Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa
File: AS3356.roa (raw, json)
Hash identifier: THPNBOo+YR5ydUV5PgamP795Njw7O+rf3LIoZDA0oeQ=
Subject key identifier: 17:29:78:B9:4D:4A:8E:CB:5C:D7:64:31:61:3C:99:ED:9F:2B:1D:A9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4EABEF5F5898D102D28F27A8DB6A1AE51E1780DE
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa
Signing time: Fri 28 Mar 2025 12:50:19 +0000
ROA not before: Fri 28 Mar 2025 12:45:19 +0000
ROA not after: Fri 27 Mar 2026 12:50:19 +0000
asID: 3356
IP address blocks: 82.21.78.0/24 maxlen: 24
82.21.79.0/24 maxlen: 24
82.22.64.0/24 maxlen: 24
82.22.66.0/24 maxlen: 24
82.22.67.0/24 maxlen: 24
82.22.68.0/24 maxlen: 24
82.22.69.0/24 maxlen: 24
82.22.70.0/24 maxlen: 24
82.22.71.0/24 maxlen: 24
82.22.72.0/24 maxlen: 24
82.22.73.0/24 maxlen: 24
82.22.74.0/24 maxlen: 24
82.22.75.0/24 maxlen: 24
82.22.89.0/24 maxlen: 24
82.22.93.0/24 maxlen: 24
82.22.142.0/24 maxlen: 24
82.22.164.0/24 maxlen: 24
82.22.188.0/24 maxlen: 24
82.22.189.0/24 maxlen: 24
82.22.202.0/24 maxlen: 24
82.22.203.0/24 maxlen: 24
82.23.19.0/24 maxlen: 24
82.23.20.0/24 maxlen: 24
82.23.23.0/24 maxlen: 24
82.23.24.0/24 maxlen: 24
82.23.59.0/24 maxlen: 24
82.23.60.0/24 maxlen: 24
82.23.139.0/24 maxlen: 24
82.23.164.0/24 maxlen: 24
82.23.169.0/24 maxlen: 24
82.23.175.0/24 maxlen: 24
82.23.185.0/24 maxlen: 24
82.23.196.0/24 maxlen: 24
82.24.5.0/24 maxlen: 24
82.24.6.0/24 maxlen: 24
82.24.7.0/24 maxlen: 24
82.24.9.0/24 maxlen: 24
82.24.12.0/24 maxlen: 24
82.24.13.0/24 maxlen: 24
82.24.15.0/24 maxlen: 24
82.24.18.0/24 maxlen: 24
82.24.43.0/24 maxlen: 24
82.24.54.0/24 maxlen: 24
82.24.65.0/24 maxlen: 24
82.24.66.0/24 maxlen: 24
82.24.67.0/24 maxlen: 24
82.24.73.0/24 maxlen: 24
82.24.74.0/24 maxlen: 24
82.24.75.0/24 maxlen: 24
82.24.80.0/24 maxlen: 24
82.24.87.0/24 maxlen: 24
82.24.89.0/24 maxlen: 24
82.24.104.0/24 maxlen: 24
82.24.108.0/24 maxlen: 24
82.24.115.0/24 maxlen: 24
82.24.124.0/24 maxlen: 24
82.24.147.0/24 maxlen: 24
82.24.173.0/24 maxlen: 24
82.24.180.0/24 maxlen: 24
82.24.202.0/24 maxlen: 24
82.25.136.0/24 maxlen: 24
82.25.160.0/24 maxlen: 24
82.25.174.0/24 maxlen: 24
82.25.185.0/24 maxlen: 24
82.25.186.0/24 maxlen: 24
82.26.71.0/24 maxlen: 24
82.26.86.0/24 maxlen: 24
82.26.95.0/24 maxlen: 24
82.26.129.0/24 maxlen: 24
82.26.146.0/24 maxlen: 24
82.27.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ab:ef:5f:58:98:d1:02:d2:8f:27:a8:db:6a:1a:e5:1e:17:80:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 28 12:45:19 2025 GMT
Not After : Mar 27 12:50:19 2026 GMT
Subject: CN=172978B94D4A8ECB5CD76431613C99ED9F2B1DA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:29:98:85:17:be:29:a8:7d:2e:fa:b6:e2:9c:
