Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34332e302f32342d3234203d3e203630373231.roa
File: 37372e33372e34332e302f32342d3234203d3e203630373231.roa (raw, json)
Hash identifier: NCXexrh04w8kPyxcCs0fiYYpMORAs8AdpG1il9r7iHU=
Subject key identifier: BE:C1:00:48:8E:16:D9:AF:81:70:E9:88:BF:34:AA:EB:F1:56:00:DC
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 18254B3D2B624DEE28C5E6EB17E8E0FBA5840993
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34332e302f32342d3234203d3e203630373231.roa
Signing time: Fri 20 Jan 2023 06:26:07 +0000
ROA not before: Fri 20 Jan 2023 06:21:07 +0000
ROA not after: Fri 19 Jan 2024 06:26:07 +0000
asID: 60721
IP address blocks: 77.37.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:25:4b:3d:2b:62:4d:ee:28:c5:e6:eb:17:e8:e0:fb:a5:84:09:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Jan 20 06:21:07 2023 GMT
Not After : Jan 19 06:26:07 2024 GMT
Subject: CN=BEC100488E16D9AF8170E988BF34AAEBF15600DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9b:05:92:18:53:32:9f:2c:02:9c:1b:21:c6:
a5:5f:19:3d:ba:74:20:f4:6d:a9:eb:62:11:83:17:
ce:9b:21:38:cb:c9:fc:29:51:fd:75:5c:47:ac:f7:
b1:d8:2d:84:57:3f:70:6b:2a:e6:06:09:41:22:16:
5c:13:d0:13:ec:3e:a2:d9:e0:1b:ad:78:de:64:12:
4f:fd:b7:42:8f:d9:7d:8b:3c:6f:72:1d:87:d9:48:
e2:fd:d2:f6:5f:7c:f8:0b:e2:f4:6e:ee:25:64:2b:
55:6d:5d:0d:3d:65:f4:61:39:96:64:1c:f4:2f:4a:
49:07:aa:22:d8:de:02:99:82:a4:20:8e:29:2d:37:
3a:2c:42:28:1b:f8:81:fd:3d:56:9f:3f:d8:5c:11:
72:1f:7c:ae:25:ed:af:63:f9:42:6b:51:28:e5:ca:
9d:2d:90:f0:bf:8f:b4:19:d9:51:6f:ba:69:49:01:
96:66:f1:81:4e:f3:a1:0a:92:ff:90:89:57:10:dd:
41:43:cd:8a:31:a9:7e:dd:b0:ad:f3:17:7d:48:d9:
f4:2e:95:e4:83:0e:20:7a:9c:95:d7:55:6b:ae:95:
de:95:7f:55:40:98:f3:c4:02:cf:73:7e:4d:86:cc:
04:56:4b:67:e0:e7:47:04:1c:23:e4:26:47:4d:b2:
0e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C1:00:48:8E:16:D9:AF:81:70:E9:88:BF:34:AA:EB:F1:56:00:DC
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e34332e302f32342d3234203d3e203630373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.43.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:08:ea:38:6f:19:d8:16:33:51:42:b4:d4:e3:c5:61:06:2b:
51:a9:f1:3b:c0:25:bf:13:a1:b8:31:99:96:6b:bb:fc:d9:00:
ab:88:03:5d:71:8f:68:ae:2a:19:cb:ab:59:fc:06:a5:3e:3c:
3b:04:24:4c:9a:2e:ed:10:f1:81:71:61:da:b1:31:51:1c:c1:
13:85:37:a0:8f:c9:da:fe:91:d1:df:87:27:15:fe:74:60:09:
8b:bd:66:d4:80:04:c3:02:fd:36:ad:7d:59:56:da:e5:6c:2e:
3f:ab:d7:4d:af:10:d3:bd:2f:f9:47:84:87:08:f4:57:4c:b7:
bf:30:f0:0d:ef:bc:90:73:cd:38:82:f3:ba:21:6d:6c:b7:3e:
a8:08:4d:0f:3b:75:3a:e7:49:ad:fb:82:42:fc:55:57:51:d9:
c6:86:3c:90:df:dc:dd:94:8c:70:bf:e0:4c:e0:b6:2a:51:41:
dc:08:ba:97:80:7a:34:39:51:b7:43:fc:94:b2:1b:2b:cd:50:
dc:28:aa:58:0e:73:83:9d:3f:24:64:e2:5d:8d:21:0d:b3:5b:
b3:3a:b9:ef:3f:17:fb:25:3f:ff:7a:a5:79:27:a0:d8:92:cb:
f9:15:29:10:6f:6c:40:1a:28:e5:b2:e1:51:8a:e2:25:0a:ce:
e5:94:6a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:40 2025 by rpki-client