Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yxfkF6g5NJGVyNw2Dz3QDYgwrLI.roa
File: yxfkF6g5NJGVyNw2Dz3QDYgwrLI.roa (raw, json)
Hash identifier: kwC9w+7CQbFnq6msBhWrgdOsbWX3jMy6Mky+h2RVg1k=
Subject key identifier: CB:17:E4:17:A8:39:34:91:95:C8:DC:36:0F:3D:D0:0D:88:30:AC:B2
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AE83B83
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yxfkF6g5NJGVyNw2Dz3QDYgwrLI.roa
Signing time: Wed 18 May 2022 08:20:17 +0000
ROA not before: Wed 18 May 2022 08:20:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.117.109.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
86.38.4.0/23 maxlen: 24
89.117.48.0/20 maxlen: 24
89.117.64.0/22 maxlen: 24
86.38.180.0/23 maxlen: 24
89.117.120.0/22 maxlen: 24
84.46.200.0/24 maxlen: 24
89.117.160.0/22 maxlen: 24
86.38.246.0/23 maxlen: 24
86.38.242.0/23 maxlen: 24
86.38.241.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.158.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
86.38.189.0/24 maxlen: 24
89.116.58.0/23 maxlen: 24
86.38.200.0/24 maxlen: 24
89.116.68.0/23 maxlen: 24
86.38.214.0/24 maxlen: 24
86.38.220.0/23 maxlen: 24
86.38.225.0/24 maxlen: 24
86.38.226.0/24 maxlen: 24
89.116.96.0/24 maxlen: 24
86.38.238.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.242.0/23 maxlen: 24
89.116.246.0/23 maxlen: 24
89.117.11.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182991747 (0xae83b83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 18 08:20:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb17e417a839349195c8dc360f3dd00d8830acb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0c:c7:0b:16:f4:aa:99:cb:c4:46:e3:43:17:
4d:1d:ab:ad:fb:2c:53:b0:6b:0a:2c:a9:64:6e:bc:
df:ad:d0:6a:4c:34:7f:34:91:ee:25:75:e7:4b:15:
f3:7d:a0:8e:8b:00:da:4d:46:2c:48:b1:62:e1:09:
a0:9d:6e:30:5b:a1:c3:06:d8:ab:ac:4d:8d:b9:d2:
46:39:9c:1a:dc:bb:11:bb:98:55:b0:f4:e5:5e:bf:
88:e5:e2:f7:39:44:d4:f0:cb:b8:1c:c6:50:8a:bd:
18:80:73:cb:98:77:69:1a:7f:c9:af:c7:c7:15:7b:
96:33:09:83:c9:8a:49:d6:d5:6a:14:5e:02:bc:1f:
f0:ed:3d:b9:77:4e:d2:1d:da:13:ba:13:3c:1b:e2:
cc:34:7b:e6:01:0b:ff:c5:70:25:2b:64:06:bb:40:
b9:cd:9d:66:f3:77:e5:be:1a:1e:1d:72:69:4b:fd:
70:5b:25:c8:aa:17:97:c6:fc:6b:c6:aa:c2:95:29:
86:89:e3:05:20:fb:73:58:3c:fe:c1:63:50:c0:6d:
51:21:c8:60:18:e6:47:4e:4e:6e:22:a9:10:fa:b8:
e3:92:fc:cb:64:78:f8:7a:69:38:35:0f:62:db:36:
7c:40:e1:02:45:13:79:2b:18:c6:56:5f:d5:b8:83:
35:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:17:E4:17:A8:39:34:91:95:C8:DC:36:0F:3D:D0:0D:88:30:AC:B2
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/yxfkF6g5NJGVyNw2Dz3QDYgwrLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.183.0/24
84.46.200.0/24
86.38.4.0/23
86.38.180.0/23
86.38.189.0/24
86.38.200.0/24
86.38.214.0/24
86.38.220.0/23
86.38.225.0-86.38.226.255
86.38.238.0/24
86.38.241.0-86.38.243.255
86.38.246.0/23
89.116.56.0/24
89.116.58.0/23
89.116.68.0/23
89.116.96.0/24
89.116.135.0/24
89.116.156.0/24
89.116.158.0/24
89.116.175.0/24
89.116.177.0/24
89.116.218.0/24
89.116.242.0/23
89.116.246.0/23
89.117.11.0/24
89.117.48.0-89.117.67.255
89.117.109.0/24
89.117.120.0/22
89.117.160.0/22
Signature Algorithm: sha256WithRSAEncryption
40:3f:59:9e:35:3e:18:52:d1:96:c1:e6:b1:e7:57:82:2c:6b:
2a:57:be:16:7d:9f:51:e2:19:9e:ec:a7:22:26:87:48:b8:49:
7f:10:60:6b:fc:e6:6c:b8:a6:ed:ab:a1:2c:69:d3:f7:88:f9:
e6:61:39:47:bc:91:64:23:82:3e:9c:3f:58:9f:dd:a3:de:cd:
52:67:aa:c5:7f:75:d2:89:10:cc:14:e2:88:1e:5a:5b:a3:5c:
5c:73:29:46:94:0a:1b:dd:50:96:83:97:31:e7:4a:e2:a8:9c:
1c:45:0a:d5:61:37:3b:12:59:68:b1:99:25:31:23:e4:24:a9:
56:bd:6b:f6:20:aa:c1:7a:8c:5b:b3:3c:34:e9:bd:f3:ab:7f:
8b:7d:bd:d9:cd:c9:c4:75:cd:74:31:35:f0:2c:c2:65:1a:fb:
f5:5f:bd:18:ef:7a:f0:22:94:47:e9:54:7a:81:b8:14:43:1b:
38:fa:64:d9:e4:4a:e3:08:17:78:bd:73:4b:97:0a:6d:25:08:
bc:37:a0:f3:0e:a0:31:88:a7:c2:4f:3f:06:b5:a1:34:bc:e0:
80:13:a6:47:0f:3b:04:cd:af:ce:86:3b:73:3f:bf:44:f8:eb:
95:cc:b4:78:65:85:27:a4:4d:db:b5:3f:8e:43:50:c9:17:a4:
4a:c4:b0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org