Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
File: AS216050.roa (raw, json)
Hash identifier: y1SAA9NfzHCpqeRAvNqYrAhRbQcmSCvjsQ/EHn3ZHCE=
Subject key identifier: F2:BC:16:EF:B4:0C:EE:AA:E3:0D:92:E6:0B:07:29:BC:54:23:95:DB
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 60390A272EE8020290A2B04576D3FBF5B9629C94
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
Signing time: Tue 08 Apr 2025 11:04:53 +0000
ROA not before: Tue 08 Apr 2025 10:59:53 +0000
ROA not after: Tue 07 Apr 2026 11:04:53 +0000
asID: 216050
IP address blocks: 46.202.204.0/24 maxlen: 24
46.202.205.0/24 maxlen: 24
46.203.165.0/24 maxlen: 24
46.203.166.0/24 maxlen: 24
46.203.167.0/24 maxlen: 24
46.203.191.0/24 maxlen: 24
46.203.192.0/24 maxlen: 24
46.203.193.0/24 maxlen: 24
46.203.194.0/24 maxlen: 24
46.203.211.0/24 maxlen: 24
46.203.213.0/24 maxlen: 24
46.203.240.0/24 maxlen: 24
91.124.39.0/24 maxlen: 24
91.124.48.0/24 maxlen: 24
91.124.50.0/24 maxlen: 24
91.124.51.0/24 maxlen: 24
92.112.131.0/24 maxlen: 24
92.113.41.0/24 maxlen: 24
92.113.55.0/24 maxlen: 24
92.113.65.0/24 maxlen: 24
92.113.68.0/24 maxlen: 24
92.113.69.0/24 maxlen: 24
92.113.75.0/24 maxlen: 24
92.113.76.0/24 maxlen: 24
92.113.78.0/24 maxlen: 24
92.113.79.0/24 maxlen: 24
92.113.81.0/24 maxlen: 24
92.113.82.0/24 maxlen: 24
92.113.84.0/24 maxlen: 24
92.113.85.0/24 maxlen: 24
92.113.87.0/24 maxlen: 24
92.113.88.0/24 maxlen: 24
92.113.90.0/24 maxlen: 24
92.113.166.0/24 maxlen: 24
92.113.167.0/24 maxlen: 24
95.135.51.0/24 maxlen: 24
95.135.73.0/24 maxlen: 24
95.135.111.0/24 maxlen: 24
95.135.114.0/24 maxlen: 24
95.135.115.0/24 maxlen: 24
95.135.128.0/24 maxlen: 24
95.135.129.0/24 maxlen: 24
95.135.130.0/24 maxlen: 24
95.135.131.0/24 maxlen: 24
95.135.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:39:0a:27:2e:e8:02:02:90:a2:b0:45:76:d3:fb:f5:b9:62:9c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 8 10:59:53 2025 GMT
Not After : Apr 7 11:04:53 2026 GMT
Subject: CN=F2BC16EFB40CEEAAE30D92E60B0729BC542395DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:9a:83:8b:59:1d:c4:26:f4:2f:c1:ac:02:
bc:35:0d:fa:c4:09:0f:74:82:4b:34:a0:e1:cf:c7:
95:64:d6:39:ce:0d:8a:6b:ca:5b:1f:3f:41:70:27:
ee:20:b1:d3:fd:71:cf:f8:1e:10:f3:a4:02:e2:d9:
8b:ef:b9:f3:67:5d:93:35:59:64:e3:c2:8d:4c:a1:
5e:36:f2:ab:77:dc:bc:1a:08:f7:fd:cc:40:c5:1e:
c6:b6:1b:28:41:10:24:91:60:ad:7f:f2:c7:0d:97:
27:3d:3b:48:40:a5:fb:e2:37:54:b4:72:a1:a3:85:
cf:3e:b3:f6:ec:97:d5:ae:1e:da:d0:eb:18:39:28:
b2:05:50:2f:41:bd:59:59:d0:f2:12:9b:ad:7c:00:
5b:4f:d3:2a:82:60:e6:7c:64:64:b3:84:58:a2:68:
7d:a5:4e:43:82:be:fd:d6:c3:d5:57:e0:31:70:51:
69:20:61:2e:4a:de:fd:03:e7:15:45:de:e9:e5:fc:
2b:2f:f8:8a:3e:c5:d8:42:8c:37:bf:e0:16:f1:ea:
25:86:1f:3e:c5:60:1a:d2:d7:e0:de:80:4d:ab:26:
d1:15:2e:ed:78:b1:bb:0c:9c:cc:99:08:13:26:01:
0e:c5:59:a3:7c:9f:e1:72:73:82:01:79:e2:5e:f6:
65:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BC:16:EF:B4:0C:EE:AA:E3:0D:92:E6:0B:07:29:BC:54:23:95:DB
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.204.0/23
46.203.165.0-46.203.167.255
46.203.191.0-46.203.194.255
46.203.211.0/24
46.203.213.0/24
46.203.240.0/24
91.124.39.0/24
91.124.48.0/24
91.124.50.0/23
92.112.131.0/24
92.113.41.0/24
92.113.55.0/24
92.113.65.0/24
92.113.68.0/23
92.113.75.0-92.113.76.255
92.113.78.0/23
92.113.81.0-92.113.82.255
92.113.84.0/23
92.113.87.0-92.113.88.255
92.113.90.0/24
92.113.166.0/23
95.135.51.0/24
95.135.73.0/24
95.135.111.0/24
95.135.114.0/23
95.135.128.0/22
95.135.235.0/24
Signature Algorithm: sha256WithRSAEncryption
71:76:ab:c4:a7:0a:59:06:fb:71:eb:93:6b:e8:a3:cc:96:cc:
56:5a:40:8e:97:21:eb:9d:5c:3c:78:dc:e3:ef:14:22:b0:44:
ad:ef:8c:f5:48:5b:bf:22:ec:14:23:08:79:14:c6:4b:7c:cc:
c9:00:18:ae:48:d8:b2:44:7c:08:b4:32:be:dc:76:3d:be:c5:
7e:35:cc:c9:f3:36:50:88:5f:09:18:03:db:1f:5d:fd:09:4a:
0b:43:e0:14:f4:28:84:6d:6f:5a:64:df:6d:9f:2c:dd:e5:7d:
16:e0:2d:3c:43:1f:aa:33:ee:47:fe:85:7b:5c:ef:87:93:ae:
49:15:df:1c:3c:01:cb:1d:ce:e1:5a:b1:41:9b:10:51:f2:b5:
6c:ae:b4:31:e9:7b:58:fc:4d:be:22:0d:84:19:0d:3d:eb:e0:
83:ac:68:22:c6:c7:ab:14:dc:d9:73:cd:bf:b4:22:9d:9e:3a:
73:68:d7:dd:20:20:28:a4:5b:0d:6e:7f:4a:63:71:d7:46:ca:
20:6e:12:25:91:87:15:cd:2a:29:03:57:d8:76:56:0b:7a:d9:
57:94:41:30:a2:b6:7b:2e:5c:11:b0:70:4f:c7:1b:b5:f8:69:
a4:b9:21:5f:a0:e1:0f:11:c4:6c:95:f0:db:86:d9:94:0f:24:
22:da:cf:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:30 2025 by rpki-client on console.sobornost.net