Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: 9r5+Fyd4wEw3kTn0XIcfFrr0+ZBV89qFc6ZUG7MCAFc=
Subject key identifier: 16:2F:31:A5:9A:76:53:02:EA:06:B1:2A:4D:0E:00:E3:D0:31:0D:51
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 615B40E28D8AF790699F042A67CD924E48D43A65
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
Signing time: Mon 17 Feb 2025 10:18:32 +0000
ROA not before: Mon 17 Feb 2025 10:13:32 +0000
ROA not after: Mon 16 Feb 2026 10:18:32 +0000
asID: 174
IP address blocks: 82.27.128.0/24 maxlen: 24
82.27.129.0/24 maxlen: 24
82.27.130.0/24 maxlen: 24
82.27.131.0/24 maxlen: 24
82.27.132.0/24 maxlen: 24
82.27.133.0/24 maxlen: 24
82.27.134.0/24 maxlen: 24
82.27.135.0/24 maxlen: 24
82.29.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:5b:40:e2:8d:8a:f7:90:69:9f:04:2a:67:cd:92:4e:48:d4:3a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 17 10:13:32 2025 GMT
Not After : Feb 16 10:18:32 2026 GMT
Subject: CN=162F31A59A765302EA06B12A4D0E00E3D0310D51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:43:b2:25:01:a4:58:83:27:4b:9c:1a:e4:b7:
e5:b1:5a:cc:c9:29:f0:b7:86:59:59:e8:0a:6a:10:
94:25:dd:3b:06:68:33:9c:5a:d1:68:f2:75:d9:42:
60:9a:8b:a5:73:b0:60:6d:41:24:d8:2c:e4:85:ff:
b8:1d:c6:80:fc:ac:60:97:44:93:e8:a6:8d:62:d6:
ae:b7:6c:8c:32:05:18:67:39:cd:e2:f3:2d:9a:25:
06:1c:2b:92:35:17:72:c7:2f:91:ed:25:b3:00:84:
f9:c6:7f:84:e9:e2:ca:86:9c:3a:ec:ba:60:0f:06:
54:06:2f:b0:6c:9b:b9:c0:b6:f4:73:04:d0:f3:3e:
a5:66:f5:cb:53:62:07:dc:f2:6b:89:77:93:2d:b3:
e3:98:83:cf:f4:76:1b:97:f5:13:b2:ad:2b:bb:4e:
46:8c:22:ba:4c:e6:82:67:cf:a3:3c:6e:67:56:ee:
8b:ab:70:f9:14:79:f4:74:73:f9:29:70:72:9c:fc:
24:de:a5:30:ea:4c:04:b2:ff:57:be:3a:28:0f:76:
33:33:26:8d:08:5d:ee:f1:4d:33:45:69:58:a8:d7:
57:c9:c1:9e:95:6c:76:f7:fb:9b:5a:62:19:30:1c:
d7:c2:88:45:16:0e:11:ee:14:70:68:e9:53:5c:ee:
97:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2F:31:A5:9A:76:53:02:EA:06:B1:2A:4D:0E:00:E3:D0:31:0D:51
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.27.128.0/21
82.29.40.0/24
Signature Algorithm: sha256WithRSAEncryption
43:2e:38:6b:9e:08:3a:75:d5:bb:7a:56:02:06:44:f6:f1:48:
15:41:68:ec:70:ee:1e:ce:00:66:b2:54:10:17:ec:6c:63:5f:
fc:64:ff:7f:f2:8e:84:f9:52:bf:0b:e6:07:7f:52:01:ba:97:
93:40:0c:ae:a3:c5:b9:b9:d4:c5:0e:11:c0:51:76:2b:f8:22:
55:8e:da:4e:1d:ca:ad:12:59:c2:bd:18:73:b4:41:55:22:6a:
51:9d:cd:2d:71:ed:b5:0b:60:fb:f8:bd:9b:70:27:47:22:0a:
93:83:24:f4:00:01:1e:46:91:c6:dd:7e:d0:8d:47:39:eb:1e:
98:05:c5:4c:6b:fe:3a:84:c4:d3:3b:d4:17:f7:59:da:76:cc:
da:34:a6:2c:02:83:82:af:67:ab:eb:46:d6:f7:bd:08:04:8f:
d7:4f:32:33:ff:36:cb:b8:10:c0:60:74:d1:e2:1f:5a:95:05:
7a:44:78:df:bd:60:46:d7:87:24:e4:8f:35:28:21:eb:87:fd:
80:1d:fb:8c:e6:48:e4:60:54:12:ae:bf:86:17:63:aa:e9:35:
41:df:b2:e2:4a:5b:ed:1a:68:92:99:76:b5:d8:ec:06:c5:a1:
56:e6:aa:3b:cc:1c:4e:b5:ba:f5:a3:40:17:40:92:c2:cd:35:
27:d2:b2:50
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIUYVtA4o2K95BpnwQqZ82STkjUOmUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNTAyMTcxMDEzMzJaFw0yNjAyMTYxMDE4MzJaMDMxMTAvBgNV
BAMTKDE2MkYzMUE1OUE3NjUzMDJFQTA2QjEyQTREMEUwMEUzRDAzMTBENTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoQ7IlAaRYgydLnBrkt+WxWszJ
KfC3hllZ6ApqEJQl3TsGaDOcWtFo8nXZQmCai6VzsGBtQSTYLOSF/7gdxoD8rGCX
RJPopo1i1q63bIwyBRhnOc3i8y2aJQYcK5I1F3LHL5HtJbMAhPnGf4Tp4sqGnDrs
umAPBlQGL7Bsm7nAtvRzBNDzPqVm9ctTYgfc8muJd5Mts+OYg8/0dhuX9ROyrSu7
TkaMIrpM5oJnz6M8bmdW7ourcPkUefR0c/kpcHKc/CTepTDqTASy/1e+OigPdjMz
Jo0IXe7xTTNFaVio11fJwZ6VbHb3+5taYhkwHNfCiEUWDhHuFHBo6VNc7pdLAgMB
AAGjggINMIICCTAdBgNVHQ4EFgQUFi8xpZp2UwLqBrEqTQ4A49AxDVEwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTc0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDUhuAAwQA
Uh0oMA0GCSqGSIb3DQEBCwUAA4IBAQBDLjhrngg6ddW7elYCBkT28UgVQWjscO4e
zgBmslQQF+xsY1/8ZP9/8o6E+VK/C+YHf1IBupeTQAyuo8W5udTFDhHAUXYr+CJV
jtpOHcqtElnCvRhztEFVImpRnc0tce21C2D7+L2bcCdHIgqTgyT0AAEeRpHG3X7Q
jUc56x6YBcVMa/46hMTTO9QX91nadszaNKYsAoOCr2er60bW970IBI/XTzIz/zbL
uBDAYHTR4h9alQV6RHjfvWBG14ck5I81KCHrh/2AHfuM5kjkYFQSrr+GF2Oq6TVB
37LiSlvtGmiSmXa12OwGxaFW5qo7zBxOtbr1o0AXQJLCzTUn0rJQ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net