Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: yDjMJCuc3Zw4QHYHXtspRsbQTR/hYjUXCvyDKNXlTtc=
Subject key identifier: D5:48:9C:BB:0B:94:8F:7E:78:34:A1:5E:DB:7C:C3:4F:9A:C4:BE:7B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 061D35EF8BCF5679FC98A9AFE66A893138AC8011
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
Signing time: Thu 30 Jan 2025 08:25:46 +0000
ROA not before: Thu 30 Jan 2025 08:20:46 +0000
ROA not after: Thu 29 Jan 2026 08:25:46 +0000
asID: 834
IP address blocks: 45.87.185.0/24 maxlen: 24
45.95.36.0/24 maxlen: 24
92.118.162.0/24 maxlen: 24
179.61.198.0/24 maxlen: 24
179.61.210.0/24 maxlen: 24
179.61.212.0/24 maxlen: 24
179.61.226.0/23 maxlen: 24
179.61.229.0/24 maxlen: 24
179.61.243.0/24 maxlen: 24
179.61.248.0/24 maxlen: 24
181.214.0.0/24 maxlen: 24
181.214.4.0/24 maxlen: 24
181.214.14.0/24 maxlen: 24
181.214.57.0/24 maxlen: 24
181.214.73.0/24 maxlen: 24
181.214.79.0/24 maxlen: 24
181.214.119.0/24 maxlen: 24
181.214.154.0/24 maxlen: 24
181.214.161.0/24 maxlen: 24
181.214.212.0/24 maxlen: 24
181.214.223.0/24 maxlen: 24
181.214.224.0/24 maxlen: 24
181.214.248.0/24 maxlen: 24
181.214.254.0/24 maxlen: 24
181.215.3.0/24 maxlen: 24
181.215.62.0/24 maxlen: 24
181.215.73.0/24 maxlen: 24
181.215.91.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
181.215.108.0/23 maxlen: 24
181.215.111.0/24 maxlen: 24
181.215.112.0/22 maxlen: 24
181.215.159.0/24 maxlen: 24
181.215.186.0/23 maxlen: 24
181.215.189.0/24 maxlen: 24
181.215.204.0/24 maxlen: 24
181.215.216.0/24 maxlen: 24
181.215.225.0/24 maxlen: 24
181.215.237.0/24 maxlen: 24
181.215.250.0/24 maxlen: 24
185.158.133.0/24 maxlen: 24
191.96.8.0/24 maxlen: 24
191.96.16.0/24 maxlen: 24
191.96.24.0/24 maxlen: 24
191.96.27.0/24 maxlen: 24
191.96.83.0/24 maxlen: 24
191.96.99.0/24 maxlen: 24
191.96.102.0/24 maxlen: 24
191.96.105.0/24 maxlen: 24
191.96.116.0/24 maxlen: 24
191.96.120.0/24 maxlen: 24
191.96.126.0/24 maxlen: 24
191.96.164.0/24 maxlen: 24
191.101.9.0/24 maxlen: 24
191.101.39.0/24 maxlen: 24
191.101.56.0/24 maxlen: 24
191.101.63.0/24 maxlen: 24
191.101.76.0/24 maxlen: 24
191.101.88.0/24 maxlen: 24
191.101.95.0/24 maxlen: 24
191.101.97.0/24 maxlen: 24
191.101.102.0/24 maxlen: 24
191.101.120.0/24 maxlen: 24
191.101.124.0/24 maxlen: 24
191.101.127.0/24 maxlen: 24
191.101.182.0/24 maxlen: 24
191.101.192.0/24 maxlen: 24
191.101.198.0/24 maxlen: 24
191.101.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:1d:35:ef:8b:cf:56:79:fc:98:a9:af:e6:6a:89:31:38:ac:80:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 30 08:20:46 2025 GMT
Not After : Jan 29 08:25:46 2026 GMT
Subject: CN=D5489CBB0B948F7E7834A15EDB7CC34F9AC4BE7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:3d:57:28:b4:d0:52:b9:24:f1:0c:dc:e8:
27:45:9d:e7:90:1e:20:f2:fe:a5:e7:8c:56:c0:5e:
de:40:49:08:a5:cb:06:0d:5b:d4:92:ac:75:e2:b0:
