Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34302e302f32342d3234203d3e20383334.roa
File: 37372e33372e34302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: IjdW6d1rFVBRLc/izDw9zO4MqSMQcf5xBjylNw+TWiA=
Subject key identifier: 29:D9:D3:5C:3F:02:1B:52:81:DC:5B:B3:BA:A0:70:F3:8F:FF:12:2E
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 6FF210263AC209CF2AD6782E406CB6A01D908C8D
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34302e302f32342d3234203d3e20383334.roa
Signing time: Sat 01 Apr 2023 00:00:12 +0000
ROA not before: Fri 31 Mar 2023 23:55:12 +0000
ROA not after: Sat 30 Mar 2024 00:00:12 +0000
asID: 834
IP address blocks: 77.37.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:f2:10:26:3a:c2:09:cf:2a:d6:78:2e:40:6c:b6:a0:1d:90:8c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Mar 31 23:55:12 2023 GMT
Not After : Mar 30 00:00:12 2024 GMT
Subject: CN=29D9D35C3F021B5281DC5BB3BAA070F38FFF122E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:05:b2:95:a1:87:86:11:ea:7b:52:2e:92:
0e:c4:9e:35:fe:b6:41:a7:fb:27:23:45:5f:0d:87:
71:f9:45:2d:3c:30:17:6b:e0:c4:2e:c3:f4:8a:a9:
4e:cf:ec:2d:90:c8:58:03:05:98:92:85:0c:9e:d3:
7e:9a:8c:3a:25:d1:af:7e:52:8b:7f:b0:58:b9:ba:
b9:ae:81:ae:40:54:cc:55:2d:86:d6:b2:f4:23:86:
79:e3:4b:4e:1b:d3:94:1b:bc:b9:38:71:ed:bd:df:
6c:8d:cc:cc:f8:16:97:4a:fd:7f:4f:70:4e:29:c1:
24:70:22:15:8b:6a:cb:01:7b:68:f1:33:99:f5:c5:
a4:0b:24:65:44:a1:79:13:39:a3:55:5a:e3:ee:e3:
b7:80:a3:66:69:a6:79:8c:64:d3:67:73:fc:6d:e4:
e9:39:40:64:1b:24:46:c5:97:3b:a5:38:5e:e6:cb:
6c:12:7f:bc:95:49:1d:df:f3:4a:e9:a7:38:8e:d3:
4f:37:03:b2:a7:b3:e7:7e:10:29:71:df:02:35:cd:
9b:3b:a8:d4:f2:2f:00:10:c8:b9:11:2f:55:c5:3a:
1e:65:5a:31:e9:1c:f7:d8:62:e7:70:f4:a8:c4:3f:
c6:32:e4:10:6e:6e:a6:b7:e2:12:a5:44:9b:98:4a:
ea:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D9:D3:5C:3F:02:1B:52:81:DC:5B:B3:BA:A0:70:F3:8F:FF:12:2E
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.40.0/24
Signature Algorithm: sha256WithRSAEncryption
25:4b:64:e6:b0:f6:4f:3f:97:25:20:a4:ad:87:80:a1:d5:d4:
45:00:71:74:66:11:e8:f5:0c:27:95:42:c6:9f:e9:dc:c4:0a:
6d:ce:94:2f:fc:70:15:01:a8:86:61:c0:97:ac:5c:77:99:4b:
63:9b:d6:a5:43:a7:38:7a:d6:6a:b9:4e:83:d1:74:d8:67:9f:
a9:65:b9:00:7b:fa:1c:5c:37:83:e1:ee:03:e5:ec:cd:cc:2f:
d8:e8:02:ea:c6:88:02:8b:f5:0e:88:e2:3a:2b:5c:51:d3:a3:
a9:d8:77:ff:68:96:96:a4:90:c2:83:e0:a1:42:88:bf:53:c3:
79:39:26:64:cd:f9:da:cf:48:a2:5e:0d:c5:cd:7b:3f:dc:5d:
9e:f4:24:b3:bd:38:05:0c:71:aa:ae:15:8e:44:8a:a1:aa:b0:
6f:84:78:5f:14:59:08:04:b7:7d:79:3d:60:d7:90:e4:7d:f2:
f3:89:a3:5b:d1:c5:c2:c9:09:1b:5c:fb:ec:16:4e:60:37:74:
db:72:90:e6:0e:e7:be:b5:2b:bb:79:5d:f7:a1:e3:12:5c:4b:
60:1d:0d:f3:89:7e:85:6f:ec:5c:17:d7:09:e4:fa:6d:ab:56:
b5:4a:eb:e6:d7:e7:e9:e7:53:d2:a9:9e:4a:31:ee:9f:69:01:
35:08:07:64
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgIUb/IQJjrCCc8q1nguQGy2oB2QjI0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTgwNGQxZTJiMTI2MDA2YmZlNTA3OTYzNmE2YThkZGU1
YjdmZDlhNjAeFw0yMzAzMzEyMzU1MTJaFw0yNDAzMzAwMDAwMTJaMDMxMTAvBgNV
BAMTKDI5RDlEMzVDM0YwMjFCNTI4MURDNUJCM0JBQTA3MEYzOEZGRjEyMkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1fAWylaGHhhHqe1Iukg7EnjX+
tkGn+ycjRV8Nh3H5RS08MBdr4MQuw/SKqU7P7C2QyFgDBZiShQye036ajDol0a9+
Uot/sFi5urmuga5AVMxVLYbWsvQjhnnjS04b05QbvLk4ce2932yNzMz4FpdK/X9P
cE4pwSRwIhWLassBe2jxM5n1xaQLJGVEoXkTOaNVWuPu47eAo2ZppnmMZNNnc/xt
5Ok5QGQbJEbFlzulOF7my2wSf7yVSR3f80rppziO0083A7Kns+d+EClx3wI1zZs7
qNTyLwAQyLkRL1XFOh5lWjHpHPfYYudw9KjEP8Yy5BBubqa34hKlRJuYSuovAgMB
AAGjggI1MIICMTAdBgNVHQ4EFgQUKdnTXD8CG1KB3FuzuqBw84//Ei4wHwYDVR0j
BBgwFoAUWATR4rEmAGv+UHljamqN3lt/2aYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMtNTczNy00YmVmLTljMzUtM2QxMTNjNmVl
ZTM3LzAvNTgwNEQxRTJCMTI2MDA2QkZFNTA3OTYzNkE2QThEREU1QjdGRDlBNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1dBVFI0ckVtQUd2LVVIbGphbXFOM2x0
XzJhWS5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMt
NTczNy00YmVmLTljMzUtM2QxMTNjNmVlZTM3LzAvMzczNzJlMzMzNzJlMzQzMDJl
MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE0lKDANBgkq
hkiG9w0BAQsFAAOCAQEAJUtk5rD2Tz+XJSCkrYeAodXURQBxdGYR6PUMJ5VCxp/p
3MQKbc6UL/xwFQGohmHAl6xcd5lLY5vWpUOnOHrWarlOg9F02GefqWW5AHv6HFw3
g+HuA+Xszcwv2OgC6saIAov1DojiOitcUdOjqdh3/2iWlqSQwoPgoUKIv1PDeTkm
ZM352s9Iol4Nxc17P9xdnvQks704BQxxqq4VjkSKoaqwb4R4XxRZCAS3fXk9YNeQ
5H3y84mjW9HFwskJG1z77BZOYDd023KQ5g7nvrUru3ld96HjElxLYB0N84l+hW/s
XBfXCeT6batWtUrr5tfn6edT0qmeSjHun2kBNQgHZA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:03 2025 by rpki-client