Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: S+i4Qqwihne+BqBrue9R1u1kdkB31+GhRsNsJoJikRw=
Subject key identifier: B5:6C:56:EB:AC:6D:15:99:9A:67:6A:3A:B0:A0:75:6A:65:5A:AB:D0
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 084873E044CE2F3F70F59031625BA96BD2EA0D5C
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa
Signing time: Tue 25 Mar 2025 01:45:14 +0000
ROA not before: Tue 25 Mar 2025 01:40:14 +0000
ROA not after: Tue 24 Mar 2026 01:45:14 +0000
asID: 36530
IP address blocks: 96.62.100.0/24 maxlen: 24
96.62.101.0/24 maxlen: 24
96.62.114.0/24 maxlen: 24
96.62.115.0/24 maxlen: 24
148.135.181.0/24 maxlen: 24
148.135.190.0/24 maxlen: 24
148.135.255.0/24 maxlen: 24
150.241.237.0/24 maxlen: 24
150.241.238.0/24 maxlen: 24
150.241.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:48:73:e0:44:ce:2f:3f:70:f5:90:31:62:5b:a9:6b:d2:ea:0d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 25 01:40:14 2025 GMT
Not After : Mar 24 01:45:14 2026 GMT
Subject: CN=B56C56EBAC6D15999A676A3AB0A0756A655AABD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8a:3f:ea:b5:46:42:a1:b2:85:94:6f:eb:91:
5a:70:43:ad:46:1d:57:09:66:8c:33:c5:0d:c2:98:
52:50:ad:50:86:8d:de:75:81:30:27:77:e4:43:22:
f5:9c:eb:66:37:6a:9a:af:80:81:a8:41:58:10:f3:
7e:31:f5:08:9b:cc:aa:b9:47:ca:95:0e:1a:7d:e9:
ec:dd:5c:a8:cf:fd:90:0d:77:04:f4:07:47:b2:b5:
82:ce:4a:36:92:b4:75:66:de:f7:03:38:3a:98:78:
b7:33:ba:d2:2d:fb:bf:85:c2:38:8d:0c:53:3a:ba:
7e:8f:15:af:44:8e:b7:97:ba:65:a4:40:96:2e:be:
c0:80:18:9a:b3:ae:f8:cd:cc:7c:92:a8:fb:f8:a6:
3d:7a:af:1f:2a:4f:38:5d:d3:01:c3:dd:96:de:8f:
2c:23:b0:2a:d4:c4:d7:e5:3d:f1:26:4b:ec:06:1b:
cb:8b:8d:d1:72:ae:60:3c:4a:8b:d5:d3:12:a0:26:
b2:b6:ca:01:ad:7d:b5:0b:c9:33:e7:26:60:0d:8d:
72:78:43:d3:e1:68:70:01:af:17:af:7a:81:ad:9d:
39:94:58:11:56:ea:78:11:bf:d0:25:a1:bf:ba:28:
8a:93:b8:9f:05:17:18:55:30:cd:56:44:b6:64:5f:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6C:56:EB:AC:6D:15:99:9A:67:6A:3A:B0:A0:75:6A:65:5A:AB:D0
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.100.0/23
96.62.114.0/23
148.135.181.0/24
148.135.190.0/24
148.135.255.0/24
150.241.237.0-150.241.239.255
Signature Algorithm: sha256WithRSAEncryption
b9:ff:ec:07:bc:06:26:43:5e:e7:0d:2f:4f:99:cd:86:dd:6b:
58:44:67:9b:ac:6b:aa:6d:c6:8d:bd:1d:09:c4:e5:29:71:b8:
2e:98:0d:bc:90:d1:f6:31:48:7b:5a:fc:52:d4:ab:a0:dd:b2:
87:87:ce:2d:83:8b:93:72:ba:8a:70:a3:4a:79:46:a8:72:62:
8c:d9:19:f8:c1:b1:5e:5d:e7:1a:5a:5e:f4:35:8d:22:de:94:
cd:04:11:9e:54:7d:93:1f:81:88:62:7e:f3:a3:ef:33:1b:e3:
e1:ce:a8:ff:9c:bb:75:5f:c4:86:b0:d0:76:74:ac:ac:26:f4:
51:91:45:e3:38:b9:f8:35:d1:4f:bc:65:a8:e0:ae:b0:e0:8f:
ed:8b:ad:4f:5b:3c:7d:fe:66:0f:0b:49:23:26:f4:63:36:39:
77:4a:ff:e5:09:3d:84:bb:e8:60:23:05:52:5d:eb:cf:e0:de:
8a:e4:ba:a2:f3:d9:27:12:47:d4:d6:06:83:f4:b4:3c:30:76:
bc:69:d3:c5:69:37:08:8f:3a:02:e4:b8:1d:b6:43:b9:22:d8:
a8:16:ff:35:ca:f4:2e:2f:6f:9f:5d:2a:f8:a0:aa:7e:72:52:
64:72:79:ea:9d:39:16:b0:7f:ce:e4:41:8b:7b:41:e3:21:4e:
b3:e9:0f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:13 2025 by rpki-client