Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
File: AS7029.roa (raw, json)
Hash identifier: bSqukj1g87t1UiauJvKpQVDPR0qFi7PZwOrbeUR0vnI=
Subject key identifier: A4:50:AC:2C:A8:08:A3:3C:C6:88:C5:E7:39:A5:51:B5:6F:C3:EC:9E
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 774FE874508C4DA060C709AA3C7BFF9FCC2E2402
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
Signing time: Fri 28 Feb 2025 14:26:29 +0000
ROA not before: Fri 28 Feb 2025 14:21:29 +0000
ROA not after: Fri 27 Feb 2026 14:26:29 +0000
asID: 7029
IP address blocks: 46.202.200.0/24 maxlen: 24
46.202.206.0/24 maxlen: 24
46.203.6.0/24 maxlen: 24
92.112.15.0/24 maxlen: 24
92.112.32.0/24 maxlen: 24
92.112.33.0/24 maxlen: 24
92.112.34.0/24 maxlen: 24
92.112.35.0/24 maxlen: 24
92.112.36.0/23 maxlen: 24
92.112.38.0/23 maxlen: 24
92.112.40.0/21 maxlen: 24
92.112.50.0/24 maxlen: 24
92.112.52.0/24 maxlen: 24
92.112.54.0/24 maxlen: 24
92.112.59.0/24 maxlen: 24
92.112.64.0/24 maxlen: 24
92.112.67.0/24 maxlen: 24
92.112.68.0/24 maxlen: 24
92.112.77.0/24 maxlen: 24
92.112.79.0/24 maxlen: 24
92.112.81.0/24 maxlen: 24
92.112.82.0/24 maxlen: 24
92.112.83.0/24 maxlen: 24
92.112.84.0/24 maxlen: 24
92.112.85.0/24 maxlen: 24
92.112.86.0/24 maxlen: 24
92.112.90.0/24 maxlen: 24
92.112.91.0/24 maxlen: 24
92.112.94.0/24 maxlen: 24
92.112.95.0/24 maxlen: 24
92.112.110.0/24 maxlen: 24
92.112.119.0/24 maxlen: 24
92.112.128.0/24 maxlen: 24
92.112.129.0/24 maxlen: 24
92.112.132.0/24 maxlen: 24
92.112.133.0/24 maxlen: 24
92.112.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:4f:e8:74:50:8c:4d:a0:60:c7:09:aa:3c:7b:ff:9f:cc:2e:24:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 28 14:21:29 2025 GMT
Not After : Feb 27 14:26:29 2026 GMT
Subject: CN=A450AC2CA808A33CC688C5E739A551B56FC3EC9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:74:b5:50:1e:03:95:68:a7:ca:12:bf:9e:
74:22:c3:60:e1:01:83:a8:16:c0:cb:b1:a9:4c:88:
7f:88:88:0b:8b:66:89:cf:f1:9f:ee:89:8e:32:c7:
49:db:d8:89:ea:f2:9a:a9:f5:18:a7:b4:10:8e:a9:
bd:b8:c0:04:78:f2:dc:ce:4b:f6:6f:8a:c4:ae:f3:
0d:63:16:1a:53:db:29:f9:6f:07:2c:9e:27:18:e6:
24:3c:af:1a:36:62:b3:e1:e5:2a:fb:57:11:9d:dd:
29:7c:86:b0:94:df:56:23:6a:67:b7:f9:bc:f0:7a:
ac:40:ee:07:01:65:c5:37:fc:39:31:0d:f9:b4:7c:
5b:ab:9b:92:ed:e0:26:d2:2e:18:7b:7f:b5:f9:66:
0e:63:69:11:60:9f:7b:35:ad:76:0e:38:0c:3a:9a:
c2:b6:2a:ed:22:18:da:46:6f:8e:67:68:76:b5:c6:
6f:76:4a:ac:e9:dd:e0:bb:57:c8:de:25:95:23:15:
7e:e0:09:40:cb:04:de:16:33:a2:d5:07:9f:ca:1d:
ba:8f:ac:58:36:96:bb:73:fa:0b:c9:2e:fc:6f:f4:
6c:2b:7f:8f:81:0b:47:3c:fb:ad:64:1f:51:3e:7b:
3c:7f:0e:d8:5d:41:28:06:a1:44:e5:c2:12:9e:61:
f4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:50:AC:2C:A8:08:A3:3C:C6:88:C5:E7:39:A5:51:B5:6F:C3:EC:9E
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.200.0/24
46.202.206.0/24
46.203.6.0/24
92.112.15.0/24
92.112.32.0/20
92.112.50.0/24
92.112.52.0/24
92.112.54.0/24
92.112.59.0/24
92.112.64.0/24
92.112.67.0-92.112.68.255
92.112.77.0/24
92.112.79.0/24
92.112.81.0-92.112.86.255
92.112.90.0/23
92.112.94.0/23
92.112.110.0/24
92.112.119.0/24
92.112.128.0/23
92.112.132.0/23
92.112.157.0/24
Signature Algorithm: sha256WithRSAEncryption
38:9a:14:5c:4b:89:27:87:cd:19:8b:6c:4e:86:06:7b:43:e1:
79:cc:ed:cd:20:bc:2c:99:5b:4f:cc:38:fb:97:aa:66:8a:c7:
e5:2d:38:1a:c1:9f:98:00:23:c4:0f:39:e1:cf:15:fd:a6:74:
b2:b7:1f:42:e7:ff:dd:25:4c:17:24:20:a7:73:4e:d4:17:6e:
6f:b6:4b:7d:7b:34:58:f5:d2:26:40:29:36:64:bd:11:9c:80:
ca:06:e5:cd:40:df:18:2e:71:b8:32:88:ff:82:f9:bb:0c:9a:
09:ac:e6:0d:8c:e0:df:bc:f1:67:37:c2:c2:cb:33:20:f8:41:
e9:23:aa:ee:27:d7:15:7b:22:8e:c0:ad:c8:6f:69:c6:c2:d6:
ed:a1:1f:9c:fb:07:e2:18:41:5b:e9:17:90:8a:06:ea:f7:a0:
ed:f1:0c:2a:fa:41:37:22:ea:14:05:3d:64:b4:81:a4:a0:7f:
2c:96:5c:ec:c1:01:bf:51:85:29:fb:55:4a:4d:ef:ad:f1:b3:
aa:9c:c4:e0:6e:32:e2:44:e8:4f:89:98:05:e9:ec:5f:14:52:
99:65:40:56:22:0f:ec:33:4c:6a:62:7c:de:b0:39:2c:ed:00:
40:2d:67:a2:85:58:83:0d:f6:6b:4a:e4:ee:24:cd:9c:f0:0e:
20:6e:ff:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:31:34 2025 by rpki-client