Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/rtE9ZjO1N7MMm5kOTe49eLN1EHM.roa
File: rtE9ZjO1N7MMm5kOTe49eLN1EHM.roa (raw, json)
Hash identifier: juaJ9uMD6g7Vdg9YZ2SkLfkoKJ1EzQrlwWa+kveY5ro=
Subject key identifier: AE:D1:3D:66:33:B5:37:B3:0C:9B:99:0E:4D:EE:3D:78:B3:75:10:73
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0183D063CC387BB1F8F3CE12CC1E5893D3FE
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/rtE9ZjO1N7MMm5kOTe49eLN1EHM.roa
Signing time: Thu 13 Oct 2022 08:09:04 +0000
ROA not before: Thu 13 Oct 2022 08:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.215.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:63:cc:38:7b:b1:f8:f3:ce:12:cc:1e:58:93:d3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Oct 13 08:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aed13d6633b537b30c9b990e4dee3d78b3751073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:79:69:30:d0:14:0a:9a:00:f6:e7:2e:5a:
b8:16:d2:99:24:c3:36:da:a4:c4:0c:73:e6:f8:83:
0a:bb:43:57:fc:e9:cc:fb:31:06:ac:37:d7:27:d5:
a2:7d:3b:4f:15:b1:b9:c4:e5:bc:e5:fa:90:44:3f:
10:a4:36:f8:93:8f:cb:ba:16:26:61:66:0a:eb:b9:
de:82:e9:2e:51:90:57:00:54:2c:ab:c9:79:a6:72:
ba:2a:f2:21:fd:3c:b7:3b:84:42:71:35:1f:74:3d:
f3:d8:a0:88:bb:8d:b9:a4:a7:56:5a:d1:9c:26:62:
6e:0f:38:93:a6:e1:ac:cb:8c:df:9c:09:f4:12:bb:
f1:69:0c:35:b1:c4:33:15:3e:d1:00:8a:11:4e:d6:
71:55:ce:10:8a:ac:0d:16:18:aa:e2:30:7b:f3:98:
12:2f:ff:ed:f5:cf:ec:c6:08:67:50:0c:35:cf:c1:
02:a9:df:91:e7:d2:3d:c5:e5:70:f3:8e:42:6e:17:
dc:97:d9:6f:ba:d4:ba:da:f2:3d:57:f5:61:be:58:
08:d7:df:bc:cd:b7:bc:83:ac:ca:88:ff:e5:33:21:
f7:e3:d0:ab:fb:29:90:e4:d6:1c:17:f7:e6:95:bb:
ed:14:5d:50:d8:9d:2b:ea:77:d9:62:05:ae:82:02:
c7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D1:3D:66:33:B5:37:B3:0C:9B:99:0E:4D:EE:3D:78:B3:75:10:73
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/rtE9ZjO1N7MMm5kOTe49eLN1EHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.108.0/24
89.116.132.0/24
89.116.135.0/24
89.116.150.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.184.0/23
89.116.210.0/23
89.116.218.0/24
89.117.8.0/23
89.117.28.0-89.117.33.255
89.117.72.0/21
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.109.0/24
89.117.116.0/23
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.190.0/24
89.117.215.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
93:fa:11:e5:3f:b7:09:bc:ac:75:3b:67:42:b0:58:1f:50:91:
d2:1a:ff:89:ea:e2:ff:52:2d:09:92:89:cd:b1:54:7f:a0:fa:
d9:f4:0a:73:ab:54:0f:9a:f9:4e:12:b1:a4:30:f8:b9:89:c2:
