Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: 19/ufl/VnjtzvF4qcswk9Zw4ZIB1hkGSoYSmbkQyhcA=
Subject key identifier: 01:42:91:F0:96:DD:C1:16:B0:0A:2C:D1:06:08:55:EE:7D:DA:AC:9F
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1629DF7B4A1A43BC5B8B584C96C66F841E9F4233
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
Signing time: Thu 19 Dec 2024 21:16:45 +0000
ROA not before: Thu 19 Dec 2024 21:11:45 +0000
ROA not after: Thu 18 Dec 2025 21:16:45 +0000
asID: 7018
IP address blocks: 140.233.192.0/18 maxlen: 24
148.135.216.0/23 maxlen: 23
148.135.218.0/23 maxlen: 23
148.135.224.0/23 maxlen: 23
148.135.226.0/23 maxlen: 23
148.135.232.0/23 maxlen: 23
148.135.234.0/23 maxlen: 23
148.135.240.0/23 maxlen: 23
148.135.242.0/23 maxlen: 23
148.135.248.0/23 maxlen: 23
148.135.250.0/23 maxlen: 23
150.241.146.0/23 maxlen: 24
150.241.148.0/23 maxlen: 24
150.241.150.0/23 maxlen: 24
150.241.152.0/23 maxlen: 24
150.241.154.0/23 maxlen: 24
150.241.156.0/23 maxlen: 24
150.241.158.0/23 maxlen: 24
150.241.160.0/23 maxlen: 24
150.241.162.0/23 maxlen: 24
150.241.164.0/23 maxlen: 24
150.241.166.0/23 maxlen: 24
150.241.168.0/23 maxlen: 24
150.241.170.0/23 maxlen: 24
150.241.172.0/23 maxlen: 24
150.241.176.0/23 maxlen: 24
150.241.178.0/23 maxlen: 24
150.241.180.0/23 maxlen: 24
150.241.182.0/23 maxlen: 24
150.241.184.0/23 maxlen: 24
150.241.186.0/23 maxlen: 24
150.241.188.0/23 maxlen: 24
150.241.190.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:29:df:7b:4a:1a:43:bc:5b:8b:58:4c:96:c6:6f:84:1e:9f:42:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Dec 19 21:11:45 2024 GMT
Not After : Dec 18 21:16:45 2025 GMT
Subject: CN=014291F096DDC116B00A2CD1060855EE7DDAAC9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:29:1b:11:24:11:29:de:36:a4:a2:9d:f9:3c:
2d:32:a9:c1:97:3b:32:b1:93:77:89:86:93:c9:a9:
ad:94:9e:d1:e4:8d:9d:c0:fe:7a:e0:b5:82:9e:cc:
3b:a0:b2:cf:07:a1:55:41:cc:57:10:cc:f9:e2:7c:
57:ac:ff:04:7b:98:a4:86:b7:b2:73:61:f7:a8:cf:
32:c0:32:45:1c:48:54:58:b1:fc:14:d1:fe:22:84:
06:f9:97:f6:d8:ec:0c:88:48:79:92:af:91:b7:d6:
1b:8a:9f:93:12:0c:fb:76:26:2f:56:cd:64:bd:5e:
1d:2f:91:60:71:14:2c:93:99:bb:46:d0:79:9a:48:
fd:da:ce:0f:80:85:46:f2:91:5f:49:d3:0c:8e:ea:
ed:73:6b:b1:57:d2:f5:11:23:fa:56:b5:ab:5d:90:
d5:9d:7a:8c:3c:a2:2b:bb:a9:76:4d:1c:07:ea:cc:
4b:01:c7:75:c2:f3:42:0d:c3:b1:d8:49:01:21:45:
0e:c6:1e:8e:ef:90:04:da:86:21:c9:1e:86:c4:ed:
f5:82:8a:cc:70:6a:07:46:a8:b1:d8:4a:bb:74:ff:
bf:a7:03:f3:c8:b1:94:3d:ed:f2:a0:d7:28:31:4f:
c2:df:16:f9:78:1e:4f:62:df:c0:38:1a:c2:a8:eb:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:42:91:F0:96:DD:C1:16:B0:0A:2C:D1:06:08:55:EE:7D:DA:AC:9F
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.192.0/18
148.135.216.0/22
148.135.224.0/22
148.135.232.0/22
148.135.240.0/22
148.135.248.0/22
150.241.146.0-150.241.173.255
150.241.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:10:e2:f5:b4:27:12:62:4f:c2:a2:98:9e:31:85:d8:46:72:
7a:5f:68:8e:6d:02:10:0a:ab:8f:84:04:5f:d3:50:e7:89:ee:
95:78:21:49:26:82:30:a3:6e:37:69:7c:b3:a9:02:9b:89:c5:
f3:b1:a0:e5:d1:ee:e2:49:67:0f:8d:bd:4c:28:2c:5c:13:a3:
31:38:85:0e:a2:43:77:af:a0:09:ee:76:99:6a:53:a6:18:7d:
fb:32:74:d1:f3:db:95:4e:f2:37:da:6a:58:a4:34:76:03:95:
4d:dd:aa:6c:f3:e3:1a:2f:1d:14:69:c4:12:56:d0:8d:39:5c:
e4:83:e9:07:59:b9:40:da:87:73:11:eb:e4:3e:ed:7b:0f:fe:
1f:c6:14:ac:ce:6b:d0:27:13:7d:46:4f:7b:65:9c:fc:4d:43:
b7:45:27:f3:f3:9d:a9:8f:d2:91:8d:55:d1:68:91:35:3f:eb:
73:95:1c:4a:a8:54:a7:b4:aa:e3:ea:e3:48:b7:5e:cb:f6:20:
87:06:89:11:e0:3b:9e:6a:44:fb:c4:b1:d9:01:9a:8e:57:30:
cb:16:da:79:11:d9:11:12:00:21:53:25:cd:24:07:5b:b3:59:
99:6b:02:83:a5:8b:20:c5:ab:c1:ab:8c:a3:12:0f:07:fd:21:
4b:34:55:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:57:15 2025 by rpki-client