Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/wTAh7J2m5f8miMBR5faaUyWQTvQ.roa
File: wTAh7J2m5f8miMBR5faaUyWQTvQ.roa (raw, json)
Hash identifier: 95gwPYSjRhG/fssRcoNmkFhDIvJeek2EjBsx5m5rnt0=
Subject key identifier: C1:30:21:EC:9D:A6:E5:FF:26:88:C0:51:E5:F6:9A:53:25:90:4E:F4
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AE0C97B
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/wTAh7J2m5f8miMBR5faaUyWQTvQ.roa
Signing time: Mon 16 May 2022 15:20:30 +0000
ROA not before: Mon 16 May 2022 15:20:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
89.117.64.0/22 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.220.0/23 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182503803 (0xae0c97b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 16 15:20:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c13021ec9da6e5ff2688c051e5f69a5325904ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ca:b5:83:d4:f7:e4:ef:98:1d:56:d3:04:8b:
d3:36:aa:37:7c:32:19:83:a4:68:4f:d2:46:5e:ff:
21:f1:d5:a6:1b:6c:ad:52:60:fd:97:15:d1:d7:e4:
c6:cd:02:27:e6:eb:32:a0:8f:83:c6:f7:ca:aa:eb:
e9:de:c7:c0:59:8f:c1:03:97:2e:16:ba:27:99:99:
3d:a5:1d:78:3d:a7:1f:7a:80:2d:ea:3f:00:3e:e0:
4f:8f:78:87:a0:a0:20:97:d4:6d:9c:75:ee:d5:e3:
ef:1f:0c:df:39:e3:20:af:5f:cd:0d:e8:3a:76:e8:
54:18:5b:f6:7e:b2:26:bd:da:96:00:bf:a6:e1:3b:
c0:bb:7c:dc:05:f1:e7:3a:f3:42:08:4b:0d:c3:c3:
b8:39:3a:1e:fd:96:e8:6d:9f:23:8b:ae:4e:8f:b1:
eb:16:f1:8d:4c:fb:2f:ca:c7:69:2d:03:64:34:f0:
57:ac:60:a5:13:5b:03:42:6e:90:18:d4:63:33:7e:
c1:a0:f9:8b:31:60:03:18:5b:4a:4c:8d:99:b8:70:
af:b4:26:4e:70:cb:57:72:29:ce:80:a0:9c:91:01:
2c:63:3b:2d:18:21:62:41:02:69:b6:2d:a3:35:8e:
db:e0:66:03:dc:7f:bd:da:78:48:26:50:ed:63:fe:
e8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:30:21:EC:9D:A6:E5:FF:26:88:C0:51:E5:F6:9A:53:25:90:4E:F4
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/wTAh7J2m5f8miMBR5faaUyWQTvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.183.0/24
84.46.200.0/24
86.38.4.0/23
86.38.175.0/24
86.38.180.0/23
86.38.189.0-86.38.190.255
86.38.200.0/24
86.38.214.0/24
86.38.220.0/23
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.68.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0-89.117.67.255
89.117.109.0/24
89.117.120.0/22
89.117.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:b6:ec:46:fd:13:9c:68:19:31:bb:27:6d:43:5a:c1:ad:0f:
8e:c7:81:34:c3:9c:1a:f7:f4:a0:35:61:18:f0:56:e0:5c:17:
cd:78:e2:e0:e6:fb:31:83:fb:3a:66:df:d7:57:21:eb:74:94:
b1:fd:83:64:17:f4:a7:7f:1c:30:02:07:a8:10:a3:12:3e:c4:
aa:a1:97:0f:09:11:fe:a1:f8:bd:8e:b8:99:52:64:3d:52:8e:
b4:60:1e:05:2b:ab:9e:62:14:0f:66:18:1a:5f:a5:3a:9d:4e:
ec:a5:2e:b0:74:55:15:75:a5:18:4f:ad:0e:a2:a5:23:73:bc:
e3:b6:f6:bd:06:08:7d:b0:56:b0:93:3e:1b:63:4b:19:f2:a3:
75:7f:24:96:58:51:eb:4c:75:2b:e6:d7:c5:1f:d4:78:ce:72:
a7:17:04:1c:3b:3a:28:af:38:20:69:db:06:78:88:86:cb:61:
a6:e5:37:a1:8f:19:b6:fb:5c:04:1f:4e:95:34:8c:7d:19:16:
41:33:d4:8c:11:50:a4:f8:ae:20:47:ad:95:32:ce:2f:fb:8d:
66:fe:45:03:31:8c:d5:61:45:2c:62:b3:cc:27:18:16:bf:86:
0b:19:94:71:b5:22:0e:b5:12:5d:6b:a4:d1:05:40:71:ea:2b:
df:fa:23:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org