Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
File: AS13213.roa (raw, json)
Hash identifier: +w04UxvR19cBPoWOxkLZ6xvTBlP79km1skNJVEkTVmY=
Subject key identifier: 24:BB:2B:B4:F3:F8:36:98:5B:CC:F8:C4:58:F8:DA:69:14:6A:78:EE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 29A53147D4D6351EA149E9E2FC2414BE895C6F1C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
Signing time: Sat 01 Mar 2025 00:02:27 +0000
ROA not before: Fri 28 Feb 2025 23:57:27 +0000
ROA not after: Sat 28 Feb 2026 00:02:27 +0000
asID: 13213
IP address blocks: 2.58.29.0/24 maxlen: 24
5.181.133.0/24 maxlen: 24
45.81.2.0/24 maxlen: 24
45.89.251.0/24 maxlen: 24
45.137.31.0/24 maxlen: 24
45.139.181.0/24 maxlen: 24
109.106.2.0/24 maxlen: 24
130.185.125.0/24 maxlen: 24
179.61.167.0/24 maxlen: 24
179.61.175.0/24 maxlen: 24
179.61.178.0/24 maxlen: 24
179.61.179.0/24 maxlen: 24
179.61.218.0/24 maxlen: 24
179.61.233.0/24 maxlen: 24
181.41.204.0/24 maxlen: 24
181.41.208.0/24 maxlen: 24
181.214.60.0/24 maxlen: 24
181.214.61.0/24 maxlen: 24
181.214.64.0/24 maxlen: 24
181.214.65.0/24 maxlen: 24
181.214.66.0/24 maxlen: 24
181.214.67.0/24 maxlen: 24
181.214.68.0/24 maxlen: 24
181.214.69.0/24 maxlen: 24
181.214.86.0/24 maxlen: 24
181.214.103.0/24 maxlen: 24
181.214.109.0/24 maxlen: 24
181.214.114.0/24 maxlen: 24
181.214.116.0/24 maxlen: 24
181.214.126.0/24 maxlen: 24
181.214.200.0/24 maxlen: 24
181.214.202.0/24 maxlen: 24
181.214.203.0/24 maxlen: 24
181.214.225.0/24 maxlen: 24
181.215.19.0/24 maxlen: 24
181.215.80.0/24 maxlen: 24
181.215.81.0/24 maxlen: 24
181.215.82.0/24 maxlen: 24
181.215.83.0/24 maxlen: 24
181.215.85.0/24 maxlen: 24
181.215.86.0/24 maxlen: 24
181.215.96.0/24 maxlen: 24
181.215.98.0/24 maxlen: 24
181.215.100.0/24 maxlen: 24
181.215.103.0/24 maxlen: 24
181.215.105.0/24 maxlen: 24
181.215.106.0/24 maxlen: 24
181.215.117.0/24 maxlen: 24
181.215.118.0/24 maxlen: 24
181.215.126.0/24 maxlen: 24
181.215.129.0/24 maxlen: 24
181.215.131.0/24 maxlen: 24
181.215.150.0/24 maxlen: 24
181.215.155.0/24 maxlen: 24
181.215.158.0/24 maxlen: 24
181.215.217.0/24 maxlen: 24
185.34.43.0/24 maxlen: 24
185.142.24.0/24 maxlen: 24
185.143.229.0/24 maxlen: 24
185.151.59.0/24 maxlen: 24
185.158.100.0/24 maxlen: 24
185.158.101.0/24 maxlen: 24
185.158.102.0/24 maxlen: 24
185.158.103.0/24 maxlen: 24
185.158.134.0/24 maxlen: 24
191.96.35.0/24 maxlen: 24
191.96.46.0/24 maxlen: 24
191.96.160.0/24 maxlen: 24
191.96.161.0/24 maxlen: 24
191.96.162.0/24 maxlen: 24
191.96.163.0/24 maxlen: 24
191.96.239.0/24 maxlen: 24
191.101.4.0/24 maxlen: 24
191.101.5.0/24 maxlen: 24
191.101.10.0/24 maxlen: 24
191.101.29.0/24 maxlen: 24
191.101.43.0/24 maxlen: 24
191.101.99.0/24 maxlen: 24
191.101.119.0/24 maxlen: 24
191.101.159.0/24 maxlen: 24
191.101.167.0/24 maxlen: 24
191.101.225.0/24 maxlen: 24
191.101.255.0/24 maxlen: 24
213.109.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:a5:31:47:d4:d6:35:1e:a1:49:e9:e2:fc:24:14:be:89:5c:6f:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 28 23:57:27 2025 GMT
Not After : Feb 28 00:02:27 2026 GMT
