Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/r_BnLO1yDoyOjIjacDUyTXuWOto.roa
File: r_BnLO1yDoyOjIjacDUyTXuWOto.roa (raw, json)
Hash identifier: hes3GmINfTRi0PSUaANuxBxKtEI82sL80lrn1vn1f5k=
Subject key identifier: AF:F0:67:2C:ED:72:0E:8C:8E:8C:88:DA:70:35:32:4D:7B:96:3A:DA
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AC30F46
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/r_BnLO1yDoyOjIjacDUyTXuWOto.roa
Signing time: Tue 10 May 2022 07:09:34 +0000
ROA not before: Tue 10 May 2022 07:09:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180555590 (0xac30f46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 10 07:09:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aff0672ced720e8c8e8c88da7035324d7b963ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:ed:39:96:9e:18:d6:9e:0a:e1:2d:ad:31:
8c:77:6c:48:3d:9e:51:c9:58:05:5e:01:99:9c:eb:
5c:35:26:13:7e:2d:12:63:f9:b4:f7:4d:de:12:6d:
0c:5a:cb:fb:b1:53:cb:32:4b:bf:8f:d8:22:1a:a1:
c6:5c:b5:5f:38:32:57:ea:9e:58:55:99:ab:ad:a4:
c6:d8:4a:d6:d4:4b:0b:e5:d3:fb:01:c0:13:aa:47:
62:16:b1:67:fc:35:27:11:af:57:d0:62:d2:ad:ad:
9a:aa:06:d7:14:d9:dc:3c:cc:a2:ed:84:6a:3d:3a:
13:79:e4:99:e8:04:89:41:7a:1d:9a:2a:95:4c:75:
36:84:97:7e:39:c5:d9:08:f7:cf:83:36:e4:4e:cd:
93:c4:39:4f:f0:bd:b8:3f:da:2c:dd:a6:44:9f:55:
ae:46:f4:42:34:f3:88:ce:ac:17:96:c7:1d:5f:08:
0e:d0:a1:67:72:1e:13:6e:6d:84:d9:fa:43:c8:f4:
1f:7b:89:7b:cb:0b:f9:f0:0b:f6:f5:30:19:b3:22:
8a:bd:04:16:92:0a:b1:ce:dd:d1:da:d1:8a:96:7e:
db:be:e2:10:ae:70:c0:b5:36:02:d4:63:8b:75:c7:
c7:73:a9:96:21:b8:32:a6:72:42:88:46:8c:af:8f:
ec:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F0:67:2C:ED:72:0E:8C:8E:8C:88:DA:70:35:32:4D:7B:96:3A:DA
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/r_BnLO1yDoyOjIjacDUyTXuWOto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0-89.116.70.255
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.193.0/24
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0-89.117.68.255
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.188.0/24
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ff:f5:8c:dc:2f:b6:7e:ce:37:1d:66:14:ec:68:ac:3a:84:
ef:d5:ed:b0:bf:f6:81:9f:10:2f:79:89:7f:9a:af:f6:1c:33:
21:c9:18:a3:1c:f5:2b:b3:76:b4:a2:4e:3b:55:64:4e:7d:cf:
3e:ad:ec:3c:33:70:58:01:af:56:e7:a7:ed:c0:1f:90:44:b5:
8c:d3:b5:22:38:4f:fe:56:8b:d2:6b:1b:ff:48:ec:f0:f5:1e:
4d:2b:4f:4f:3c:ae:39:da:62:50:ba:92:28:05:83:1b:d1:06:
f9:12:c7:aa:16:05:1a:79:9b:e9:18:c7:0b:7c:bf:71:68:29:
2b:01:38:fd:e6:75:61:fa:ed:26:2d:ec:44:23:90:06:a8:a3:
32:df:47:db:08:4b:ee:bb:fe:28:a7:7d:8a:9d:a2:e1:74:6d:
