Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
File: AS396356.roa (raw, json)
Hash identifier: pVds/A5MMmxbYeX0Ne6uJxnk//9SJ4LMFnlt4fU0q9Y=
Subject key identifier: AB:59:5D:B7:17:01:4E:C2:50:85:EA:37:9A:68:FC:A4:36:94:A9:85
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3FA057F286C48A79320375CACCBFFEB7F050106A
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
Signing time: Thu 12 Dec 2024 15:54:56 +0000
ROA not before: Thu 12 Dec 2024 15:49:56 +0000
ROA not after: Thu 11 Dec 2025 15:54:56 +0000
asID: 396356
IP address blocks: 46.202.4.0/22 maxlen: 24
46.202.20.0/22 maxlen: 24
46.202.108.0/22 maxlen: 24
46.203.8.0/22 maxlen: 24
46.203.64.0/22 maxlen: 24
46.203.218.0/24 maxlen: 24
46.203.224.0/24 maxlen: 24
46.203.226.0/24 maxlen: 24
46.203.228.0/24 maxlen: 24
46.203.229.0/24 maxlen: 24
46.203.230.0/24 maxlen: 24
46.203.231.0/24 maxlen: 24
46.203.232.0/24 maxlen: 24
92.112.155.0/24 maxlen: 24
92.112.160.0/24 maxlen: 24
92.112.161.0/24 maxlen: 24
92.112.162.0/24 maxlen: 24
92.112.163.0/24 maxlen: 24
92.112.165.0/24 maxlen: 24
92.112.166.0/24 maxlen: 24
92.112.167.0/24 maxlen: 24
92.112.201.0/24 maxlen: 24
92.113.129.0/24 maxlen: 24
92.113.133.0/24 maxlen: 24
92.113.134.0/24 maxlen: 24
92.113.135.0/24 maxlen: 24
92.113.138.0/24 maxlen: 24
92.113.139.0/24 maxlen: 24
92.113.140.0/24 maxlen: 24
92.113.141.0/24 maxlen: 24
92.113.231.0/24 maxlen: 24
92.113.236.0/24 maxlen: 24
92.113.241.0/24 maxlen: 24
92.113.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:a0:57:f2:86:c4:8a:79:32:03:75:ca:cc:bf:fe:b7:f0:50:10:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Dec 12 15:49:56 2024 GMT
Not After : Dec 11 15:54:56 2025 GMT
Subject: CN=AB595DB717014EC25085EA379A68FCA43694A985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:97:3b:f1:42:93:f7:f0:48:21:af:5e:87:fe:
88:fd:ca:ac:0f:b3:80:0c:72:d2:2c:53:d9:69:8f:
53:9e:6e:d0:28:89:86:a1:95:af:f8:44:70:96:6c:
73:20:c2:84:af:8e:22:b1:c5:b7:88:e5:9a:2f:0e:
9f:40:f6:ae:b6:da:63:8e:b4:09:42:69:f6:90:9d:
65:6c:ba:fd:7d:4a:a4:f8:5a:ec:06:16:6c:b0:e1:
ec:3d:a1:26:2b:04:6c:2d:30:90:7b:68:2a:6a:42:
37:88:82:7e:5f:ce:76:89:32:2a:67:84:52:70:e8:
73:09:df:dd:f2:eb:5d:2c:3f:37:16:02:10:f8:62:
77:65:54:7e:74:fe:9a:6e:53:6b:2e:53:65:b6:78:
40:7c:3e:cd:76:aa:0b:bb:7a:aa:9b:09:18:8a:b4:
07:da:2d:66:f2:98:ad:d8:6d:ee:68:04:37:6e:76:
32:97:eb:99:fe:00:e2:e7:0d:b0:9d:5f:6b:b6:fe:
5d:9e:cb:88:d7:1b:64:16:4e:aa:97:62:29:45:f4:
e9:1d:ee:20:5e:93:86:8b:e7:51:69:dd:96:b6:c9:
8a:e2:a2:6d:4f:63:6c:78:11:f0:d4:91:33:c2:e6:
7b:7e:4c:9a:e7:b9:2f:f3:b7:d1:cc:7f:20:f6:fd:
97:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:59:5D:B7:17:01:4E:C2:50:85:EA:37:9A:68:FC:A4:36:94:A9:85
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.4.0/22
46.202.20.0/22
46.202.108.0/22
46.203.8.0/22
46.203.64.0/22
46.203.218.0/24
46.203.224.0/24
46.203.226.0/24
46.203.228.0-46.203.232.255
92.112.155.0/24
92.112.160.0/22
92.112.165.0-92.112.167.255
92.112.201.0/24
92.113.129.0/24
92.113.133.0-92.113.135.255
92.113.138.0-92.113.141.255
92.113.231.0/24
92.113.236.0/24
92.113.241.0/24
92.113.246.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:06:8d:a5:21:91:11:c3:44:ad:ff:14:b8:a1:ae:50:cb:b7:
36:55:2c:9a:0c:c8:16:c8:2b:46:77:02:a5:3c:0f:35:cb:94:
03:20:87:6c:ef:21:b1:7c:70:ed:9f:e3:73:70:b9:e6:c5:81:
24:48:66:21:d0:e8:6e:95:5b:12:f5:e8:96:86:fc:f9:bc:35:
fe:8e:1c:2d:33:79:d3:12:16:7c:71:5e:2e:5b:11:3d:ed:6a:
b4:a3:15:ac:ac:e4:7b:0d:8f:68:e4:b4:31:7f:0b:2a:b0:67:
2a:c1:ff:3a:b1:ff:98:45:10:dc:3d:2b:d2:03:f7:c0:e8:66:
11:c2:57:cc:cb:07:28:97:37:9a:50:4d:e9:bc:88:94:10:93:
3b:42:52:e7:a9:09:91:ad:33:c7:fe:63:ad:40:bc:ab:26:f0:
52:81:21:0b:48:68:32:cd:0c:77:39:9a:b0:8d:64:3d:31:31:
13:b1:37:9f:81:bb:a7:b1:04:20:b8:cc:9d:32:b3:d9:29:e2:
cb:24:c6:53:9e:14:bf:01:46:f6:3c:6c:9d:4c:83:dc:11:6e:
04:9b:f6:16:58:c5:1a:04:42:08:6e:5f:18:48:c4:cd:13:87:
29:4e:a0:72:13:70:a7:8e:af:a1:e0:b5:80:ba:73:62:8d:b8:
6e:cf:a4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:30:59 2025 by rpki-client