Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/B3qHDAKEnTx72W0-vNY8s6XpWIQ.roa
File: B3qHDAKEnTx72W0-vNY8s6XpWIQ.roa (raw, json)
Hash identifier: XSXqv30jdlYfLKqahJt+Ou/L439K2/dz6hFnF97LCRA=
Subject key identifier: 07:7A:87:0C:02:84:9D:3C:7B:D9:6D:3E:BC:D6:3C:B3:A5:E9:58:84
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01843C9C5A1DD4A08890AEE600E69BFDB262
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/B3qHDAKEnTx72W0-vNY8s6XpWIQ.roa
Signing time: Thu 03 Nov 2022 08:29:50 +0000
ROA not before: Thu 03 Nov 2022 08:29:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 89.117.72.0/21 maxlen: 21
89.117.84.0/23 maxlen: 24
89.117.88.0/22 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.28.0/22 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.190.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
89.117.222.0/24 maxlen: 24
86.38.186.0/23 maxlen: 24
86.38.184.0/23 maxlen: 24
89.117.132.0/22 maxlen: 24
89.117.129.0/24 maxlen: 24
89.117.142.0/23 maxlen: 24
84.46.234.0/23 maxlen: 24
89.116.108.0/24 maxlen: 24
86.38.246.0/23 maxlen: 24
89.116.132.0/24 maxlen: 24
89.116.135.0/24 maxlen: 24
89.116.150.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
89.117.245.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
89.116.218.0/24 maxlen: 24
89.116.252.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.161.0/24 maxlen: 24
89.116.166.0/24 maxlen: 24
89.116.172.0/23 maxlen: 24
89.116.177.0/24 maxlen: 24
89.116.175.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:9c:5a:1d:d4:a0:88:90:ae:e6:00:e6:9b:fd:b2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Nov 3 08:29:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=077a870c02849d3c7bd96d3ebcd63cb3a5e95884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:e1:03:b8:7f:8d:63:7c:99:ff:31:f4:fe:
ad:a5:ba:e3:18:b6:c0:08:48:29:ea:be:70:50:28:
91:08:d1:aa:4e:75:6c:cb:65:f6:3d:78:e9:26:e5:
4c:8d:23:1a:4c:2d:cf:40:b7:08:3b:f6:b7:b0:06:
7a:e4:7b:79:55:1c:5d:67:ae:3b:35:40:2b:9b:d7:
46:a6:74:32:ab:72:8d:d9:f6:f2:38:46:1f:20:17:
9a:98:1d:9b:cf:2b:48:8b:8f:f3:fe:de:00:fc:4b:
34:f0:7c:81:a4:36:1d:da:63:fd:9c:b5:8a:0c:00:
f3:e2:31:f3:35:e2:ba:c7:ac:cc:ff:63:ab:10:88:
5b:b7:64:cf:66:b0:b2:1d:63:bd:b4:ad:02:50:43:
f9:e0:e9:9f:7d:de:dd:14:e7:4c:70:4f:7d:99:ee:
79:b6:7b:fa:8e:00:e8:b6:9a:df:ce:5f:dd:8b:51:
1f:7c:7c:a0:7b:b0:a8:07:40:89:95:5e:43:f9:4b:
75:91:8c:7e:5f:e0:ab:a7:94:82:59:f6:bf:75:e8:
a1:0c:85:0c:8e:80:d4:05:16:97:3f:0b:e1:9a:00:
69:06:95:c1:27:e5:0c:d7:e0:11:ca:bf:f5:37:6d:
c0:1d:13:12:a0:14:5a:9c:33:c0:a7:f4:8c:b4:5b:
fd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7A:87:0C:02:84:9D:3C:7B:D9:6D:3E:BC:D6:3C:B3:A5:E9:58:84
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/B3qHDAKEnTx72W0-vNY8s6XpWIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.234.0/23
86.38.178.0/23
86.38.184.0/22
86.38.202.0/23
86.38.246.0/23
89.116.108.0/24
89.116.132.0/24
89.116.135.0/24
89.116.150.0/24
89.116.161.0/24
89.116.163.0/24
89.116.166.0/24
89.116.172.0/23
89.116.175.0/24
89.116.177.0/24
89.116.193.0/24
89.116.210.0/23
89.116.218.0/24
89.116.252.0/24
89.117.28.0-89.117.33.255
89.117.72.0/21
89.117.84.0/23
89.117.88.0/22
89.117.94.0/23
89.117.109.0/24
89.117.116.0/23
89.117.129.0/24
89.117.132.0/22
89.117.142.0/23
89.117.190.0/24
89.117.222.0/24
89.117.245.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:d4:10:66:7c:31:ae:fb:29:55:d3:15:72:44:36:86:6b:8a:
0b:f6:18:57:a2:7e:58:63:07:11:58:d8:d4:a4:8b:cd:dd:dd:
1f:f4:a8:64:b5:7f:f4:25:77:8d:4a:5c:b2:5a:18:59:39:37:
9d:10:be:84:23:24:de:a4:ab:d9:f3:b7:86:56:d3:74:78:3d:
40:a9:3f:e3:30:66:7c:68:b6:56:fd:e0:46:36:33:54:73:4b:
64:90:d9:ba:45:9f:aa:7b:8e:51:64:28:7e:81:56:0e:d6:e7:
b7:f5:a4:23:69:28:b0:9f:46:30:d7:6f:a1:90:88:29:2c:fd:
cf:0d:f6:a8:62:d7:9d:80:01:02:66:e9:82:12:b6:bc:0a:fa:
77:6a:b0:fc:66:27:e6:19:73:d3:b8:3b:ba:96:9b:d6:52:5d:
ea:e5:40:49:37:01:60:98:35:2f:0a:48:4f:86:85:63:4d:2d:
16:81:b5:a8:c4:7b:d4:44:da:90:d4:8f:9f:9b:54:45:b2:52:
70:e2:0b:9a:2f:23:60:70:d4:5c:5d:51:5a:8f:fa:4f:75:c8:
16:dd:57:94:bd:4b:76:2d:0f:a0:37:63:ba:0c:b7:ca:50:86:
f6:ca:97:45:bd:c0:b2:4d:bb:b8:31:c2:6b:9d:11:25:a7:a3:
50:98:fd:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org