Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/w_BMe5qcer3ehBQgKmmEUyP-M5Y.roa
File: w_BMe5qcer3ehBQgKmmEUyP-M5Y.roa (raw, json)
Hash identifier: WUqB6/kmvhcnWnhALIh0tCpD9/5vYKM5dXBCv4YTkQM=
Subject key identifier: C3:F0:4C:7B:9A:9C:7A:BD:DE:84:14:20:2A:69:84:53:23:FE:33:96
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 01828B8A706B7D7BC34DE7C0F2EC863E70AA
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/w_BMe5qcer3ehBQgKmmEUyP-M5Y.roa
Signing time: Thu 11 Aug 2022 06:14:41 +0000
ROA not before: Thu 11 Aug 2022 06:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 89.117.68.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
86.38.190.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
89.117.35.0/24 maxlen: 24
89.116.102.0/24 maxlen: 24
89.116.236.0/24 maxlen: 24
89.116.234.0/24 maxlen: 24
89.116.244.0/24 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
89.117.218.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:8a:70:6b:7d:7b:c3:4d:e7:c0:f2:ec:86:3e:70:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Aug 11 06:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3f04c7b9a9c7abdde8414202a69845323fe3396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:76:52:ca:88:6a:22:9b:00:7b:6a:89:82:
d4:bf:f4:04:3d:eb:7b:0d:46:ad:ce:eb:2a:fe:2a:
56:25:bc:bf:20:5c:3b:3f:40:39:bc:41:72:3f:58:
c2:c8:ef:d7:11:4d:b3:04:37:83:bc:7d:1d:6d:c0:
49:2c:d2:26:9e:df:75:13:30:f3:59:5a:07:2e:74:
f4:1f:8e:34:18:a3:2a:ab:ce:10:85:b2:14:1a:fd:
ee:c5:57:6b:be:5b:d4:cd:85:87:6b:c2:56:86:09:
04:03:58:1b:d8:02:2a:6c:1c:fd:51:28:cd:7a:97:
9a:11:f8:4e:2c:b0:75:f9:97:6b:1f:ed:de:cd:ff:
71:ff:10:3a:cd:0e:12:21:77:65:29:22:30:8a:2b:
0f:cc:b0:0e:f8:9b:be:01:68:b7:1f:c6:d8:6e:37:
df:75:76:d5:c7:9a:9a:bb:d3:1d:78:2c:d0:6e:1f:
c5:c3:51:b7:e5:56:a1:9b:62:d6:43:7d:41:a0:22:
21:ea:c8:d3:32:76:e1:6d:db:2e:f0:21:53:46:d1:
8b:3a:e9:21:f4:a9:b1:47:bb:92:9d:31:7b:4d:dd:
f1:6a:d7:1c:9f:cb:0b:58:98:34:6e:79:c9:fe:69:
91:7d:82:d3:bc:d0:80:d0:22:a4:da:c3:7e:d5:b7:
ca:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F0:4C:7B:9A:9C:7A:BD:DE:84:14:20:2A:69:84:53:23:FE:33:96
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/w_BMe5qcer3ehBQgKmmEUyP-M5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.175.0/24
86.38.177.0/24
86.38.190.0/24
89.116.70.0/24
89.116.102.0/24
89.116.175.0/24
89.116.234.0/24
89.116.236.0/24
89.116.244.0/24
89.117.35.0/24
89.117.68.0/24
89.117.109.0/24
89.117.218.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:ca:81:af:85:98:3d:2e:46:57:14:c8:5c:4a:95:0e:19:01:
e7:9a:44:3d:70:b5:2e:c8:5d:65:1c:b0:fc:d1:e2:70:87:0b:
b9:b6:8c:5e:00:ec:e2:95:53:eb:bd:05:e4:3e:02:1d:aa:0d:
5f:78:43:d9:5d:21:0a:12:00:c5:73:46:a6:63:56:75:33:45:
60:a6:77:64:6d:49:3f:35:d8:32:d4:cb:cd:c1:29:df:e7:e4:
e9:d2:cf:30:47:e1:5f:30:0b:05:19:43:7e:a7:eb:50:89:4e:
93:79:a9:e5:79:c5:70:9b:1d:89:2d:2f:c6:aa:4c:6c:b5:80:
de:a8:48:61:f4:20:63:17:3c:a2:41:05:f8:6d:9e:8b:ad:2c:
db:af:60:e7:d6:e6:e0:35:2c:d6:8f:69:96:c7:69:f0:56:46:
f9:87:c7:93:85:f9:3b:97:9e:4d:f0:81:06:78:94:b2:66:07:
2f:57:b0:e7:ea:8a:66:4d:82:4b:9c:e7:a1:cd:a9:9b:c5:81:
63:12:8d:d9:7e:46:6f:4b:cd:0b:d8:75:3a:29:35:aa:4c:2c:
5a:ad:2a:90:8f:64:0b:8b:1c:9d:69:ba:ed:9e:fd:fb:a8:b2:
4e:49:78:fd:8e:15:dd:70:e6:48:40:cb:eb:ac:12:61:e6:66:
77:15:92:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org