Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: uFwLBxZUHX1eShAPRnBhayvIImMWmHdGoxz1g0wcIpE=
Subject key identifier: 8C:4B:11:4F:3E:70:91:6C:B5:59:8D:2A:5E:35:82:66:A9:76:7D:32
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 6BAE9132B59E13169A60A75DE81F4F6F1C2993D6
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Sun 13 Apr 2025 00:01:32 +0000
ROA not before: Sat 12 Apr 2025 23:56:32 +0000
ROA not after: Sun 12 Apr 2026 00:01:32 +0000
asID: 834
IP address blocks: 141.11.39.0/24 maxlen: 24
141.11.124.0/24 maxlen: 24
141.11.166.0/24 maxlen: 24
141.11.236.0/24 maxlen: 24
141.11.243.0/24 maxlen: 24
194.60.89.0/24 maxlen: 24
194.60.90.0/24 maxlen: 24
194.60.92.0/23 maxlen: 24
194.60.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ae:91:32:b5:9e:13:16:9a:60:a7:5d:e8:1f:4f:6f:1c:29:93:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 12 23:56:32 2025 GMT
Not After : Apr 12 00:01:32 2026 GMT
Subject: CN=8C4B114F3E70916CB5598D2A5E358266A9767D32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b6:b8:6f:b4:b3:b3:52:91:1a:a5:64:c5:60:
8b:75:0a:a1:53:ae:e7:f7:37:20:14:c9:ab:b0:33:
a3:b3:81:73:f5:0f:3d:42:7f:3a:86:d8:8e:c7:d3:
04:d2:a4:2d:65:a6:d1:86:f5:ea:f4:40:6e:de:a3:
d2:91:15:31:ca:cb:fd:4e:b0:71:a4:e4:b4:c5:d8:
dc:c4:77:da:cc:f5:49:ad:8e:0d:3e:e7:1a:c9:1f:
9c:fd:3c:ad:85:59:47:a9:ca:20:22:61:e0:e6:9f:
13:41:82:5d:9c:a9:ef:3b:40:d8:c9:f4:45:96:14:
aa:5b:a6:98:4c:2e:c3:cb:d4:4b:0c:78:52:95:07:
21:23:91:03:0e:d5:ae:fe:0d:75:59:70:e0:4c:05:
b7:97:2e:bf:22:46:00:3a:5e:7a:ce:43:60:1e:57:
8b:1a:3b:33:23:19:1e:9b:31:6d:3e:ed:3c:9f:3d:
c6:c4:37:af:cc:52:e4:b5:6f:ca:44:7b:47:b8:27:
f2:02:8e:9d:3f:31:95:50:04:e6:1a:f0:95:b4:36:
a0:66:69:e6:48:32:2c:37:06:2b:5d:a9:57:ed:13:
d1:7b:44:9f:b5:ca:07:51:7b:c7:6f:36:28:2a:19:
a2:ca:81:79:e5:16:92:3d:50:8a:ad:a9:b1:e9:91:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4B:11:4F:3E:70:91:6C:B5:59:8D:2A:5E:35:82:66:A9:76:7D:32
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.39.0/24
141.11.124.0/24
141.11.166.0/24
141.11.236.0/24
141.11.243.0/24
194.60.89.0-194.60.90.255
194.60.92.0/23
194.60.95.0/24
Signature Algorithm: sha256WithRSAEncryption
18:98:55:ec:17:ed:3b:0c:81:51:b6:61:0f:8e:b3:94:31:cc:
4a:18:5a:f2:a1:78:33:b5:0d:97:41:01:25:b3:b7:2f:3e:b2:
9d:7b:3c:76:b5:57:ff:b7:8f:46:44:e9:87:8d:e2:1a:b8:06:
ba:af:37:61:33:18:02:47:e5:0f:e1:95:87:ae:d8:25:32:c4:
1a:6d:46:ee:04:6a:97:80:44:35:2d:05:2a:86:eb:ee:1a:df:
d5:91:12:bc:b2:b6:f9:90:f8:45:6c:e3:67:6e:ad:fb:57:7e:
7e:94:c2:f6:a0:d1:62:25:0d:7e:f9:ab:a7:c3:2f:09:de:a1:
bb:07:13:42:52:23:58:e4:6b:b3:8c:80:8d:f8:4e:98:3a:b8:
82:3a:f8:98:65:73:12:36:f0:92:98:a2:bd:5f:4a:9d:40:9b:
40:bc:47:21:4e:96:2e:57:4e:35:f7:63:12:8a:2c:84:8d:e1:
80:51:8c:ac:e1:4e:da:2c:66:42:99:04:84:34:6b:e4:79:1a:
7c:6d:c7:03:35:cc:ba:70:bd:a8:f3:1e:56:e2:fd:19:64:fe:
04:41:e3:1b:14:12:35:29:f6:8a:fe:87:ca:b5:b0:7a:d3:07:
b2:d9:0e:41:4c:fe:5e:ce:26:75:fd:13:1f:ab:cd:99:28:89:
06:b9:68:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net