Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/Vsy2tppwZlto33QPcfaHiVfHozM.roa
File: Vsy2tppwZlto33QPcfaHiVfHozM.roa (raw, json)
Hash identifier: 18caMVQ1E5BJKp7FjnT6unU3mICAktVVg2IQqu7LHxI=
Subject key identifier: 56:CC:B6:B6:9A:70:66:5B:68:DF:74:0F:71:F6:87:89:57:C7:A3:33
Certificate issuer: /CN=576705b557b823086b6a532324bfbba36995cb1c
Certificate serial: 019426D9C1073F5CBEAF1D540B1CA9785B77
Authority key identifier: 57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/Vsy2tppwZlto33QPcfaHiVfHozM.roa
Signing time: Thu 02 Jan 2025 11:49:52 +0000
ROA not before: Thu 02 Jan 2025 11:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214098
IP address blocks: 185.56.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:c1:07:3f:5c:be:af:1d:54:0b:1c:a9:78:5b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576705b557b823086b6a532324bfbba36995cb1c
Validity
Not Before: Jan 2 11:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56ccb6b69a70665b68df740f71f6878957c7a333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:f4:44:99:28:c1:cf:72:07:74:47:e6:8a:
40:a3:24:b4:07:9d:2b:1c:c8:16:40:14:97:a9:3f:
9f:b0:9e:00:9d:fc:85:9a:1c:61:74:c6:5c:9b:48:
f7:64:8b:ad:c3:6e:0c:1e:0e:b5:a6:c1:bd:2c:31:
ac:b5:71:2b:1f:a1:12:1f:c5:7c:7c:3e:42:ac:8e:
a2:29:b7:2c:2f:2a:9c:00:2a:a0:f3:d9:39:22:71:
0f:55:f9:32:a8:50:e5:98:86:cc:b9:40:bd:11:a4:
66:4e:22:f7:01:a0:b9:37:13:b4:d8:13:21:2a:14:
55:0a:6d:f5:8e:1e:77:9c:39:7e:a9:16:72:8e:e5:
28:1f:94:fc:56:90:3e:58:e0:a2:79:68:63:a9:10:
2d:98:8b:1b:3a:cf:e4:25:15:c2:88:ad:5d:46:f8:
ae:ff:4d:d6:09:d2:cf:bc:11:78:5a:ca:99:1b:04:
c2:11:4d:67:74:7c:0f:69:fc:97:71:25:8d:d8:7c:
a8:f8:ca:31:76:71:ea:a3:63:5d:0d:0d:0c:d0:ce:
0a:90:85:79:90:98:89:41:35:db:bd:10:ed:ac:34:
ff:b5:35:3d:ad:7a:38:3f:20:14:bc:63:f8:51:00:
55:ff:6c:5d:1c:e2:87:11:8a:25:55:f0:d1:b8:7c:
24:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CC:B6:B6:9A:70:66:5B:68:DF:74:0F:71:F6:87:89:57:C7:A3:33
X509v3 Authority Key Identifier:
keyid:57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/Vsy2tppwZlto33QPcfaHiVfHozM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/V2cFtVe4IwhralMjJL-7o2mVyxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.161.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:b8:2e:b7:f3:52:9e:a5:13:9d:e6:03:09:86:8b:2a:2b:f9:
cb:cf:8a:e1:b5:73:7a:bb:ba:80:6c:32:8c:e8:2e:70:51:f9:
98:78:ae:e1:08:68:ae:d1:c9:b5:62:1b:2c:e7:af:58:ff:ce:
00:85:1b:20:4c:f6:38:e8:b9:9d:af:be:a2:a2:a9:b2:05:39:
84:d0:96:f3:4d:1d:1f:46:e6:81:23:a7:ce:db:70:6f:c8:2c:
ec:46:51:89:e7:1a:22:73:ea:3b:27:2f:b1:f4:4b:5d:06:61:
93:aa:7a:92:00:da:19:6a:0b:31:ed:7f:40:04:25:3f:16:27:
12:99:1e:63:8d:19:c7:17:c6:2f:ce:11:97:d4:a5:2b:96:b9:
fe:29:9f:af:be:e1:62:64:94:f3:a6:31:04:4c:e6:71:3e:a5:
25:d2:6a:9c:59:fc:f3:e0:15:00:8e:ab:75:05:f7:69:ad:34:
cf:cc:ab:46:e0:c8:36:0c:45:35:8a:bb:38:8d:50:d6:9e:76:
d2:7c:fe:7f:1c:f4:e3:a6:44:9b:14:78:95:fd:a0:90:a8:b0:
2b:e8:02:62:5f:32:d3:5f:21:4e:55:ae:87:04:1a:f0:4e:f7:
49:e9:cf:bd:6b:a7:0c:ad:56:b8:4b:55:4b:28:e0:09:d9:ab:
8d:4d:49:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2cEHP1y+rx1UCxypeFt3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3NjcwNWI1NTdiODIzMDg2YjZhNTMyMzI0YmZiYmEzNjk5
NWNiMWMwHhcNMjUwMTAyMTE0OTUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmNjYjZiNjlhNzA2NjViNjhkZjc0MGY3MWY2ODc4OTU3YzdhMzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtr0RJkowc9yB3RH5opAoyS0B50r
HMgWQBSXqT+fsJ4AnfyFmhxhdMZcm0j3ZIutw24MHg61psG9LDGstXErH6ESH8V8
fD5CrI6iKbcsLyqcACqg89k5InEPVfkyqFDlmIbMuUC9EaRmTiL3AaC5NxO02BMh
KhRVCm31jh53nDl+qRZyjuUoH5T8VpA+WOCieWhjqRAtmIsbOs/kJRXCiK1dRviu
/03WCdLPvBF4WsqZGwTCEU1ndHwPafyXcSWN2Hyo+MoxdnHqo2NdDQ0M0M4KkIV5
kJiJQTXbvRDtrDT/tTU9rXo4PyAUvGP4UQBV/2xdHOKHEYolVfDRuHwkWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFbMtraacGZbaN90D3H2h4lXx6MzMB8GA1UdIwQY
MBaAFFdnBbVXuCMIa2pTIyS/u6NplcscMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjJjRnRWZTRJd2hyYWxNakpMLTdvMm1WeXh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83ZDdlMWQtMzNjMC00MzQyLWIyNTkt
YTdiZjNiZjkwMmQ4LzEvVnN5MnRwcHdabHRvMzNRUGNmYUhpVmZIb3pNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC83ZDdlMWQtMzNjMC00MzQyLWIyNTktYTdiZjNiZjkwMmQ4
LzEvVjJjRnRWZTRJd2hyYWxNakpMLTdvMm1WeXh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTihMA0G
CSqGSIb3DQEBCwUAA4IBAQBduC6381KepROd5gMJhosqK/nLz4rhtXN6u7qAbDKM
6C5wUfmYeK7hCGiu0cm1Yhss569Y/84AhRsgTPY46Lmdr76ioqmyBTmE0JbzTR0f
RuaBI6fO23BvyCzsRlGJ5xoic+o7Jy+x9EtdBmGTqnqSANoZagsx7X9ABCU/FicS
mR5jjRnHF8YvzhGX1KUrlrn+KZ+vvuFiZJTzpjEETOZxPqUl0mqcWfzz4BUAjqt1
BfdprTTPzKtG4Mg2DEU1irs4jVDWnnbSfP5/HPTjpkSbFHiV/aCQqLAr6AJiXzLT
XyFOVa6HBBrwTvdJ6c+9a6cMrVa4S1VLKOAJ2auNTUlu
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:53:13 2025 by rpki-client