3d:d5:b9:b3:38:65:b7:67:31:e3:63:30:9e:82:82:4e:4d:9d:
d6:91:8a:ab:bf:15:bb:85:ad:c0:a5:db:a2:f3:18:16:9e:49:
0f:fe:12:ce:93:98:80:45:bc:eb:41:3f:75:b7:9c:17:c6:7a:
52:1c:26:e7:f6:dc:85:ce:f7:2c:db:91:ae:5d:e9:07:a9:21:
d7:f0:c2:a5:53:a7:ff:b8:90:d0:65:d1:de:37:f3:ea:48:62:
65:ab:45:1c
-----BEGIN CERTIFICATE-----
MIIGwzCCBaugAwIBAgIECsMPRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDY5ODU4NWU1ZWJkMTFjOTY5YzdlZDRhMzIwZWRhZmM5ZDE3ODIyMB4XDTIyMDUx
MDA3MDkzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWZmMDY3MmNlZDcy
MGU4YzhlOGM4OGRhNzAzNTMyNGQ3Yjk2M2FkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAME/7TmWnhjWngrhLa0xjHdsSD2eUclYBV4BmZzrXDUmE34t
EmP5tPdN3hJtDFrL+7FTyzJLv4/YIhqhxly1XzgyV+qeWFWZq62kxthK1tRLC+XT
+wHAE6pHYhaxZ/w1JxGvV9Bi0q2tmqoG1xTZ3DzMou2Eaj06E3nkmegEiUF6HZoq
lUx1NoSXfjnF2Qj3z4M25E7Nk8Q5T/C9uD/aLN2mRJ9Vrkb0QjTziM6sF5bHHV8I
DtChZ3IeE25thNn6Q8j0H3uJe8sL+fAL9vUwGbMiir0EFpIKsc7d0drRipZ+277i
EK5wwLU2AtRji3XHx3OpliG4MqZyQohGjK+P7JcCAwEAAaOCA90wggPZMB0GA1Ud
DgQWBBSv8Gcs7XIOjI6MiNpwNTJNe5Y62jAfBgNVHSMEGDAWgBTEaYWF5evRHJac
ftSjIO2vydF4IjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hHbUZoZVhyMFJ5V25IN1VveUR0cjhuUmVDSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8x
L3JfQm5MTzF5RG95T2pJamFjRFV5VFh1V090by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NTMxMGRhLTY4MjEtNDY3My05ZTk4LTlkNjAwMWY3OGE3MC8xL3hHbUZoZVhyMFJ5
V25IN1VveUR0cjhuUmVDSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AfEGCCsGAQUFBwEHAQH/BIIB4DCCAdwwggHYBAIAATCCAdADBAFULuoDBAFWJrIw
DAMEAVYmtgMEAlYmuAMEAVYmygMEAVYm9gMEAVl0OjAMAwQCWXREAwQAWXRGAwQB
WXRYAwQAWXRcMAwDBAFZdGoDBABZdGwwDAMEAFl0fQMEAFl0gDAMAwQBWXSCAwQA
WXSEAwQAWXSHAwQAWXSJAwQAWXSNMAwDBAJZdJQDBABZdJYwDAMEAFl0mQMEAFl0
mgMEAFl0ngMEAFl0oQMEAFl0owMEAFl0pgMEAVl0rAMEAFl0rwMEAFl0sQMEAFl0
szAMAwQDWXS4AwQAWXS6MAwDBABZdL0DBABZdL4DBABZdMEDBAFZdNIDBABZdNoD
BAFZdPwDBABZdP8wDAMEAVl1BgMEAVl1CAMEAVl1DAMEAVl1GDAMAwQCWXUcAwQB
WXUgAwQBWXUkMAwDBAZZdUADBABZdUQwDAMEAVl1RgMEAVl1VAMEAll1WDAMAwQB
WXVeAwQCWXVgAwQBWXVmAwQAWXVtMAwDBARZdXADBAFZdXQDBABZdYEDBAJZdYQD
BABZdYsDBAFZdY4wDAMEAVl1ngMEAll1oAMEAFl1vAMEAFl1vgMEAFl11wMEAFl1
3gMEAVl15AMEAFl19QMEAFl1+jANBgkqhkiG9w0BAQsFAAOCAQEAov/1jNwvtn7O
Nx1mFOxorDqE79XtsL/2gZ8QL3mJf5qv9hwzIckYoxz1K7N2tKJOO1VkTn3PPq3s
PDNwWAGvVuen7cAfkES1jNO1IjhP/laL0msb/0js8PUeTStPTzyuOdpiULqSKAWD
G9EG+RLHqhYFGnmb6RjHC3y/cWgpKwE4/eZ1YfrtJi3sRCOQBqijMt9H2whL7rv+
KKd9ip2i4XRtPdW5szhlt2cx42MwnoKCTk2d1pGKq78Vu4WtwKXbovMYFp5JD/4S
zpOYgEW860E/dbecF8Z6Uhwm5/bchc73LNuRrl3pB6kh1/DCpVOn/7iQ0GXR3jfz
6khiZatFHA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org