Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: Cp3pHfULiOgAYLPJFlaIF8u0UEZ/K6GqdyYXGL2p66Q=
Subject key identifier: AE:E2:0A:16:81:9A:9A:C4:7C:55:AE:4A:9F:AF:F0:6C:DA:CD:E1:E9
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 520547D5AD8B55D18309B507BAEB3E85824BDBCC
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
Signing time: Mon 20 Jan 2025 00:02:46 +0000
ROA not before: Sun 19 Jan 2025 23:57:46 +0000
ROA not after: Mon 19 Jan 2026 00:02:46 +0000
asID: 174
IP address blocks: 46.202.32.0/24 maxlen: 24
46.202.36.0/24 maxlen: 24
46.202.41.0/24 maxlen: 24
46.202.46.0/24 maxlen: 24
46.202.85.0/24 maxlen: 24
46.202.86.0/24 maxlen: 24
46.203.18.0/24 maxlen: 24
46.203.31.0/24 maxlen: 24
46.203.33.0/24 maxlen: 24
46.203.35.0/24 maxlen: 24
46.203.46.0/24 maxlen: 24
46.203.55.0/24 maxlen: 24
46.203.57.0/24 maxlen: 24
46.203.61.0/24 maxlen: 24
46.203.72.0/24 maxlen: 24
46.203.75.0/24 maxlen: 24
46.203.77.0/24 maxlen: 24
46.203.78.0/24 maxlen: 24
46.203.81.0/24 maxlen: 24
46.203.83.0/24 maxlen: 24
46.203.84.0/24 maxlen: 24
46.203.87.0/24 maxlen: 24
46.203.126.0/24 maxlen: 24
46.203.135.0/24 maxlen: 24
46.203.136.0/24 maxlen: 24
46.203.139.0/24 maxlen: 24
46.203.146.0/24 maxlen: 24
91.124.68.0/22 maxlen: 22
91.124.72.0/22 maxlen: 22
91.124.76.0/22 maxlen: 22
91.124.84.0/22 maxlen: 22
91.124.92.0/22 maxlen: 22
91.124.96.0/22 maxlen: 22
91.124.100.0/22 maxlen: 22
91.124.104.0/22 maxlen: 22
91.124.108.0/22 maxlen: 22
91.124.112.0/22 maxlen: 22
91.124.152.0/22 maxlen: 22
91.124.164.0/22 maxlen: 22
91.124.168.0/22 maxlen: 22
91.124.180.0/22 maxlen: 22
91.124.188.0/22 maxlen: 22
91.124.212.0/22 maxlen: 22
91.124.224.0/22 maxlen: 22
91.124.228.0/22 maxlen: 22
91.124.232.0/22 maxlen: 22
92.112.5.0/24 maxlen: 24
92.112.9.0/24 maxlen: 24
92.112.65.0/24 maxlen: 24
92.112.66.0/24 maxlen: 24
92.112.71.0/24 maxlen: 24
92.112.104.0/24 maxlen: 24
92.112.105.0/24 maxlen: 24
92.112.108.0/24 maxlen: 24
92.112.109.0/24 maxlen: 24
92.113.70.0/24 maxlen: 24
92.113.71.0/24 maxlen: 24
92.113.72.0/24 maxlen: 24
92.113.73.0/24 maxlen: 24
92.113.101.0/24 maxlen: 24
92.113.102.0/24 maxlen: 24
92.113.104.0/24 maxlen: 24
92.113.105.0/24 maxlen: 24
92.113.127.0/24 maxlen: 24
92.113.128.0/24 maxlen: 24
92.113.158.0/24 maxlen: 24
92.113.159.0/24 maxlen: 24
92.113.160.0/24 maxlen: 24
92.113.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:05:47:d5:ad:8b:55:d1:83:09:b5:07:ba:eb:3e:85:82:4b:db:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jan 19 23:57:46 2025 GMT
Not After : Jan 19 00:02:46 2026 GMT
Subject: CN=AEE20A16819A9AC47C55AE4A9FAFF06CDACDE1E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a6:40:40:81:42:3b:3f:4d:5a:74:3d:bd:08:
