Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6939.roa
File: AS6939.roa (raw, json)
Hash identifier: Bq0WG5JYG19Fjo7z6QI0DgjwIgAm2/9DwnPbE6wZkoU=
Subject key identifier: DC:01:D6:DF:31:AD:9C:0E:65:21:1F:97:86:C0:7D:D4:4A:54:F0:A6
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 583C0AD83548A4F330E4233E9B595D40109B7334
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6939.roa
Signing time: Sun 15 Dec 2024 00:00:40 +0000
ROA not before: Sat 14 Dec 2024 23:55:40 +0000
ROA not after: Sun 14 Dec 2025 00:00:40 +0000
asID: 6939
IP address blocks: 96.62.134.0/23 maxlen: 24
96.62.148.0/23 maxlen: 24
96.62.164.0/23 maxlen: 24
96.62.166.0/23 maxlen: 24
96.62.244.0/23 maxlen: 24
96.62.252.0/23 maxlen: 24
145.223.68.0/23 maxlen: 24
145.223.70.0/23 maxlen: 24
150.241.146.0/23 maxlen: 24
150.241.148.0/23 maxlen: 24
150.241.150.0/23 maxlen: 24
150.241.152.0/23 maxlen: 24
150.241.154.0/23 maxlen: 24
150.241.156.0/23 maxlen: 24
150.241.158.0/23 maxlen: 24
150.241.160.0/23 maxlen: 24
150.241.162.0/23 maxlen: 24
150.241.164.0/23 maxlen: 24
150.241.166.0/23 maxlen: 24
150.241.168.0/23 maxlen: 24
150.241.170.0/23 maxlen: 24
150.241.172.0/23 maxlen: 24
150.241.176.0/23 maxlen: 24
150.241.178.0/23 maxlen: 24
150.241.180.0/23 maxlen: 24
150.241.182.0/23 maxlen: 24
150.241.184.0/23 maxlen: 24
150.241.186.0/23 maxlen: 24
150.241.188.0/23 maxlen: 24
150.241.190.0/23 maxlen: 24
150.241.192.0/23 maxlen: 24
150.241.194.0/23 maxlen: 24
150.241.196.0/23 maxlen: 24
150.241.198.0/23 maxlen: 24
150.241.200.0/23 maxlen: 24
150.241.202.0/23 maxlen: 24
150.241.204.0/23 maxlen: 24
150.241.206.0/23 maxlen: 24
150.241.208.0/23 maxlen: 24
150.241.210.0/23 maxlen: 24
150.241.216.0/23 maxlen: 24
150.241.218.0/23 maxlen: 24
150.241.220.0/23 maxlen: 24
150.241.222.0/23 maxlen: 24
150.241.226.0/23 maxlen: 24
150.241.228.0/23 maxlen: 24
150.241.230.0/23 maxlen: 24
150.241.232.0/23 maxlen: 24
150.241.234.0/23 maxlen: 24
150.241.238.0/23 maxlen: 24
150.241.240.0/23 maxlen: 24
150.241.242.0/23 maxlen: 24
150.241.244.0/23 maxlen: 24
150.241.246.0/23 maxlen: 24
150.241.250.0/23 maxlen: 24
150.241.252.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:3c:0a:d8:35:48:a4:f3:30:e4:23:3e:9b:59:5d:40:10:9b:73:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Dec 14 23:55:40 2024 GMT
Not After : Dec 14 00:00:40 2025 GMT
Subject: CN=DC01D6DF31AD9C0E65211F9786C07DD44A54F0A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:51:8c:27:11:81:85:46:ff:f4:da:c2:1f:03:
0f:ac:85:91:ed:71:39:9a:6d:15:d9:19:f5:b0:a2:
b9:56:62:19:74:5e:57:0b:9c:11:36:08:2b:ba:83:
b0:93:b6:3e:43:c7:c5:ea:d3:82:08:f4:42:d9:a5:
36:df:73:8d:73:09:e4:75:89:fd:1a:0c:30:98:6c:
ac:23:b8:d3:d9:45:2a:89:e3:fb:94:a8:6e:c8:95:
e8:5d:66:1a:11:65:fb:70:5b:60:de:61:5c:74:b5:
5b:55:fc:c9:e6:31:cc:a3:ba:ea:5a:fd:7f:77:14:
15:89:2e:3e:df:d4:c8:6a:0c:ac:c8:b1:41:a5:3e:
85:be:f6:f3:58:ce:f1:2d:73:8e:fe:75:0e:39:6a:
8b:8e:f6:4e:d6:1b:ae:a5:29:27:f1:1f:4a:52:6c:
e8:83:02:23:d0:84:03:24:e9:73:dd:a0:5b:20:dc:
9d:df:4a:cb:c4:d9:36:3e:5d:25:a5:ce:ab:05:8c:
8a:ac:09:82:bb:5e:e7:12:c7:1b:69:24:91:ac:44:
c9:cc:3f:41:63:b9:02:44:2d:1d:66:7c:18:9e:0c:
bb:bd:cd:09:bb:bd:80:bc:92:25:00:e3:94:cd:f2:
17:db:8c:3b:dc:df:d3:b0:7c:20:9c:e7:61:c0:fd:
98:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:01:D6:DF:31:AD:9C:0E:65:21:1F:97:86:C0:7D:D4:4A:54:F0:A6
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS6939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.134.0/23
96.62.148.0/23
96.62.164.0/22
96.62.244.0/23
96.62.252.0/23
145.223.68.0/22
150.241.146.0-150.241.173.255
150.241.176.0-150.241.211.255
150.241.216.0/21
150.241.226.0-150.241.235.255
150.241.238.0-150.241.247.255
150.241.250.0-150.241.253.255
Signature Algorithm: sha256WithRSAEncryption
50:7b:33:99:0a:05:f4:ce:a3:f0:31:ea:d9:17:55:5e:12:4b:
2a:3a:16:2b:fa:03:62:c9:40:ef:da:53:00:79:03:97:6a:e5:
30:00:53:83:cc:e9:5c:bd:95:f0:f2:98:8c:ff:ca:b3:5d:15:
c8:49:bb:4a:fd:d2:cd:e2:8a:b5:8b:80:5a:3f:5e:bc:a6:d9:
e6:b6:4d:1f:aa:a9:4a:c5:dc:d7:52:06:e0:31:f3:70:db:fa:
d6:e7:9e:94:b7:34:bf:ae:18:9c:44:27:2e:11:41:10:30:eb:
cd:8d:68:22:c8:cc:33:af:04:9f:38:68:f3:ee:16:be:95:0b:
38:66:e3:ea:c0:5a:2f:da:e0:17:38:f7:f3:d8:a7:f2:c0:6c:
14:ef:a6:69:5f:2e:ea:6d:8a:e0:84:b9:9c:32:bf:03:aa:17:
1d:d1:55:5f:a5:2c:4d:e3:27:54:b5:49:d2:4c:dd:12:f0:b2:
1a:dd:0e:61:57:56:2e:4a:e6:dd:7d:18:2f:bb:5c:61:1e:2a:
80:81:26:0e:90:91:12:ac:c6:63:cf:a0:5a:24:65:3f:a9:43:
de:a9:59:c0:ca:18:81:0f:54:82:fa:16:0a:a4:9d:cc:04:58:
96:de:87:a9:37:53:10:5f:d1:99:27:4f:e4:96:32:74:ec:5e:
c4:14:da:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:06 2025 by rpki-client