Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
File: AS9304.roa (raw, json)
Hash identifier: cieCHAXXC54AoSMfYy74VjgUv8aPY39DuMS6TIhNn74=
Subject key identifier: C1:6C:DD:29:46:83:72:BB:8C:3A:C2:92:77:51:FA:5C:EF:45:52:11
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 71424F3D1DB69C1CE9D075C13AB5338DD3FD82C9
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
Signing time: Wed 02 Apr 2025 12:31:32 +0000
ROA not before: Wed 02 Apr 2025 12:26:32 +0000
ROA not after: Wed 01 Apr 2026 12:31:32 +0000
asID: 9304
IP address blocks: 46.203.83.0/24 maxlen: 24
46.203.84.0/24 maxlen: 24
46.203.87.0/24 maxlen: 24
46.203.126.0/24 maxlen: 24
46.203.172.0/24 maxlen: 24
46.203.176.0/24 maxlen: 24
46.203.183.0/24 maxlen: 24
46.203.200.0/24 maxlen: 24
95.134.16.0/22 maxlen: 24
95.134.84.0/24 maxlen: 24
95.134.85.0/24 maxlen: 24
95.135.175.0/24 maxlen: 24
95.135.193.0/24 maxlen: 24
95.135.246.0/24 maxlen: 24
95.135.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:42:4f:3d:1d:b6:9c:1c:e9:d0:75:c1:3a:b5:33:8d:d3:fd:82:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 2 12:26:32 2025 GMT
Not After : Apr 1 12:31:32 2026 GMT
Subject: CN=C16CDD29468372BB8C3AC2927751FA5CEF455211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cb:68:0b:3c:1b:21:14:77:fd:7f:d1:2f:b4:
c7:f7:01:1f:06:4e:fb:f9:cd:01:9a:d7:e9:92:12:
9b:ba:cf:17:b3:7a:ab:5e:75:a5:a4:a9:3c:e3:84:
1b:2d:e5:0a:91:50:76:14:a5:e3:1b:21:e6:57:3c:
36:2d:d7:5b:e4:0d:db:af:a1:44:53:d1:28:8c:e4:
f0:d7:b5:24:9d:6c:75:71:3b:4a:50:94:a3:70:a3:
ad:25:67:50:79:d2:1d:44:6f:dd:42:34:3c:af:d5:
02:40:db:2e:70:a8:8e:a4:83:ff:a5:e6:d0:2a:aa:
70:db:e2:de:f0:0a:55:44:5a:83:8c:53:de:6c:80:
81:33:64:5b:9a:10:20:3e:58:c3:0e:e6:7a:57:7e:
dd:52:43:c3:8b:36:00:75:48:8c:d5:ba:77:f0:59:
41:49:f9:18:66:0f:fb:dc:c9:cf:03:f5:ff:28:6f:
4e:ee:e0:ea:99:b4:c6:3b:ca:5b:ca:af:eb:cc:45:
58:af:e8:c2:08:11:d3:98:61:31:9e:63:02:a8:a9:
a0:70:ee:e7:32:56:d3:1b:c1:15:99:72:3c:95:b1:
7d:82:a7:b3:61:b3:3c:7a:2d:17:9b:d5:b8:04:6b:
ec:5a:dc:09:e9:f6:b4:7c:3a:ea:e3:55:e7:f6:00:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6C:DD:29:46:83:72:BB:8C:3A:C2:92:77:51:FA:5C:EF:45:52:11
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.83.0-46.203.84.255
46.203.87.0/24
46.203.126.0/24
46.203.172.0/24
46.203.176.0/24
46.203.183.0/24
46.203.200.0/24
95.134.16.0/22
95.134.84.0/23
95.135.175.0/24
95.135.193.0/24
95.135.246.0/24
95.135.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:4d:e3:16:90:32:29:1a:8e:28:0c:10:32:ce:30:05:c4:31:
9d:48:0f:9a:72:8c:7a:45:a0:4b:2e:35:0f:fe:c9:16:97:90:
12:8b:8e:f8:d1:68:67:b4:20:a8:1d:73:e9:ae:2a:a8:41:b2:
c4:53:be:c5:65:dd:45:c0:13:fa:75:63:e3:30:d2:35:ec:61:
51:22:90:9a:ff:cf:8c:6e:d4:01:92:f3:5b:ca:af:aa:3a:46:
6a:a7:91:33:45:3b:8a:7f:6e:5b:e5:bd:18:b9:1d:e2:a3:6e:
43:c9:b5:fa:b2:76:f5:39:2e:9f:a1:03:bb:f7:15:84:24:25:
a2:27:39:e0:1f:ae:2d:9e:1f:df:32:70:2a:d8:3e:23:e7:d8:
77:73:9f:7f:7b:97:66:7d:48:0e:22:15:78:2a:35:88:9c:8d:
e5:3f:cd:19:d1:4c:99:58:b2:d3:04:49:01:b2:b6:89:4a:a1:
30:59:fc:e4:e5:c4:62:76:73:55:c1:79:d9:a5:b6:c8:c8:43:
91:0e:58:6f:20:da:9f:5d:a5:63:e2:b6:36:38:82:4f:28:52:
4f:57:f4:b1:e4:a2:3a:95:ab:99:1a:88:0e:be:01:f2:9c:6f:
28:c1:86:94:97:41:67:9b:fb:f5:5d:b8:c9:f8:cf:82:e2:fa:
0c:3c:b9:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:30 2025 by rpki-client on console.sobornost.net