e2:50:c4:e9:61:28:4d:35:8b:8f:a9:0c:0d:f3:af:
c6:4d:e8:79:a1:7a:7f:50:ed:2a:99:66:22:30:04:
3d:1a:d2:2e:c4:d3:cd:54:bc:ca:f2:52:a9:a8:66:
7c:46:f3:32:6e:47:b8:7b:82:ef:7a:6a:9b:d9:fd:
67:c1:2f:e5:d3:56:64:6e:c8:fb:2b:e1:56:27:32:
dd:1c:41:31:88:72:9b:ba:72:3b:22:21:20:1f:a4:
78:d7:31:66:4d:c1:a7:4d:cf:ec:5c:ed:df:6c:ad:
f8:48:e0:12:b3:cc:40:9f:09:ec:d9:39:69:83:1c:
4f:50:61:4c:55:a4:9a:bb:7c:40:2a:b6:7f:9e:e1:
6b:c5:ed:2a:90:81:af:23:b1:27:6b:ea:b4:16:07:
34:77:ac:bf:ea:5b:7f:fe:b8:68:74:99:14:c2:f3:
04:c3:96:40:29:28:4b:7d:43:fa:79:fd:49:ca:c2:
e3:ad:d4:90:a9:45:09:e2:cf:54:3e:85:bb:b3:13:
51:da:22:4b:9b:79:ff:bc:57:13:06:e8:cf:db:55:
c4:68:41:07:6a:bd:b8:8a:61:8b:f9:0e:66:50:b5:
99:fb:cd:15:97:9e:c9:f2:e0:bf:0e:16:e8:76:2d:
49:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E2:0A:16:81:9A:9A:C4:7C:55:AE:4A:9F:AF:F0:6C:DA:CD:E1:E9
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.32.0/24
46.202.36.0/24
46.202.41.0/24
46.202.46.0/24
46.202.85.0-46.202.86.255
46.203.18.0/24
46.203.31.0/24
46.203.33.0/24
46.203.35.0/24
46.203.46.0/24
46.203.55.0/24
46.203.57.0/24
46.203.61.0/24
46.203.72.0/24
46.203.75.0/24
46.203.77.0-46.203.78.255
46.203.81.0/24
46.203.83.0-46.203.84.255
46.203.87.0/24
46.203.126.0/24
46.203.135.0-46.203.136.255
46.203.139.0/24
46.203.146.0/24
91.124.68.0-91.124.79.255
91.124.84.0/22
91.124.92.0-91.124.115.255
91.124.152.0/22
91.124.164.0-91.124.171.255
91.124.180.0/22
91.124.188.0/22
91.124.212.0/22
91.124.224.0-91.124.235.255
92.112.5.0/24
92.112.9.0/24
92.112.65.0-92.112.66.255
92.112.71.0/24
92.112.104.0/23
92.112.108.0/23
92.113.70.0-92.113.73.255
92.113.101.0-92.113.102.255
92.113.104.0/23
92.113.127.0-92.113.128.255
92.113.158.0-92.113.161.255
Signature Algorithm: sha256WithRSAEncryption
3a:15:3a:63:e8:f7:e7:97:18:7d:50:38:c4:99:33:dc:0d:c8:
cc:82:b1:5b:90:16:84:de:39:f1:eb:15:08:e7:46:c5:39:58:
d4:c7:f8:8d:df:3e:f5:7e:50:c7:57:b6:f9:e1:0b:43:56:de:
47:95:65:b1:df:f1:30:81:47:83:7d:58:ba:7e:6a:f8:45:8d:
01:92:fd:27:00:b1:cb:1d:cb:b6:fc:da:69:e8:d3:57:de:4c:
b2:66:ce:f3:49:39:5e:41:6b:b6:95:16:d9:48:5a:5d:a2:f0:
1b:44:ed:ff:be:69:be:8d:12:0b:df:0d:c6:14:aa:d3:4f:27:
a1:8f:a4:94:7d:54:ae:c8:95:81:21:06:13:7c:b3:a5:45:81:
a7:e5:c9:f1:50:c0:55:28:2b:38:e5:ed:00:45:9b:4f:e2:15:
40:18:d4:c4:ab:d3:a1:17:2a:25:17:a2:c9:a7:6c:64:6e:87:
0f:30:28:ce:a3:cf:a5:9c:e8:fa:06:51:9e:1c:45:85:79:37:
00:e6:77:11:aa:6d:00:dc:6a:3a:0a:2e:74:75:de:aa:ee:7d:
b9:9a:a6:69:13:c2:6e:1c:42:49:bf:c1:f9:d1:4f:d7:c6:a5:
38:b4:40:ab:a1:f0:29:6d:41:a6:e4:24:00:b9:dc:c6:9b:00:
c9:d6:e4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:02:08 2025 by rpki-client