Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
File: AS29802.roa (raw, json)
Hash identifier: UWz2NLE7LqRTXozEasxCtWKui/rOKt/6VFCwGGh1UJE=
Subject key identifier: 16:89:10:95:43:B9:17:A9:1A:98:38:97:E2:04:D2:16:66:89:1C:F6
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5AC3FB35182A37BB485B88A9BF5747B59A8A4D35
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
Signing time: Sat 12 Apr 2025 09:10:33 +0000
ROA not before: Sat 12 Apr 2025 09:05:33 +0000
ROA not after: Sat 11 Apr 2026 09:10:33 +0000
asID: 29802
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
46.203.198.0/24 maxlen: 24
46.203.201.0/24 maxlen: 24
46.203.206.0/24 maxlen: 24
46.203.209.0/24 maxlen: 24
91.124.130.0/24 maxlen: 24
91.124.149.0/24 maxlen: 24
92.112.134.0/24 maxlen: 24
92.112.136.0/24 maxlen: 24
92.112.139.0/24 maxlen: 24
92.112.145.0/24 maxlen: 24
92.112.148.0/24 maxlen: 24
92.112.150.0/24 maxlen: 24
92.112.168.0/24 maxlen: 24
92.112.169.0/24 maxlen: 24
92.112.173.0/24 maxlen: 24
92.112.174.0/24 maxlen: 24
92.112.203.0/24 maxlen: 24
92.113.83.0/24 maxlen: 24
92.113.103.0/24 maxlen: 24
92.113.162.0/24 maxlen: 24
92.113.232.0/24 maxlen: 24
92.113.233.0/24 maxlen: 24
92.113.237.0/24 maxlen: 24
92.113.238.0/24 maxlen: 24
92.113.242.0/24 maxlen: 24
92.113.243.0/24 maxlen: 24
95.135.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:c3:fb:35:18:2a:37:bb:48:5b:88:a9:bf:57:47:b5:9a:8a:4d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 12 09:05:33 2025 GMT
Not After : Apr 11 09:10:33 2026 GMT
Subject: CN=1689109543B917A91A983897E204D21666891CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:64:58:d2:a8:a0:f1:db:42:77:e0:f8:8b:4c:
33:48:59:ab:63:0b:c1:78:3d:40:47:41:09:2b:dc:
d6:a8:d8:bb:9d:9f:96:11:be:c8:8e:c9:f0:ed:7b:
e4:67:a8:5e:46:8d:97:70:2e:34:9b:19:eb:ae:2e:
3f:d8:ff:33:bf:a9:b7:00:99:d0:d1:13:e4:0e:dd:
76:8d:60:d8:32:ee:7a:ae:f9:25:e5:c7:d4:a5:19:
9b:43:14:be:62:6d:ef:06:3e:b8:b5:51:eb:1e:10:
a5:e6:14:a3:be:67:d4:7a:4f:2f:df:8f:99:b1:29:
6e:56:22:06:60:68:5e:a2:12:e3:7b:22:7b:c9:61:
8e:4d:e6:d4:cc:d0:b9:ca:0f:89:2f:66:f5:52:cf:
c1:1f:bf:85:aa:e3:0f:95:93:ad:3e:d6:98:69:9e:
66:ac:b9:a2:f6:9f:e1:40:9a:4d:69:78:16:98:16:
37:63:ed:07:3c:aa:e2:fd:58:76:a8:9d:2c:22:17:
1a:87:42:4d:b6:b4:31:a9:1c:a8:47:e8:84:5a:e6:
48:24:16:43:a7:d1:5f:05:0f:9e:9f:34:de:42:5b:
08:8b:3e:ea:cf:3c:aa:4f:c6:46:eb:a2:e4:73:da:
7c:16:93:05:ae:f6:6d:8e:f8:a3:25:f4:a7:f0:8c:
c3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:89:10:95:43:B9:17:A9:1A:98:38:97:E2:04:D2:16:66:89:1C:F6
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
46.203.198.0/24
46.203.201.0/24
46.203.206.0/24
46.203.209.0/24
91.124.130.0/24
91.124.149.0/24
92.112.134.0/24
92.112.136.0/24
92.112.139.0/24
92.112.145.0/24
92.112.148.0/24
92.112.150.0/24
92.112.168.0/23
92.112.173.0-92.112.174.255
92.112.203.0/24
92.113.83.0/24
92.113.103.0/24
92.113.162.0/24
92.113.232.0/23
92.113.237.0-92.113.238.255
92.113.242.0/23
95.135.84.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1c:37:61:ff:c0:bb:da:3a:8f:06:6c:59:ac:38:28:fd:83:
e9:54:50:58:82:2d:6b:82:57:20:27:02:58:7e:5d:2f:c8:60:
ad:ee:ef:39:a3:8c:ba:af:31:ec:dd:b2:61:8a:ce:e5:20:23:
6d:4c:d4:cf:9c:ff:4d:3b:83:26:45:ab:b4:0b:c6:4e:1b:13:
59:b8:eb:45:49:ef:03:19:0a:ef:9b:59:a9:5c:53:79:ca:ec:
cc:43:90:82:51:3c:3d:4f:a2:5c:13:95:ad:71:09:43:90:7a:
bd:e5:fb:b7:9e:8a:6f:95:6f:db:4a:5e:86:d9:56:5f:52:50:
a1:69:ee:2e:d5:73:e0:f5:58:19:2c:48:5f:d0:e0:ad:cd:69:
12:53:2f:20:b9:31:1f:58:8e:dc:0d:18:27:21:b6:a1:d9:e9:
67:ff:b3:04:cf:12:35:d9:d4:5f:52:bd:0a:e4:c0:95:b4:77:
30:9a:61:01:fe:c7:ff:a5:58:42:3a:cb:0b:1a:aa:67:37:59:
08:76:ed:11:1b:6c:cb:22:41:6f:0e:35:f1:16:ff:9b:1b:b6:
64:05:0c:fa:75:f3:f2:50:ad:8f:b7:c7:d1:cd:b1:45:42:bb:
92:31:db:40:a7:00:47:e5:fd:70:d9:dc:a4:cf:4e:0e:f0:6f:
b0:d7:2a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:30 2025 by rpki-client on console.sobornost.net