Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/y4MlBfkY8THJgxD-DVAoi3H3Eo0.roa
File: y4MlBfkY8THJgxD-DVAoi3H3Eo0.roa (raw, json)
Hash identifier: gT8VoiOVHWMVP5djxHjXJ6lncLyjqWBh8uOkeucoIy8=
Subject key identifier: CB:83:25:05:F9:18:F1:31:C9:83:10:FE:0D:50:28:8B:71:F7:12:8D
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B4B9904
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/y4MlBfkY8THJgxD-DVAoi3H3Eo0.roa
Signing time: Thu 09 Jun 2022 18:38:02 +0000
ROA not before: Thu 09 Jun 2022 18:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.70.0/23 maxlen: 24
89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.112.0/22 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.24.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.64.0/22 maxlen: 24
89.117.190.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.222.0/24 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.160.0/22 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.106.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.126.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.130.0/23 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.141.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.116.148.0/23 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.202.0/23 maxlen: 24
89.116.88.0/23 maxlen: 24
89.116.92.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.253.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.189.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189503748 (0xb4b9904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jun 9 18:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb832505f918f131c98310fe0d50288b71f7128d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:22:4d:fb:83:c1:01:0b:d9:14:d4:15:fd:6a:
3e:ee:ed:fa:57:9f:88:4a:5b:7c:8a:05:b9:90:34:
25:3e:fe:11:4a:ab:f2:c0:6b:b0:29:a1:cc:27:17:
b0:3c:79:69:7f:9b:68:d1:a6:45:e5:87:a4:12:a1:
ad:6e:99:50:a0:a1:a0:1b:aa:89:05:7d:d6:ac:fa:
21:9d:b9:54:34:77:f2:d8:50:00:63:a9:43:32:bf:
24:a2:66:d2:64:97:3f:15:1d:f0:0b:41:f1:08:d3:
e8:a6:e5:e9:f8:38:4f:35:83:84:d1:ff:f7:f4:e7:
ac:5b:c3:05:d6:a3:44:12:ff:4f:6a:51:0b:3b:31:
fc:44:46:db:64:61:5b:b4:30:49:16:91:a1:65:92:
54:c7:95:6f:09:7a:04:2f:68:63:0c:1e:05:74:e8:
c5:e5:a3:fb:4b:78:87:f0:2a:b1:c2:80:dd:d1:17:
03:ab:6d:2b:b9:93:57:05:b3:ab:a2:14:00:da:5b:
5a:0c:38:65:77:38:27:2c:cf:cb:07:0b:af:91:49:
77:d3:ba:28:0a:f4:fd:26:4f:01:47:41:25:7f:09:
d0:bd:cd:1b:30:f1:82:74:3f:34:12:2f:a6:0a:79:
b5:ba:3e:02:1d:56:6c:fd:c5:61:f2:9d:4f:03:21:
dc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:83:25:05:F9:18:F1:31:C9:83:10:FE:0D:50:28:8B:71:F7:12:8D
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/y4MlBfkY8THJgxD-DVAoi3H3Eo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.58.0/23
89.116.68.0/23
89.116.88.0/23
89.116.92.0/24
89.116.106.0-89.116.108.255
89.116.125.0-89.116.127.255
89.116.130.0-89.116.132.255
89.116.135.0/24
89.116.137.0/24
89.116.141.0/24
89.116.148.0-89.116.150.255
89.116.153.0/24
89.116.158.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.179.0/24
89.116.184.0-89.116.186.255
89.116.189.0-89.116.190.255
89.116.210.0/23
89.116.218.0/24
89.116.252.0/23
89.116.255.0/24
89.117.8.0/23
89.117.12.0/23
89.117.24.0/23
89.117.28.0-89.117.33.255
89.117.36.0/23
89.117.64.0/22
89.117.70.0-89.117.79.255
89.117.84.0/23
89.117.88.0/22
89.117.94.0-89.117.99.255
89.117.102.0/23
89.117.109.0/24
89.117.112.0-89.117.117.255
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.158.0-89.117.163.255
89.117.190.0/24
89.117.215.0/24
89.117.222.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:a2:11:3f:04:bb:ef:ea:23:3a:08:29:84:e1:7c:87:3c:8b:
99:a1:12:8b:e1:11:63:57:1d:b2:8e:4f:61:65:a5:b0:c4:a4:
c2:23:b7:af:f9:4f:84:29:51:35:91:df:10:83:06:2b:c5:4a:
6d:cf:80:bc:a2:17:ed:66:74:c2:9c:7e:b0:68:6a:78:69:62:
46:9a:6f:8f:b5:f6:df:53:a1:ee:eb:59:ff:03:56:00:85:ff:
5a:05:76:3a:ba:c4:d2:26:0a:9b:fd:61:42:3c:f3:bd:0d:06:
80:a5:26:38:f2:36:83:4b:41:a4:4f:64:5c:7e:99:7c:83:69:
b0:07:f3:ef:29:b3:46:d1:40:a1:45:95:f5:6f:27:cf:b3:90:
06:81:9d:08:5b:bd:10:4d:49:1e:0d:3d:89:6a:e9:7f:b2:d7:
40:20:95:1e:41:f7:d7:3e:a5:e5:99:fc:f0:57:92:46:1e:9d:
50:c2:4d:f1:78:f1:61:0f:28:42:bd:bd:e1:e5:77:07:43:e1:
05:92:76:ed:8f:67:88:7e:bd:f8:b5:ef:ec:5f:04:c4:e2:a7:
c3:29:ab:6e:31:1b:e1:c0:79:af:3b:56:59:59:b9:1c:9a:27:
57:08:64:48:a0:77:57:42:dc:cf:97:0a:3c:ce:a9:0f:72:2b:
45:1d:40:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org