Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
File: AS216050.roa (raw, json)
Hash identifier: x7TuhCzsr/b+oRjPBJAE1wlmwpL031r2fBjEIxHUY30=
Subject key identifier: EC:97:DD:C2:F3:C3:F1:3F:91:68:36:71:1B:83:88:27:AF:28:74:78
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5CC3220AB4244E09D3DD4D90AE9E64F38DFF4358
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
Signing time: Thu 13 Mar 2025 07:29:58 +0000
ROA not before: Thu 13 Mar 2025 07:24:58 +0000
ROA not after: Thu 12 Mar 2026 07:29:58 +0000
asID: 216050
IP address blocks: 46.202.204.0/24 maxlen: 24
46.202.205.0/24 maxlen: 24
46.203.165.0/24 maxlen: 24
46.203.166.0/24 maxlen: 24
46.203.167.0/24 maxlen: 24
46.203.191.0/24 maxlen: 24
46.203.192.0/24 maxlen: 24
46.203.193.0/24 maxlen: 24
46.203.194.0/24 maxlen: 24
46.203.211.0/24 maxlen: 24
46.203.213.0/24 maxlen: 24
46.203.240.0/24 maxlen: 24
91.124.39.0/24 maxlen: 24
91.124.48.0/24 maxlen: 24
91.124.50.0/24 maxlen: 24
91.124.51.0/24 maxlen: 24
92.113.41.0/24 maxlen: 24
92.113.55.0/24 maxlen: 24
92.113.65.0/24 maxlen: 24
92.113.68.0/24 maxlen: 24
92.113.69.0/24 maxlen: 24
92.113.75.0/24 maxlen: 24
92.113.76.0/24 maxlen: 24
92.113.78.0/24 maxlen: 24
92.113.79.0/24 maxlen: 24
92.113.81.0/24 maxlen: 24
92.113.82.0/24 maxlen: 24
92.113.84.0/24 maxlen: 24
92.113.85.0/24 maxlen: 24
92.113.87.0/24 maxlen: 24
92.113.88.0/24 maxlen: 24
92.113.90.0/24 maxlen: 24
92.113.166.0/24 maxlen: 24
92.113.167.0/24 maxlen: 24
95.135.51.0/24 maxlen: 24
95.135.73.0/24 maxlen: 24
95.135.111.0/24 maxlen: 24
95.135.114.0/24 maxlen: 24
95.135.115.0/24 maxlen: 24
95.135.128.0/24 maxlen: 24
95.135.129.0/24 maxlen: 24
95.135.130.0/24 maxlen: 24
95.135.131.0/24 maxlen: 24
95.135.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:c3:22:0a:b4:24:4e:09:d3:dd:4d:90:ae:9e:64:f3:8d:ff:43:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 13 07:24:58 2025 GMT
Not After : Mar 12 07:29:58 2026 GMT
Subject: CN=EC97DDC2F3C3F13F916836711B838827AF287478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:de:d1:0a:dd:55:f9:67:51:b0:8d:a0:d7:ce:
e6:88:7e:47:c3:e2:a6:03:7a:54:87:98:61:4a:ff:
c0:90:c4:f0:e7:66:67:dc:a4:a0:86:f1:f3:a0:e8:
49:27:27:77:c4:ac:c8:d9:a7:a5:8b:31:88:76:ed:
a0:1d:b3:3a:02:52:75:5c:ff:91:fb:36:e3:d3:d8:
43:58:2e:26:c1:57:00:c7:15:72:10:79:e4:21:07:
6c:4c:ea:2b:2b:b5:69:de:49:d7:e0:ed:65:20:ab:
a0:bd:62:92:6e:67:87:0a:81:c2:7f:b9:e1:aa:e6:
bf:2f:67:bc:56:1d:99:ab:2a:5f:81:92:b4:24:5d:
22:cd:97:1d:da:12:f7:88:9a:f2:b1:b6:38:60:6a:
82:03:91:c1:02:3a:05:f8:4d:cc:17:6f:9c:55:73:
00:63:bc:08:50:e0:a7:c5:c2:10:91:15:30:49:7f:
44:ab:b1:06:8e:f4:35:30:5e:e5:a9:ef:83:e8:f4:
5f:ef:ce:97:66:0b:df:44:c2:e3:88:16:e6:a3:e3:
21:5a:15:60:3a:ed:24:19:03:0e:f9:c4:76:4f:8f:
f0:3e:05:af:14:0d:8f:31:84:73:75:61:fc:06:b5:
92:94:16:ad:0b:2c:5d:c9:b8:a8:8f:eb:71:da:a1:
73:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:97:DD:C2:F3:C3:F1:3F:91:68:36:71:1B:83:88:27:AF:28:74:78
