3:78:a3:57:07:50:99:d8:fd:e3:ff:82:d7:b1:
87:d6:f7:86:ac:33:84:38:d3:a9:da:c2:b1:70:3e:3b:1c:b0:
0c:77:16:6a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org