Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34312e302f32342d3234203d3e20383334.roa
File: 37372e33372e34312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 2QV8HfVV7hLEyiVegpYl7/0dTEloHCHQ4hElaARytBA=
Subject key identifier: 88:B2:E8:D9:B5:A2:C1:36:81:07:7E:60:81:9D:22:39:10:72:1D:D4
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 03A8A8498668BED46501F78C722380B06C0C50D1
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34312e302f32342d3234203d3e20383334.roa
Signing time: Fri 31 Mar 2023 00:00:14 +0000
ROA not before: Thu 30 Mar 2023 23:55:14 +0000
ROA not after: Fri 29 Mar 2024 00:00:14 +0000
asID: 834
IP address blocks: 77.37.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a8:a8:49:86:68:be:d4:65:01:f7:8c:72:23:80:b0:6c:0c:50:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Mar 30 23:55:14 2023 GMT
Not After : Mar 29 00:00:14 2024 GMT
Subject: CN=88B2E8D9B5A2C13681077E60819D223910721DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:21:cd:01:1b:ee:49:a2:72:ba:38:63:a4:84:
5a:2f:40:c7:8e:a1:1f:d0:95:b8:c9:1c:b5:b5:15:
a0:5a:1f:05:68:c7:f1:16:01:68:c3:18:21:e9:cc:
d6:7b:8f:5e:e9:a1:f0:49:a4:bc:d6:b8:76:81:d7:
1d:63:14:e6:f7:fa:02:da:14:4f:13:ca:ea:a2:54:
82:af:4e:05:f5:ea:bb:7c:11:5c:28:e7:21:46:79:
10:c5:45:30:ff:21:85:ed:87:2e:6d:aa:b6:f2:bf:
fe:4b:26:c3:29:54:a6:87:19:54:f4:c9:8a:14:e9:
1c:99:b2:3d:72:2d:91:24:32:f5:7d:37:9a:92:06:
73:18:47:fb:a9:4a:43:f2:60:b0:53:e7:e6:35:ff:
de:0d:27:0c:75:bd:75:37:c9:22:39:eb:72:d3:de:
f5:a5:33:3e:96:c3:3a:20:06:80:01:e1:90:6d:2c:
32:f2:1d:3f:35:85:68:d8:87:67:34:85:5a:d7:41:
df:ab:2a:b4:a3:1c:be:22:01:df:b7:b9:5c:dd:47:
48:95:2f:36:f3:1a:82:53:e3:b3:9a:38:2f:d3:6d:
07:67:66:df:f2:7f:5b:04:f7:af:5a:e0:c0:5d:88:
0d:ee:b5:65:36:a4:d3:46:3d:5e:ce:f4:ec:ee:4a:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B2:E8:D9:B5:A2:C1:36:81:07:7E:60:81:9D:22:39:10:72:1D:D4
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.41.0/24
Signature Algorithm: sha256WithRSAEncryption
94:dd:17:6a:79:43:84:e0:32:aa:f4:9e:60:81:1c:7b:8e:51:
5d:71:40:3c:cb:95:22:3a:f6:f5:c9:13:0d:7c:c2:51:27:5b:
db:e2:02:be:32:ff:d7:f3:7b:8f:87:29:8c:87:ec:03:aa:3f:
ea:a5:50:0a:b7:f4:bd:83:b5:19:1a:1a:a3:0b:48:a9:94:2f:
6a:6f:fa:f0:da:ce:73:ad:16:4e:8b:7d:8e:97:d4:d3:ba:be:
2c:14:7f:63:cf:ee:52:aa:b5:c2:54:ac:ee:4f:83:77:62:e8:
7b:c3:7f:73:f9:31:4b:c5:da:42:3b:db:ee:55:8f:45:9e:28:
64:89:ea:ae:a6:45:35:0a:aa:ac:2c:b1:f7:e6:33:85:a8:3c:
c0:7d:b1:ec:3a:d7:f4:71:9e:d3:3c:f7:5b:de:88:89:14:ca:
a0:68:b4:73:7f:0d:be:71:ed:3b:98:53:60:2e:6f:a0:24:8b:
e8:b7:59:87:15:9e:92:cb:00:cc:48:6b:10:ff:63:8d:1e:63:
e0:13:ff:27:ab:8c:3c:51:0f:e2:c5:9d:25:8e:b4:d7:5b:ca:
b5:af:0e:bb:21:a4:94:5f:ee:5c:0e:42:55:46:d8:23:92:f0:
8c:f5:cd:01:df:4c:2c:3d:5e:14:88:df:00:08:60:07:4e:78:
8c:e8:23:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:12 2024 by rpki-client on console-fra.rpki-client.org