Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vvl4ZE1S_TUukyyCVow1wkxqIo0.roa
File: Vvl4ZE1S_TUukyyCVow1wkxqIo0.roa (raw, json)
Hash identifier: DromhfkiVP4w3oMoSrXThGfCg8pEithQa0bhhJ1HJpc=
Subject key identifier: 56:F9:78:64:4D:52:FD:35:2E:93:2C:82:56:8C:35:C2:4C:6A:22:8D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01948D2B36E3A516EC627033D4163617EA1D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vvl4ZE1S_TUukyyCVow1wkxqIo0.roa
Signing time: Wed 22 Jan 2025 08:40:07 +0000
ROA not before: Wed 22 Jan 2025 08:40:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57634
IP address blocks: 31.13.192.0/24 maxlen: 24
31.13.199.0/24 maxlen: 24
31.13.209.0/24 maxlen: 24
85.217.168.0/23 maxlen: 23
87.120.67.0/24 maxlen: 24
87.120.156.0/23 maxlen: 23
93.123.9.0/24 maxlen: 24
94.156.0.0/23 maxlen: 23
94.156.7.0/24 maxlen: 24
94.156.76.0/24 maxlen: 24
94.156.171.0/24 maxlen: 24
212.73.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8d:2b:36:e3:a5:16:ec:62:70:33:d4:16:36:17:ea:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 22 08:40:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56f978644d52fd352e932c82568c35c24c6a228d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:80:86:85:fb:19:3c:e0:08:21:dd:35:9f:
fe:1c:af:0c:26:83:81:7f:39:e1:eb:61:3c:07:9e:
fe:2d:38:96:a6:3f:da:59:2b:92:2c:f5:1e:88:f2:
c7:fc:60:60:d1:53:1c:2f:9d:42:37:ab:32:4a:07:
a6:1a:2f:8c:dc:85:33:a8:d1:2b:c0:9e:19:3c:c2:
cc:39:20:75:45:67:27:01:dc:8d:b0:46:82:ab:86:
73:44:bb:62:11:90:2f:f1:75:64:d6:57:a7:2e:70:
e5:50:e4:c1:f0:8d:81:41:a7:02:ce:fb:0e:b7:d0:
ee:a8:f6:09:d5:02:bd:02:61:2e:21:34:5b:d5:bb:
1f:91:c5:9f:bc:e9:b3:6e:0c:9d:88:2c:7b:08:66:
78:cc:91:69:4f:b4:19:88:fb:bf:24:42:6f:42:40:
1a:3f:9c:50:fe:00:2c:93:32:30:74:02:bd:85:67:
d0:a1:af:60:d4:57:ac:96:1f:02:7c:5b:62:a0:fd:
f5:0b:c1:62:90:27:4c:c2:9d:bd:25:fe:b8:49:ad:
86:51:51:af:33:c1:d2:9e:22:86:b6:83:58:0d:d6:
65:5f:5f:e6:72:a5:b8:10:3e:b9:36:eb:cc:f7:78:
c8:56:ef:15:12:d8:8c:4d:bb:62:00:47:05:12:4f:
bf:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F9:78:64:4D:52:FD:35:2E:93:2C:82:56:8C:35:C2:4C:6A:22:8D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vvl4ZE1S_TUukyyCVow1wkxqIo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.192.0/24
31.13.199.0/24
31.13.209.0/24
85.217.168.0/23
87.120.67.0/24
87.120.156.0/23
93.123.9.0/24
94.156.0.0/23
94.156.7.0/24
94.156.76.0/24
94.156.171.0/24
212.73.151.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3f:17:90:05:1f:69:b3:45:9b:6b:a9:80:e9:9b:34:b1:98:
66:9f:0c:62:94:03:00:f9:19:44:28:e8:5e:33:55:74:c9:f1:
dd:73:c4:65:7b:ad:b9:01:27:f6:ec:c7:42:01:5e:b3:ab:6d:
0c:09:98:9a:6a:88:a8:82:3c:27:90:98:b4:ff:83:a2:e1:bd:
96:c2:bd:c7:cb:8c:ae:98:2a:1f:9b:50:51:a4:30:45:5c:ca:
5a:b3:17:70:f0:45:8b:1e:2f:7a:c7:bb:97:67:86:d2:6a:0a:
c5:18:0f:6f:75:29:c7:75:9c:8f:06:fe:80:4a:ac:18:3c:88:
ad:31:89:d9:cc:f5:5f:04:de:a1:a2:29:14:74:f5:4b:da:89:
6c:f2:1e:6e:fe:0d:0e:de:10:ed:0d:6b:cd:d1:a4:dc:70:95:
af:2b:b1:58:cb:9f:7e:fe:b9:47:b0:03:aa:7e:98:de:e5:d2:
e3:2a:e0:8f:7d:f9:d4:80:4c:4a:42:a0:bd:c2:cd:1f:85:c9:
0f:f1:ce:91:35:e2:40:29:bd:02:3d:61:34:7d:88:05:f4:07:
23:fe:c8:d4:cf:25:29:77:1e:ac:83:20:36:00:30:fc:5a:6e:
63:f5:5b:eb:43:c3:ca:e0:26:18:9d:62:ca:6d:94:aa:d9:8f:
5d:1c:32:fb
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAZSNKzbjpRbsYnAz1BY2F+odMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjUwMTIyMDg0MDA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmY5Nzg2NDRkNTJmZDM1MmU5MzJjODI1NjhjMzVjMjRjNmEyMjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1uAhoX7GTzgCCHdNZ/+HK8MJoOB
fznh62E8B57+LTiWpj/aWSuSLPUeiPLH/GBg0VMcL51CN6sySgemGi+M3IUzqNEr
wJ4ZPMLMOSB1RWcnAdyNsEaCq4ZzRLtiEZAv8XVk1lenLnDlUOTB8I2BQacCzvsO
t9DuqPYJ1QK9AmEuITRb1bsfkcWfvOmzbgydiCx7CGZ4zJFpT7QZiPu/JEJvQkAa
P5xQ/gAskzIwdAK9hWfQoa9g1Feslh8CfFtioP31C8FikCdMwp29Jf64Sa2GUVGv
M8HSniKGtoNYDdZlX1/mcqW4ED65NuvM93jIVu8VEtiMTbtiAEcFEk+/uQIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFFb5eGRNUv01LpMsglaMNcJMaiKNMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvVnZsNFpFMVNfVFV1a3l5Q1ZvdzF3a3hxSW8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAHw3AAwQA
Hw3HAwQAHw3RAwQBVdmoAwQAV3hDAwQBV3icAwQAXXsJAwQBXpwAAwQAXpwHAwQA
XpxMAwQAXpyrAwQA1EmXMA0GCSqGSIb3DQEBCwUAA4IBAQBtPxeQBR9ps0Wba6mA
6Zs0sZhmnwxilAMA+RlEKOheM1V0yfHdc8Rle625ASf27MdCAV6zq20MCZiaaoio
gjwnkJi0/4Oi4b2Wwr3Hy4yumCofm1BRpDBFXMpasxdw8EWLHi96x7uXZ4bSagrF
GA9vdSnHdZyPBv6ASqwYPIitMYnZzPVfBN6hoikUdPVL2ols8h5u/g0O3hDtDWvN
0aTccJWvK7FYy59+/rlHsAOqfpje5dLjKuCPffnUgExKQqC9ws0fhckP8c6RNeJA
Kb0CPWE0fYgF9Acj/sjUzyUpdx6sgyA2ADD8Wm5j9VvrQ8PK4CYYnWLKbZSq2Y9d
HDL7
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:46 2025 by rpki-client