Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: ln3urBwQxS3WvBppuHUMdFB7SEJv0kWiWSWO9AtBhek=
Subject key identifier: CB:BD:EA:B0:F3:27:E7:24:4C:B4:A5:AC:30:72:FA:E5:62:1E:76:93
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6D297760B04E49C30B35E686619F135D72F26393
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
Signing time: Wed 12 Feb 2025 00:01:59 +0000
ROA not before: Tue 11 Feb 2025 23:56:59 +0000
ROA not after: Wed 11 Feb 2026 00:01:59 +0000
asID: 214025
IP address blocks: 46.203.98.0/24 maxlen: 24
46.203.203.0/24 maxlen: 24
92.113.106.0/23 maxlen: 24
92.113.112.0/23 maxlen: 24
92.113.124.0/23 maxlen: 24
92.113.136.0/23 maxlen: 24
92.113.142.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:29:77:60:b0:4e:49:c3:0b:35:e6:86:61:9f:13:5d:72:f2:63:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 11 23:56:59 2025 GMT
Not After : Feb 11 00:01:59 2026 GMT
Subject: CN=CBBDEAB0F327E7244CB4A5AC3072FAE5621E7693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:a7:3b:37:5c:21:d6:c4:e2:e9:be:50:9b:
fb:62:23:96:f9:3f:81:6a:fd:8a:c3:d2:cd:5c:2d:
5c:cc:80:0a:8a:f0:e7:cf:e7:a8:01:d2:7d:7d:cc:
da:c2:9c:29:88:31:23:91:68:42:38:c1:c7:b6:84:
a8:f0:0b:35:c3:f3:94:9a:c5:fc:eb:22:32:af:ed:
98:20:92:f6:5c:5e:c2:05:6b:10:78:5d:12:7a:33:
b3:e2:54:4d:a5:b9:e4:97:72:2d:aa:23:39:3b:bd:
4d:60:06:2a:21:5e:4d:4b:9a:6d:ca:7f:9e:af:72:
e2:e1:a5:70:15:83:c1:8e:25:a7:c2:59:52:4a:52:
53:57:18:65:cc:c9:c9:51:98:a3:30:77:dc:4a:cb:
1a:49:5b:36:34:72:9e:b5:9c:0e:79:60:f4:47:8d:
58:0e:73:16:54:37:3b:71:51:dc:fc:cd:4b:0c:27:
4d:30:6c:8d:ee:2a:35:ed:1d:b0:fc:03:fe:0b:e2:
06:e6:4c:51:99:f6:ea:52:db:8e:64:49:c3:91:68:
bc:1f:36:78:04:b5:ae:08:78:42:fb:86:35:55:fc:
6e:47:13:56:0c:46:b4:0f:c4:62:30:f7:d3:76:1c:
8d:e7:cc:73:c8:4c:14:85:fc:45:35:49:66:08:e1:
29:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BD:EA:B0:F3:27:E7:24:4C:B4:A5:AC:30:72:FA:E5:62:1E:76:93
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.98.0/24
46.203.203.0/24
92.113.106.0/23
92.113.112.0/23
92.113.124.0/23
92.113.136.0/23
92.113.142.0/23
Signature Algorithm: sha256WithRSAEncryption
29:d7:e4:f6:9a:7f:59:08:d6:31:7e:16:f5:83:e7:d6:9a:46:
8e:73:87:c2:aa:9c:2c:43:1c:2d:c2:4a:9a:53:e7:6b:4e:6e:
4c:90:16:f7:39:4b:66:bd:aa:9b:ab:8c:78:80:0b:db:ce:79:
ea:07:96:27:a7:96:33:61:a5:7c:f2:32:38:54:df:0c:08:a0:
bb:5c:bd:6e:d0:08:5d:ac:d2:8e:2f:a8:72:17:cf:3b:ee:ed:
b1:c9:3f:f0:e0:f8:05:af:b7:52:53:24:50:0b:5b:b1:e6:f4:
2d:85:84:96:4e:41:17:9e:01:56:42:76:22:70:fd:78:98:03:
1e:08:1c:a5:b8:14:bf:98:84:b1:70:99:32:26:05:5a:6a:4a:
90:0d:09:2c:fb:81:89:70:b0:01:99:8a:05:c5:9d:ed:25:73:
d4:bb:e5:d6:b6:5d:37:cf:86:ab:a4:a9:a5:32:83:a1:65:9d:
c9:e2:f9:39:8f:78:9a:fe:62:2a:f5:cf:75:22:de:67:80:dd:
4f:af:e5:5c:66:c7:d3:35:3c:49:dc:f4:73:42:2d:fe:fd:d5:
97:86:7b:9c:3f:6b:37:57:d7:a8:07:e4:5a:c4:88:67:b1:39:
6a:12:48:da:c8:7b:eb:9f:e1:f0:ba:c1:97:95:4f:30:b6:bd:
46:3f:8f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net