Subject: CN=24BB2BB4F3F836985BCCF8C458F8DA69146A78EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0b:f2:66:23:dd:0f:b6:60:ce:4a:55:d8:50:
98:db:23:b1:41:c6:47:91:08:c7:29:f9:92:be:eb:
6b:f0:4e:c3:b7:ed:0f:d4:a7:af:d2:63:b3:03:0c:
71:d3:ab:80:24:3c:fb:9f:9f:1d:1c:21:52:b7:6b:
e1:81:9b:96:ac:a4:b6:49:84:cd:8f:cc:4e:36:ed:
a6:4f:75:7d:23:fa:b7:7f:fd:80:c1:76:e1:06:44:
00:41:33:ad:da:1d:cf:60:84:05:45:6d:61:eb:92:
de:d9:d8:cb:3b:1a:bb:2d:c6:51:68:7c:5c:89:39:
cd:77:af:07:80:dc:f6:13:63:94:6f:b9:29:08:31:
3c:53:ce:75:41:2d:1d:99:4c:fa:97:97:a0:0e:ae:
54:b8:d0:85:52:16:13:5a:1b:8a:13:48:77:a9:b2:
c0:d3:82:c4:ea:fa:79:d4:8e:6d:5a:fd:a7:b4:b8:
3b:82:3d:ee:6d:52:7a:5d:64:16:51:43:e8:56:27:
78:97:96:5a:5d:2e:a7:7c:7d:71:bf:c9:c7:59:f2:
d4:03:02:d1:4d:a9:8d:07:f3:8b:8d:12:2a:7b:1f:
bc:c7:21:0a:98:9b:41:07:9b:90:7f:6a:e0:4e:32:
cc:9e:78:5b:c9:03:98:8b:b5:27:dd:0e:47:64:70:
20:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BB:2B:B4:F3:F8:36:98:5B:CC:F8:C4:58:F8:DA:69:14:6A:78:EE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS13213.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.29.0/24
5.181.133.0/24
45.81.2.0/24
45.89.251.0/24
45.137.31.0/24
45.139.181.0/24
109.106.2.0/24
130.185.125.0/24
179.61.167.0/24
179.61.175.0/24
179.61.178.0/23
179.61.218.0/24
179.61.233.0/24
181.41.204.0/24
181.41.208.0/24
181.214.60.0/23
181.214.64.0-181.214.69.255
181.214.86.0/24
181.214.103.0/24
181.214.109.0/24
181.214.114.0/24
181.214.116.0/24
181.214.126.0/24
181.214.200.0/24
181.214.202.0/23
181.214.225.0/24
181.215.19.0/24
181.215.80.0/22
181.215.85.0-181.215.86.255
181.215.96.0/24
181.215.98.0/24
181.215.100.0/24
181.215.103.0/24
181.215.105.0-181.215.106.255
181.215.117.0-181.215.118.255
181.215.126.0/24
181.215.129.0/24
181.215.131.0/24
181.215.150.0/24
181.215.155.0/24
181.215.158.0/24
181.215.217.0/24
185.34.43.0/24
185.142.24.0/24
185.143.229.0/24
185.151.59.0/24
185.158.100.0/22
185.158.134.0/24
191.96.35.0/24
191.96.46.0/24
191.96.160.0/22
191.96.239.0/24
191.101.4.0/23
191.101.10.0/24
191.101.29.0/24
191.101.43.0/24
191.101.99.0/24
191.101.119.0/24
191.101.159.0/24
191.101.167.0/24
191.101.225.0/24
191.101.255.0/24
213.109.171.0/24
Signature Algorithm: sha256WithRSAEncryption
04:98:cc:47:07:0d:18:6c:d8:80:bd:60:c9:ff:0f:78:81:4f:
d1:7e:9f:1e:b7:56:c4:51:c5:14:9a:07:8f:46:44:f6:12:12:
a9:4b:e9:f9:ef:ee:eb:d1:51:2b:27:94:42:ba:78:d7:e3:64:
8a:7e:e5:21:7d:d2:ac:6a:39:07:08:05:8a:f9:6a:45:94:19:
17:8e:1d:72:20:14:1a:49:07:f1:e2:0e:e5:ee:10:e7:b7:af:
f6:07:de:6c:f9:9c:01:39:93:75:ba:65:8c:e4:cb:c1:6a:9a:
34:88:8e:43:9d:63:4a:41:df:ee:00:f6:b7:a5:f0:78:eb:52:
2d:b3:41:50:c6:fa:5c:27:c2:9f:40:7d:77:1d:a6:fb:72:76:
a6:74:42:77:28:f2:e6:c1:1b:49:e9:3a:fc:11:42:fa:cf:e5:
0f:b1:16:86:10:40:7b:02:9b:15:bb:c7:e2:4f:59:9b:89:c1:
67:eb:a0:63:77:42:6c:a5:70:f1:87:c1:b8:72:e3:23:d8:b6:
05:31:e1:4f:b9:7d:0f:e8:b2:1c:4f:79:ee:a0:71:42:8a:8d:
23:d8:31:97:80:3d:47:9a:94:c2:7f:ed:0b:ba:d7:10:cd:bb:
b2:ac:9d:9d:b6:ee:7d:8a:de:3d:4d:c8:0b:25:1d:e9:14:f2:
49:8b:c7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:13:48 2025 by rpki-client