Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/uV2IrNso_5Ek9wUjMAnaLpePAV4.roa
File: uV2IrNso_5Ek9wUjMAnaLpePAV4.roa (raw, json)
Hash identifier: tv6rF1whfaCFxGSkn7wko+WnHwQa1+Ht4g/vtymvw7o=
Subject key identifier: B9:5D:88:AC:DB:28:FF:91:24:F7:05:23:30:09:DA:2E:97:8F:01:5E
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A2DA501
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/uV2IrNso_5Ek9wUjMAnaLpePAV4.roa
Signing time: Wed 06 Apr 2022 12:24:42 +0000
ROA not before: Wed 06 Apr 2022 12:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.80.0/22 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.216.0/23 maxlen: 24
89.117.218.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.226.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
89.117.167.0/24 maxlen: 24
84.46.234.0/23 maxlen: 24
89.117.168.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.154.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.76.0/24 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.91.0/24 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.250.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.164.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.202.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170763521 (0xa2da501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 6 12:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b95d88acdb28ff9124f705233009da2e978f015e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5a:30:88:c4:55:02:78:48:45:6e:12:0d:de:
4e:e9:71:3f:ec:16:b9:4c:81:cc:01:18:06:76:86:
f1:d3:77:fe:85:d2:82:4d:35:da:b2:00:c3:0f:09:
bf:f6:59:97:d7:84:8b:fb:5a:c1:44:10:36:fa:b3:
eb:12:4a:f2:01:6f:0e:d3:47:47:92:5d:ba:53:74:
b6:02:e7:be:d8:2c:bf:8b:2d:74:dc:5e:a8:cf:6d:
07:14:08:34:f4:e2:40:a3:8f:3c:9b:21:a6:26:c5:
fd:20:f9:d5:8f:bc:76:a0:98:61:a9:3c:bc:9b:d3:
fd:69:33:c0:3a:7c:6a:6a:7d:93:5f:74:f1:48:4e:
4a:41:90:01:6a:08:ab:9d:28:79:c5:2c:b4:63:46:
6c:80:45:e4:af:20:08:32:c9:bd:5e:07:61:3a:2d:
b4:bf:62:82:a2:8c:48:05:33:3b:e8:6c:d8:1a:9d:
ba:17:7c:80:da:6e:f5:cb:80:54:f6:c6:d4:c2:4e:
c1:18:c9:fa:85:12:14:18:85:1f:71:85:9e:64:73:
6a:16:35:05:c4:7a:e5:fa:64:38:a6:2f:f9:10:2e:
11:00:64:39:a1:8a:65:5a:cb:f5:56:02:bc:30:78:
c1:06:4c:f1:5a:fd:4c:d2:76:df:9a:64:59:5e:54:
83:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5D:88:AC:DB:28:FF:91:24:F7:05:23:30:09:DA:2E:97:8F:01:5E
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/uV2IrNso_5Ek9wUjMAnaLpePAV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.182.0-86.38.187.255
86.38.202.0/23
86.38.246.0/23
89.116.52.0/23
89.116.58.0/23
89.116.68.0-89.116.70.255
89.116.76.0/24
89.116.88.0/23
89.116.91.0-89.116.92.255
89.116.106.0-89.116.108.255
89.116.125.0-89.116.128.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.146.0-89.116.150.255
89.116.153.0-89.116.154.255
89.116.158.0/24
89.116.161.0/24
89.116.163.0-89.116.166.255
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.193.0/24
89.116.202.0/24
89.116.210.0/23
89.116.218.0/24
89.116.250.0/24
89.116.252.0/23
89.116.255.0/24
89.117.6.0-89.117.9.255
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0-89.117.68.255
89.117.70.0-89.117.85.255
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.139.0/24
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.167.0-89.117.169.255
89.117.188.0/24
89.117.190.0/24
89.117.215.0-89.117.218.255
89.117.222.0/24
89.117.226.0-89.117.229.255
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
26:28:d0:af:72:df:5e:55:5c:7e:7d:bb:1b:9b:2a:ec:8a:97:
d6:1e:69:41:48:f0:cc:41:fe:45:be:e3:6e:c6:32:92:72:87:
d6:be:77:48:d4:49:f9:97:0e:38:3b:33:0d:a8:27:de:34:5f:
1b:37:db:92:8e:72:4e:ce:52:db:1f:5f:bb:b9:a4:17:f7:12:
bf:ea:a8:97:1c:c8:73:40:3f:a8:22:94:aa:44:4d:24:5c:4c:
2d:f8:61:55:95:01:9f:14:3f:d5:83:10:98:78:a3:1e:75:6d:
be:84:f2:d7:0f:31:c5:97:de:c3:06:a5:69:49:e6:62:d8:8f:
41:c2:ae:74:1a:80:9b:c0:d2:69:9b:7c:62:84:56:68:c8:74:
96:03:08:e1:e8:ba:30:9f:92:f4:bd:25:3b:b3:9d:50:91:c0:
30:a4:11:1f:36:56:23:97:be:55:10:eb:60:0c:60:22:aa:64:
73:90:80:1b:bb:c5:e8:6d:b8:f3:21:c5:83:3c:bc:c5:9e:e8:
63:f2:6f:42:06:58:ef:56:a5:a8:6e:38:bc:57:19:01:8e:62:
4a:18:ea:89:7d:28:3a:89:f6:ff:a5:54:40:9b:26:cc:e0:ed:
51:7a:78:e6:ce:a3:a5:2c:8f:b6:97:48:4c:b1:ef:12:91:4e:
a4:ce:cb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org