3a:0a:4e:1c:d2:05:da:11:5b:c2:1b:f5:e1:22:56:fe:44:59:
16:b7:c0:72:57:4d:10:fb:7f:9a:4b:a6:39:0c:43:c5:68:c0:
ad:8b:9a:77:9a:45:bc:df:a4:29:63:cb:7e:58:03:6b:ab:68:
e1:3b:93:d1:c9:9c:a7:b8:6f:c3:54:ee:6e:6a:d8:b0:c0:53:
62:ec:9e:b1:96:cb:15:52:24:6f:db:fa:8d:43:7b:75:65:b2:
6e:da:28:64:a6:1f:ae:44:e6:93:d4:dc:09:64:78:72:ff:8d:
7b:2e:a9:e8:fa:0a:18:97:4e:3d:9a:ee:19:c0:f9:6f:67:dc:
88:e1:82:37:ac:d4:c8:cf:5e:36:03:3b:05:ae:3b:c3:94:f9:
59:e5:5a:aa:12:25:52:d0:ec:b8:20:fe:95:62:b2:7e:bb:01:
b4:13:7b:a2:55:74:32:4d:3d:27:62:c1:cf:6f:b8:e4:ec:58:
08:35:13:27:d0:7f:7c:9e:f2:6d:63:da:69:5e:8b:d9:24:af:
b2:fe:02:d7
-----BEGIN CERTIFICATE-----
MIIF0DCCBLigAwIBAgISAYPQY8w4e7H4884SzB5Yk9P+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0Njk4NTg1ZTVlYmQxMWM5NjljN2VkNGEzMjBlZGFmYzlk
MTc4MjIwHhcNMjIxMDEzMDgwOTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWQxM2Q2NjMzYjUzN2IzMGM5Yjk5MGU0ZGVlM2Q3OGIzNzUxMDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskl5aTDQFAqaAPbnLlq4FtKZJMM2
2qTEDHPm+IMKu0NX/OnM+zEGrDfXJ9WifTtPFbG5xOW85fqQRD8QpDb4k4/LuhYm
YWYK67negukuUZBXAFQsq8l5pnK6KvIh/Ty3O4RCcTUfdD3z2KCIu425pKdWWtGc
JmJuDziTpuGsy4zfnAn0ErvxaQw1scQzFT7RAIoRTtZxVc4QiqwNFhiq4jB785gS
L//t9c/sxghnUAw1z8ECqd+R59I9xeVw845Cbhfcl9lvutS62vI9V/VhvlgI19+8
zbe8g6zKiP/lMyH349Cr+ymQ5NYcF/fmlbvtFF1Q2J0r6nfZYgWuggLHfwIDAQAB
o4IC3DCCAtgwHQYDVR0OBBYEFK7RPWYztTezDJuZDk3uPXizdRBzMB8GA1UdIwQY
MBaAFMRphYXl69Eclpx+1KMg7a/J0XgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgt
OWQ2MDAxZjc4YTcwLzEvcnRFOVpqTzFON01NbTVrT1RlNDllTE4xRUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS81MzEwZGEtNjgyMS00NjczLTllOTgtOWQ2MDAxZjc4YTcw
LzEveEdtRmhlWHIwUnlXbkg3VW95RHRyOG5SZUNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHxBggrBgEFBQcBBwEB/wSB4TCB3jCB2wQCAAEwgdQDBAFU
LuoDBAFWJrIDBAJWJrgDBAFWJsoDBAFWJvYDBABZdGwDBABZdIQDBABZdIcDBABZ
dJYDBABZdKEDBABZdKMDBABZdKYDBAFZdKwDBABZdK8DBABZdLEDBAFZdLgDBAFZ
dNIDBABZdNoDBAFZdQgwDAMEAll1HAMEAVl1IAMEA1l1SAMEAVl1VAMEAll1WAME
AVl1XgMEAFl1bQMEAVl1dAMEAFl1gQMEAll1hAMEAVl1jgMEAFl1vgMEAFl11wME
AVl15AMEAFl19QMEAFl1+jANBgkqhkiG9w0BAQsFAAOCAQEAk/oR5T+3CbysdTtn
QrBYH1CR0hr/ieri/1ItCZKJzbFUf6D62fQKc6tUD5r5ThKxpDD4uYnCOgpOHNIF
2hFbwhv14SJW/kRZFrfAcldNEPt/mkumOQxDxWjArYuad5pFvN+kKWPLflgDa6to
4TuT0cmcp7hvw1TubmrYsMBTYuyesZbLFVIkb9v6jUN7dWWybtooZKYfrkTmk9Tc
CWR4cv+Ney6p6PoKGJdOPZruGcD5b2fciOGCN6zUyM9eNgM7Ba47w5T5WeVaqhIl
UtDsuCD+lWKyfrsBtBN7olV0Mk09J2LBz2+45OxYCDUTJ9B/fJ7ybWPaaV6L2SSv
sv4C1w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:17 2025 by rpki-client