a1:0a:78:9b:fc:32:c0:b7:55:00:bc:45:45:bc:28:
14:8b:11:57:0a:fc:2c:22:12:4d:60:7a:f4:98:c5:
9d:9c:25:9e:d3:82:fa:9b:90:33:57:28:62:15:29:
a9:8a:29:82:7c:50:7c:fc:e9:b2:c7:f5:6d:28:d8:
20:85:97:f7:b8:af:a0:9c:79:30:5d:f4:f7:fe:a4:
62:23:1c:92:99:86:5b:02:6d:91:16:ae:6f:ed:84:
fc:2e:bd:ae:16:c8:cf:02:be:23:12:77:46:ed:e6:
26:71:93:02:2e:54:db:c6:a4:2e:56:f8:c6:c9:b1:
57:b4:b0:df:6e:8f:45:50:59:50:95:dd:77:f3:76:
1d:3d:ab:86:97:37:24:db:86:21:d0:27:38:4c:b2:
e5:e0:41:1c:8d:b1:14:82:d2:f8:f3:3d:36:8e:cc:
0b:12:e6:99:07:29:a0:f4:bf:95:c3:a1:35:1d:31:
80:46:e9:8a:e6:6b:f0:5c:23:31:fd:62:8a:23:3d:
2b:03:a7:c8:7d:1e:7f:d3:f3:0b:97:08:27:72:12:
9c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:48:9C:BB:0B:94:8F:7E:78:34:A1:5E:DB:7C:C3:4F:9A:C4:BE:7B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.185.0/24
45.95.36.0/24
92.118.162.0/24
179.61.198.0/24
179.61.210.0/24
179.61.212.0/24
179.61.226.0/23
179.61.229.0/24
179.61.243.0/24
179.61.248.0/24
181.214.0.0/24
181.214.4.0/24
181.214.14.0/24
181.214.57.0/24
181.214.73.0/24
181.214.79.0/24
181.214.119.0/24
181.214.154.0/24
181.214.161.0/24
181.214.212.0/24
181.214.223.0-181.214.224.255
181.214.248.0/24
181.214.254.0/24
181.215.3.0/24
181.215.62.0/24
181.215.73.0/24
181.215.91.0/24
181.215.95.0/24
181.215.108.0/23
181.215.111.0-181.215.115.255
181.215.159.0/24
181.215.186.0/23
181.215.189.0/24
181.215.204.0/24
181.215.216.0/24
181.215.225.0/24
181.215.237.0/24
181.215.250.0/24
185.158.133.0/24
191.96.8.0/24
191.96.16.0/24
191.96.24.0/24
191.96.27.0/24
191.96.83.0/24
191.96.99.0/24
191.96.102.0/24
191.96.105.0/24
191.96.116.0/24
191.96.120.0/24
191.96.126.0/24
191.96.164.0/24
191.101.9.0/24
191.101.39.0/24
191.101.56.0/24
191.101.63.0/24
191.101.76.0/24
191.101.88.0/24
191.101.95.0/24
191.101.97.0/24
191.101.102.0/24
191.101.120.0/24
191.101.124.0/24
191.101.127.0/24
191.101.182.0/24
191.101.192.0/24
191.101.198.0/24
191.101.252.0/24
Signature Algorithm: sha256WithRSAEncryption
17:69:3a:21:1d:f0:66:b3:72:2f:c6:6b:9e:e6:72:a6:ad:35:
06:8a:41:96:e5:24:b8:6d:e3:8f:d2:da:42:ae:38:68:80:73:
9f:c3:a6:f8:7a:82:5f:26:b9:34:8d:a2:2f:b7:a1:a0:6d:0a:
e6:85:15:35:6e:47:56:02:94:57:c9:b5:7c:78:51:97:a7:bd:
3e:9a:8c:82:57:1c:6d:32:e7:b5:fd:9b:81:bd:99:33:e8:d2:
42:4d:67:47:d7:01:0f:b8:81:44:c6:35:ed:71:6a:0a:6b:d3:
88:27:79:6a:69:4a:d2:3d:69:06:d1:c9:16:dd:e1:5c:ea:3f:
73:bc:e8:24:04:39:2d:f2:cb:14:88:5c:8b:b5:3e:6e:c4:f9:
6d:85:90:1d:09:40:e5:28:6a:6e:6b:b2:81:80:99:0a:00:c0:
b5:36:de:ea:c3:34:97:c5:1a:9d:56:a7:df:00:dd:26:c3:9c:
65:c9:75:c5:d5:1c:f3:c0:1d:7d:8c:78:27:da:a2:69:e6:a2:
10:44:07:1a:28:4c:51:28:04:ca:0d:4a:69:f8:60:68:8f:32:
f2:4f:96:e6:92:20:7a:a4:9a:13:c5:1f:ef:33:6d:96:64:ff:
18:d2:d0:74:81:e7:53:27:dc:6e:d3:00:ef:25:df:09:02:f4:
ef:24:ff:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:11:59 2025 by rpki-client