Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
File: AS214025.roa (raw, json)
Hash identifier: Km1tlVHiBDR7aeY+QkwES0v0P65LJkRle6WQkCW7yT0=
Subject key identifier: 08:7B:90:C8:51:67:7E:1B:E2:11:99:FC:79:FC:0A:20:40:F2:5A:93
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3D00EB0B41362B0BD471430A2F4FC0C9A6417CE8
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
Signing time: Wed 12 Mar 2025 00:00:06 +0000
ROA not before: Tue 11 Mar 2025 23:55:06 +0000
ROA not after: Wed 11 Mar 2026 00:00:06 +0000
asID: 214025
IP address blocks: 96.62.100.0/24 maxlen: 24
96.62.101.0/24 maxlen: 24
96.62.114.0/24 maxlen: 24
96.62.115.0/24 maxlen: 24
148.135.190.0/24 maxlen: 24
148.135.255.0/24 maxlen: 24
150.241.236.0/24 maxlen: 24
150.241.237.0/24 maxlen: 24
150.241.238.0/24 maxlen: 24
150.241.239.0/24 maxlen: 24
150.241.240.0/24 maxlen: 24
150.241.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:00:eb:0b:41:36:2b:0b:d4:71:43:0a:2f:4f:c0:c9:a6:41:7c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 11 23:55:06 2025 GMT
Not After : Mar 11 00:00:06 2026 GMT
Subject: CN=087B90C851677E1BE21199FC79FC0A2040F25A93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:86:a4:22:de:06:f0:50:82:79:f3:28:6c:5d:
96:0c:b3:7c:c1:1f:5f:80:60:50:f8:9f:25:32:15:
d8:9a:59:23:45:a0:7a:d9:70:6a:bd:5f:f5:0e:d4:
07:f6:22:c1:27:ba:29:0f:62:13:c4:7a:35:0b:7b:
4d:54:7b:c6:2c:bb:29:06:df:81:10:18:f8:73:44:
7f:dd:51:d6:13:21:aa:03:c5:41:51:ed:fe:fc:cf:
1f:09:1b:da:0d:cd:8d:20:e7:86:f0:ec:48:79:b3:
0e:b0:d0:1b:a2:d0:82:0b:4c:21:c7:bc:cd:be:26:
22:ce:1e:2c:dd:07:1e:46:2b:e5:b1:ec:cf:8e:89:
69:64:77:43:95:fe:2f:c4:9e:31:d8:17:8e:a8:b3:
b4:16:fa:d7:84:d7:33:b0:16:c9:0a:d0:58:20:9f:
ca:47:90:cf:7a:ac:8a:06:78:83:24:d0:8b:d0:26:
8a:66:2f:a8:27:3f:f2:86:53:19:d2:22:df:60:ac:
02:26:6c:34:2d:97:33:7e:44:34:5a:ce:25:4f:35:
88:bc:bc:b5:8d:d0:0c:f6:fd:5d:a1:ca:fd:d6:58:
7d:1a:26:52:2b:9f:d0:57:8b:03:f9:43:42:fb:d1:
b8:fd:21:bb:8a:03:8b:06:ee:1a:fa:fc:b2:b8:48:
da:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7B:90:C8:51:67:7E:1B:E2:11:99:FC:79:FC:0A:20:40:F2:5A:93
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.100.0/23
96.62.114.0/23
148.135.190.0/24
148.135.255.0/24
150.241.236.0-150.241.241.255
Signature Algorithm: sha256WithRSAEncryption
84:34:fe:f4:8e:4c:66:1e:66:ee:e2:06:4f:1e:09:a0:39:2b:
d7:7b:b7:c4:1f:4d:e9:f0:b3:97:7e:9d:fa:7c:8a:fd:ff:2a:
3b:0f:44:3b:f8:c6:c6:73:68:ae:d7:01:7c:0f:37:32:79:4a:
9d:00:7c:c9:27:ff:f6:2b:29:db:0f:59:bf:05:e9:76:e9:0d:
f7:07:49:98:23:ba:20:cf:46:bd:12:84:09:7f:8f:07:32:87:
7d:b7:f7:65:f8:a4:bc:01:44:4f:c2:f3:8a:39:00:bd:d0:31:
fb:36:6d:39:83:a1:59:e1:90:99:4e:c7:81:af:ea:c3:e8:d7:
63:bf:c3:95:a6:f5:59:fa:dd:37:f9:f8:2c:5b:9d:77:c5:e8:
4d:91:0d:5c:00:1f:94:7d:3f:a3:b8:51:c7:61:48:da:d8:ca:
9a:0f:58:57:6b:f8:70:81:b1:25:1d:35:47:3f:33:f7:22:fd:
b2:94:da:03:9e:b9:e2:e1:af:53:ef:68:3b:3b:4d:07:36:bb:
2f:d1:36:0c:10:c5:cd:07:d6:2d:9d:0c:ab:eb:96:9d:cd:4b:
22:10:b9:16:44:62:67:e7:ca:28:30:f9:4c:70:58:bc:e3:bf:
8b:2c:f6:39:cd:19:a3:54:94:4d:46:6d:be:f7:e1:3d:aa:8a:
dc:ea:2f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:29:59 2025 by rpki-client