Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/tb4Sox4w4mWqm82rxdwuPPs55JI.roa
File: tb4Sox4w4mWqm82rxdwuPPs55JI.roa (raw, json)
Hash identifier: qHR+5rScuAmKOSwVF6sc6eDuCFE751SmTc8zZlraC1c=
Subject key identifier: B5:BE:12:A3:1E:30:E2:65:AA:9B:CD:AB:C5:DC:2E:3C:FB:39:E4:92
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AA52432
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/tb4Sox4w4mWqm82rxdwuPPs55JI.roa
Signing time: Fri 06 May 2022 21:16:25 +0000
ROA not before: Fri 06 May 2022 21:16:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
82.140.182.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
89.117.64.0/22 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.216.0/22 maxlen: 24
86.38.220.0/23 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178594866 (0xaa52432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 6 21:16:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5be12a31e30e265aa9bcdabc5dc2e3cfb39e492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:c6:66:d1:49:90:65:d4:7a:fc:ba:41:6f:
c3:aa:0d:db:b3:a4:db:7c:48:77:6c:5c:9f:98:12:
53:e8:bb:77:87:e6:16:02:a6:e2:8f:31:e9:45:6a:
73:14:f8:6b:54:c2:ee:32:f9:0a:9d:d6:af:fd:a2:
95:09:37:a4:b8:ac:0d:09:16:d5:80:0c:54:fd:f5:
86:4a:4e:4c:8b:71:e3:0f:df:ab:23:44:0d:c5:16:
50:5c:65:6b:33:66:ae:7b:52:66:18:07:68:0b:a5:
f3:ca:5e:70:73:dd:bd:22:95:fa:58:2e:8a:ae:45:
2d:de:3b:60:53:5d:47:8e:d9:ee:79:b8:e0:c3:55:
dd:75:af:db:61:dd:25:b8:e2:51:65:e7:30:d2:cf:
de:9b:ff:27:e1:83:f5:c6:3b:45:27:98:cc:86:50:
a6:13:d6:c8:13:da:37:c3:56:14:0d:2e:9d:59:71:
3c:75:9d:61:46:47:ea:2c:66:dd:9d:6d:65:01:c4:
e3:c0:56:72:b2:4f:76:ab:07:b1:a4:42:08:ef:d9:
17:77:fa:b9:bd:90:d8:5b:e8:95:d8:a4:ec:f3:71:
29:5e:8a:17:e0:03:fd:32:9f:33:3e:90:29:82:15:
ca:14:d6:cc:f2:06:0b:54:38:d3:4d:a6:a4:9e:e4:
22:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BE:12:A3:1E:30:E2:65:AA:9B:CD:AB:C5:DC:2E:3C:FB:39:E4:92
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/tb4Sox4w4mWqm82rxdwuPPs55JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.200.0/24
86.38.4.0/23
86.38.175.0/24
86.38.180.0/23
86.38.189.0-86.38.190.255
86.38.200.0/24
86.38.214.0/24
86.38.216.0-86.38.221.255
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.68.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0-89.117.67.255
89.117.109.0/24
89.117.120.0/22
89.117.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:f9:03:b1:16:36:eb:7c:47:14:84:1f:69:12:88:cc:e5:da:
08:78:eb:e9:9a:85:92:00:45:9d:b2:c0:35:4d:74:13:ea:dc:
54:67:91:77:7b:b3:fe:c1:05:b4:53:57:13:50:47:fb:8a:b8:
c5:8c:c4:31:86:ac:f1:cd:35:04:94:5f:c6:8f:19:f5:29:6a:
4c:aa:f6:48:0f:71:33:67:ba:21:9a:40:38:d8:90:fa:b5:40:
29:83:90:82:f5:21:98:02:45:ea:cf:dd:ec:de:3e:41:d1:72:
b1:d2:cc:d7:ae:3a:da:37:9c:e3:bf:53:af:06:5e:dc:d4:93:
12:fb:41:a1:54:58:da:7a:5d:43:db:48:77:0b:e7:e5:2b:16:
08:3c:9f:18:b9:ae:d8:c3:10:31:db:8a:2e:37:85:ce:bb:9a:
c1:14:e9:d3:76:b5:65:7d:db:d5:3b:4a:89:84:75:2b:d0:d1:
f4:c8:53:5e:49:af:ee:1d:90:ca:71:e2:cb:77:98:40:de:c4:
6c:cc:c9:2a:6e:5d:99:0b:2c:2d:5e:33:5d:9e:d2:bb:2b:de:
76:8f:5b:ea:26:ab:20:9d:48:3c:65:ac:41:20:87:91:a6:21:
99:d6:67:b0:73:38:a3:07:7e:12:8a:2e:86:0b:75:27:9c:ab:
f3:d8:ae:25
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org