8e:5b:85:fa:8b:a4:50:b3:43:67:33:fa:d1:cc:c5:
e9:83:17:0d:2f:27:fb:16:b3:93:4c:b5:04:c5:4e:
22:aa:65:c1:70:f2:86:2e:98:51:9a:ba:47:15:96:
24:8f:a4:dd:09:76:bd:4d:93:39:64:37:c2:1f:07:
81:94:f2:43:4f:a9:4e:a9:ae:63:04:cf:90:77:0f:
26:ce:42:0c:57:42:bd:68:70:16:f7:fa:82:16:ea:
2a:d1:41:08:bd:17:f9:5c:c2:4e:bf:81:60:56:68:
c1:9e:0b:ed:3c:e5:e3:94:ab:4a:92:ee:84:67:9d:
cc:2c:bb:e5:31:ce:6d:1c:b2:8c:f1:41:ea:ff:9c:
02:e3:58:b4:d9:a3:ee:cd:53:0e:e8:9c:54:93:3d:
01:19:06:10:ba:f3:e2:88:04:eb:8a:58:0a:6c:fd:
04:80:1b:77:b4:dd:8f:18:f0:bb:a2:22:e8:d1:d4:
db:6d:d6:a5:86:94:a2:c0:a3:af:8f:f8:77:f3:31:
06:e4:ea:ec:ef:1d:01:37:b2:1c:7b:8b:e7:71:29:
48:2e:86:44:31:71:95:50:fe:1b:e3:59:40:41:c9:
10:c4:15:73:ac:83:ce:01:98:1e:8e:95:64:bc:1a:
e1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:29:78:B9:4D:4A:8E:CB:5C:D7:64:31:61:3C:99:ED:9F:2B:1D:A9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS3356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.78.0/23
82.22.64.0/24
82.22.66.0-82.22.75.255
82.22.89.0/24
82.22.93.0/24
82.22.142.0/24
82.22.164.0/24
82.22.188.0/23
82.22.202.0/23
82.23.19.0-82.23.20.255
82.23.23.0-82.23.24.255
82.23.59.0-82.23.60.255
82.23.139.0/24
82.23.164.0/24
82.23.169.0/24
82.23.175.0/24
82.23.185.0/24
82.23.196.0/24
82.24.5.0-82.24.7.255
82.24.9.0/24
82.24.12.0/23
82.24.15.0/24
82.24.18.0/24
82.24.43.0/24
82.24.54.0/24
82.24.65.0-82.24.67.255
82.24.73.0-82.24.75.255
82.24.80.0/24
82.24.87.0/24
82.24.89.0/24
82.24.104.0/24
82.24.108.0/24
82.24.115.0/24
82.24.124.0/24
82.24.147.0/24
82.24.173.0/24
82.24.180.0/24
82.24.202.0/24
82.25.136.0/24
82.25.160.0/24
82.25.174.0/24
82.25.185.0-82.25.186.255
82.26.71.0/24
82.26.86.0/24
82.26.95.0/24
82.26.129.0/24
82.26.146.0/24
82.27.111.0/24
Signature Algorithm: sha256WithRSAEncryption
63:1b:18:d4:48:0f:52:09:2b:98:4f:a8:90:b9:59:1f:4a:ae:
e4:1d:44:39:6e:b0:12:bf:92:18:38:9f:f5:e6:a2:76:92:29:
d9:e1:e4:86:ba:a1:23:51:af:75:84:fe:90:e2:a7:6e:69:b6:
a4:89:67:a7:b2:42:25:09:f7:c5:65:7b:35:0e:86:2c:30:35:
81:b3:2b:bc:f5:5c:f3:b3:b3:67:6e:e0:ee:4f:16:a0:aa:1a:
a1:6f:9e:f7:26:d2:d7:49:cd:80:21:09:ef:c7:00:bf:a5:04:
c6:29:7d:65:5b:26:75:94:b2:49:4c:ab:20:f8:0f:e8:2b:66:
43:27:88:29:fe:da:2b:20:94:2e:82:50:35:ec:d6:56:98:ff:
0c:de:fe:d1:d1:38:3e:f9:45:c0:31:55:ff:89:83:c7:fe:d1:
50:89:0a:aa:7f:be:48:8d:a8:0e:4c:48:a6:3f:ad:6d:41:81:
55:0d:8f:00:c6:32:38:ff:30:b2:b8:1b:40:15:82:9f:24:2a:
6e:9b:d0:14:f7:bc:9f:6c:9e:f4:a7:cd:54:0c:74:3f:23:1f:
e1:7a:5a:10:bb:73:cc:7f:8c:57:42:4e:0e:db:1a:1a:d8:33:
c9:75:a2:9e:4f:e5:d1:72:86:99:a8:37:c8:6d:ed:ec:11:3b:
98:9c:af:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net