Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: 5z1+U0aBxBUY7c0PVQNgqVhhQgmd1341Pff5elFSUzw=
Subject key identifier: C6:84:0A:B2:F9:DC:E2:72:EE:C1:66:FD:57:F9:1C:0D:9D:19:CC:48
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 725768A60D01FF2F890F0DD4053B4F4C49D3F56B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
Signing time: Wed 25 Dec 2024 00:00:22 +0000
ROA not before: Tue 24 Dec 2024 23:55:22 +0000
ROA not after: Wed 24 Dec 2025 00:00:22 +0000
asID: 64267
IP address blocks: 2.57.17.0/24 maxlen: 24
45.139.180.0/24 maxlen: 24
89.19.46.0/24 maxlen: 24
89.19.49.0/24 maxlen: 24
141.98.89.0/24 maxlen: 24
179.61.145.0/24 maxlen: 24
179.61.155.0/24 maxlen: 24
179.61.207.0/24 maxlen: 24
179.61.209.0/24 maxlen: 24
181.41.210.0/24 maxlen: 24
181.41.212.0/24 maxlen: 24
181.41.217.0/24 maxlen: 24
181.41.219.0/24 maxlen: 24
181.214.7.0/24 maxlen: 24
181.214.76.0/24 maxlen: 24
181.214.179.0/24 maxlen: 24
181.214.209.0/24 maxlen: 24
181.214.211.0/24 maxlen: 24
181.214.229.0/24 maxlen: 24
181.215.40.0/24 maxlen: 24
181.215.200.0/24 maxlen: 24
181.215.238.0/24 maxlen: 24
185.137.93.0/24 maxlen: 24
185.137.95.0/24 maxlen: 24
185.139.0.0/24 maxlen: 24
185.158.149.0/24 maxlen: 24
191.96.249.0/24 maxlen: 24
191.101.66.0/24 maxlen: 24
191.101.67.0/24 maxlen: 24
191.101.83.0/24 maxlen: 24
191.101.89.0/24 maxlen: 24
191.101.125.0/24 maxlen: 24
191.101.137.0/24 maxlen: 24
193.7.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:57:68:a6:0d:01:ff:2f:89:0f:0d:d4:05:3b:4f:4c:49:d3:f5:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 24 23:55:22 2024 GMT
Not After : Dec 24 00:00:22 2025 GMT
Subject: CN=C6840AB2F9DCE272EEC166FD57F91C0D9D19CC48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:77:7e:84:0d:c6:2b:a0:9c:88:af:29:ef:
a9:89:f7:7a:f8:88:90:95:86:bb:ce:da:97:d3:c6:
ea:b7:e5:b5:d6:fc:f2:cb:cc:6a:13:fd:66:d0:3e:
57:3d:cd:1f:d3:a6:22:8d:28:04:e3:cf:a8:3f:c5:
ea:7f:81:83:52:41:9e:95:2f:b1:d7:bf:63:83:c6:
11:c7:16:40:40:b9:28:ef:eb:50:37:d5:42:81:1c:
ec:9e:1d:79:b1:e7:fa:8c:0a:92:1e:df:e4:be:4f:
8f:fb:32:72:c0:ff:b9:bc:f5:6d:a3:39:fa:89:13:
ba:24:6f:62:2c:40:05:8d:64:97:0f:83:4d:c7:24:
41:27:c8:fc:fe:d3:d3:90:57:a3:13:4c:ee:48:91:
65:1d:1e:9c:a6:fd:6f:59:32:0d:6b:74:95:ee:bc:
56:9c:c2:53:01:08:23:85:a2:0a:00:ff:dc:b4:eb:
2e:0a:8f:6a:d4:63:18:98:29:c9:57:e5:b6:54:86:
a6:44:39:cb:37:85:65:a4:bf:19:f9:a3:0d:fa:b4:
e3:8b:7e:d4:56:d4:6c:f0:6c:b5:08:77:a0:3c:8a:
e5:ac:90:74:d7:f4:04:23:34:9b:c5:04:25:83:8c:
21:ab:bf:3e:cc:35:3a:b3:6b:43:2b:87:1f:32:2b:
a0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:84:0A:B2:F9:DC:E2:72:EE:C1:66:FD:57:F9:1C:0D:9D:19:CC:48
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.17.0/24
45.139.180.0/24
89.19.46.0/24
89.19.49.0/24
141.98.89.0/24
179.61.145.0/24
179.61.155.0/24
179.61.207.0/24
179.61.209.0/24
181.41.210.0/24
181.41.212.0/24
181.41.217.0/24
181.41.219.0/24
181.214.7.0/24
181.214.76.0/24
181.214.179.0/24
181.214.209.0/24
181.214.211.0/24
181.214.229.0/24
181.215.40.0/24
181.215.200.0/24
181.215.238.0/24
185.137.93.0/24
185.137.95.0/24
185.139.0.0/24
185.158.149.0/24
191.96.249.0/24
191.101.66.0/23
191.101.83.0/24
191.101.89.0/24
191.101.125.0/24
191.101.137.0/24
193.7.202.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:14:0d:02:c4:77:c1:cc:c7:58:79:6c:db:e2:ec:4e:d5:3f:
6e:57:52:c5:cc:5f:ca:6a:40:ab:ae:1a:39:44:1a:67:12:3b:
f6:95:c9:42:62:0a:da:6a:51:a2:63:4c:8e:f0:2f:24:bc:7b:
94:e4:bf:e1:b2:0e:1d:b0:e9:a4:5d:f9:07:44:90:88:f8:51:
34:38:ea:93:eb:5f:d6:09:28:a0:06:a7:3a:db:75:09:74:f4:
9f:b5:03:11:08:4c:bb:ff:bf:d5:ea:bb:3c:3a:c8:9a:db:f7:
cf:81:80:76:29:db:63:ad:6f:f8:c1:39:8f:23:e9:bf:33:3f:
4b:e9:a2:af:ca:c1:57:3c:18:63:94:cd:57:a1:c9:fd:55:c7:
ea:85:32:2d:11:29:2b:ac:b4:94:46:80:a8:a3:04:85:04:a7:
8d:b0:14:86:9b:a8:a1:b2:c7:5b:d4:e4:17:ef:05:e4:ce:dc:
fc:36:e0:f5:69:e7:e5:96:4c:b9:1b:af:c0:e3:4d:97:dd:c9:
85:a4:8a:f6:5a:b6:be:a1:11:cb:f1:ee:08:f9:df:7c:b7:27:
61:ec:03:92:fa:18:36:d2:13:55:9f:4b:d1:e7:26:13:da:91:
54:a7:24:58:70:93:0a:db:48:56:72:4d:0e:7b:a9:be:6a:54:
7e:26:e0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:37:16 2025 by rpki-client