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS216050.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.204.0/23
46.203.165.0-46.203.167.255
46.203.191.0-46.203.194.255
46.203.211.0/24
46.203.213.0/24
46.203.240.0/24
91.124.39.0/24
91.124.48.0/24
91.124.50.0/23
92.113.41.0/24
92.113.55.0/24
92.113.65.0/24
92.113.68.0/23
92.113.75.0-92.113.76.255
92.113.78.0/23
92.113.81.0-92.113.82.255
92.113.84.0/23
92.113.87.0-92.113.88.255
92.113.90.0/24
92.113.166.0/23
95.135.51.0/24
95.135.73.0/24
95.135.111.0/24
95.135.114.0/23
95.135.128.0/22
95.135.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:da:d3:15:45:3f:6f:e4:c7:85:d8:45:15:7d:a1:ab:3e:97:
60:bb:20:7c:c8:9d:db:a4:02:c4:a1:bd:82:27:2f:8e:dc:f4:
48:d5:0c:ed:78:25:67:72:b9:cd:42:10:97:e9:8d:90:0b:f2:
55:f3:38:95:b9:e3:cf:7e:96:52:eb:45:04:df:c4:12:fd:42:
9f:80:55:35:df:08:f6:9f:cb:ce:79:b6:ae:87:b5:0a:57:a0:
d3:54:da:53:6a:75:13:93:b6:7c:f4:19:20:11:6d:a5:d4:dc:
a5:fb:c1:0e:91:05:e5:11:af:6b:ed:3c:89:0c:d1:c6:0f:9e:
87:ff:17:c6:79:0c:96:c8:f1:08:d2:8b:22:cf:0f:d7:51:e7:
49:95:bc:5c:bb:3f:21:6a:7f:7f:a7:34:d2:dd:10:61:d7:49:
76:8e:ad:85:01:37:26:e1:0c:3a:d9:e3:94:d3:99:11:58:ad:
8b:98:36:36:51:fa:a5:9b:e6:45:0b:8b:6f:26:af:e8:61:a5:
3f:dd:87:fc:1e:37:0d:8a:b3:2b:68:1c:d9:e8:da:8e:db:13:
6c:e2:64:a6:23:6a:40:34:63:27:e4:a7:34:78:f8:c7:59:13:
5f:b1:f7:33:31:99:e3:db:0c:65:7e:1c:1c:0b:a6:dc:43:b4:
f1:3c:da:07
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgIUXMMiCrQkTgnT3U2Qrp5k843/Q1gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNTAzMTMwNzI0NThaFw0yNjAzMTIwNzI5NThaMDMxMTAvBgNV
BAMTKEVDOTdEREMyRjNDM0YxM0Y5MTY4MzY3MTFCODM4ODI3QUYyODc0NzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa3tEK3VX5Z1GwjaDXzuaIfkfD
4qYDelSHmGFK/8CQxPDnZmfcpKCG8fOg6EknJ3fErMjZp6WLMYh27aAdszoCUnVc
/5H7NuPT2ENYLibBVwDHFXIQeeQhB2xM6isrtWneSdfg7WUgq6C9YpJuZ4cKgcJ/
ueGq5r8vZ7xWHZmrKl+BkrQkXSLNlx3aEveImvKxtjhgaoIDkcECOgX4TcwXb5xV
cwBjvAhQ4KfFwhCRFTBJf0SrsQaO9DUwXuWp74Po9F/vzpdmC99EwuOIFuaj4yFa
FWA67SQZAw75xHZPj/A+Ba8UDY8xhHN1YfwGtZKUFq0LLF3JuKiP63HaoXO7AgMB
AAGjggLNMIICyTAdBgNVHQ4EFgQU7JfdwvPD8T+RaDZxG4OIJ68odHgwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjE2MDUwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBywQCAAEwgcQD
BAEuyswwDAMEAC7LpQMEAy7LoDAMAwQALsu/AwQALsvCAwQALsvTAwQALsvVAwQA
LsvwAwQAW3wnAwQAW3wwAwQBW3wyAwQAXHEpAwQAXHE3AwQAXHFBAwQBXHFEMAwD
BABccUsDBABccUwDBAFccU4wDAMEAFxxUQMEAFxxUgMEAVxxVDAMAwQAXHFXAwQA
XHFYAwQAXHFaAwQBXHGmAwQAX4czAwQAX4dJAwQAX4dvAwQBX4dyAwQCX4eAAwQA
X4frMA0GCSqGSIb3DQEBCwUAA4IBAQCK2tMVRT9v5MeF2EUVfaGrPpdguyB8yJ3b
pALEob2CJy+O3PRI1QzteCVncrnNQhCX6Y2QC/JV8ziVuePPfpZS60UE38QS/UKf
gFU13wj2n8vOebauh7UKV6DTVNpTanUTk7Z89BkgEW2l1Nyl+8EOkQXlEa9r7TyJ
DNHGD56H/xfGeQyWyPEI0osizw/XUedJlbxcuz8han9/pzTS3RBh10l2jq2FATcm
4Qw62eOU05kRWK2LmDY2Ufqlm+ZFC4tvJq/oYaU/3Yf8HjcNirMraBzZ6NqO2xNs
4mSmI2pANGMn5Kc0ePjHWRNfsfczMZnj2wxlfhwcC6bcQ7TxPNoH
-----END CERTIFICATE-----
Generated at Sat Apr 5 15:30:52 2025 by rpki-client