Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yeYxeZYOwcCP4U4M6uZo7C2dDbM.roa
File: yeYxeZYOwcCP4U4M6uZo7C2dDbM.roa (raw, json)
Hash identifier: UOtj901oFbWMNyuaC2TQ59OV+NA8kXcsmXbMP/idyL8=
Subject key identifier: C9:E6:31:79:96:0E:C1:C0:8F:E1:4E:0C:EA:E6:68:EC:2D:9D:0D:B3
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182FDCF14C59127B5C5DD8E352ACFE4F059
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yeYxeZYOwcCP4U4M6uZo7C2dDbM.roa
Signing time: Fri 02 Sep 2022 10:46:23 +0000
ROA not before: Fri 02 Sep 2022 10:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 89.117.72.0/21 maxlen: 24
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.215.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
89.116.125.0/24 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
89.117.228.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.117.8.0/23 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.184.0/23 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:cf:14:c5:91:27:b5:c5:dd:8e:35:2a:cf:e4:f0:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Sep 2 10:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9e63179960ec1c08fe14e0ceae668ec2d9d0db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:e1:69:9d:cc:ed:c1:55:b5:58:22:51:d2:
d6:ff:77:57:ff:cc:9a:2c:4b:25:62:b0:77:e7:87:
76:42:38:63:47:79:0b:da:1f:0c:87:b6:c6:a4:03:
f7:87:00:27:31:a2:72:96:b7:69:ba:16:80:78:82:
d3:30:1f:5a:2a:9b:d6:dc:c4:6d:f9:5a:28:95:0e:
56:58:0b:9c:aa:e5:d7:12:05:0d:64:1c:79:de:ba:
55:fb:98:b4:e1:2d:b5:12:4b:eb:a8:58:d8:5d:bd:
b2:ec:d0:d6:f7:31:29:79:0a:1a:ce:6d:00:83:cc:
bf:ec:b1:d4:6c:26:25:02:23:1f:98:70:61:fd:75:
10:ce:d3:b7:8a:83:9a:c1:f1:a3:99:96:e2:d1:e8:
b5:5e:a6:a3:e2:cc:fe:e4:f3:2c:f7:9e:34:4e:d4:
e4:3f:d0:87:9d:42:22:be:17:aa:be:59:f0:f0:26:
4d:2a:38:ca:a0:00:be:cd:d5:bd:df:06:cf:79:15:
d2:17:71:fd:40:31:b7:5c:6a:f6:6b:b7:d0:81:50:
96:6c:f3:dc:69:28:2e:14:11:e1:1f:1c:6f:ce:73:
f3:61:49:35:46:f9:59:9e:a6:e9:d2:36:83:3b:ca:
26:e1:6d:c4:a2:f7:c7:3d:bb:13:0b:eb:d3:94:3d:
ee:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E6:31:79:96:0E:C1:C0:8F:E1:4E:0C:EA:E6:68:EC:2D:9D:0D:B3
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yeYxeZYOwcCP4U4M6uZo7C2dDbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.108.0/24
89.116.125.0/24
89.116.132.0/24
89.116.135.0/24
89.116.150.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.184.0/23
89.116.210.0/23
89.116.218.0/24
89.117.8.0/23
89.117.28.0-89.117.33.255
89.117.72.0/21
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.109.0/24
89.117.116.0/23
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.190.0/24
89.117.215.0/24
89.117.228.0/23
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d4:44:1f:05:26:9e:2a:19:93:43:e9:e7:88:a9:f8:85:be:
48:86:8b:d6:d1:2c:09:7c:76:83:4b:b0:c8:44:36:36:26:68:
d5:07:82:ee:1a:41:82:78:af:c5:33:f0:11:ef:3f:40:81:9b:
c5:75:3b:68:9d:c5:55:83:e1:ee:d8:fa:27:9b:37:95:3d:35:
fd:64:f6:5f:3c:d7:08:96:8a:df:f2:d1:f2:6b:75:1b:a0:4d:
a3:ad:34:c6:23:7d:58:47:cc:dd:47:f3:14:5e:08:84:9d:0d:
35:c3:c8:b3:3a:76:38:a6:a4:0e:2a:db:96:97:ac:ea:e4:16:
bc:39:12:de:51:75:03:7c:09:01:8d:58:a4:8e:a4:f2:cb:0d:
86:04:e6:f6:90:d3:c0:cb:21:ca:6a:e3:a2:9c:b8:a5:51:3e:
90:81:c4:7e:36:f9:57:ae:a3:6f:50:ab:af:80:1e:97:04:bc:
ae:51:d3:cc:d8:1f:ce:e3:49:8b:8c:fc:71:82:8d:0d:e7:44:
58:7d:12:65:da:77:d8:d5:44:a4:06:6d:dd:01:98:09:34:28:
4e:8f:bd:9d:b7:c7:de:6b:66:2a:16:ca:a2:3d:7c:2e:18:6c:
05:83:c8:8a:ca:8a:c2:cf:e0:9c:4b:d4:6d:76:61:38:01:fa:
88:75:14:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org