Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35352e302f32342d3234203d3e203630373231.roa
File: 37372e33372e35352e302f32342d3234203d3e203630373231.roa (raw, json)
Hash identifier: gZH4RGjVj3nntb3EzUocNst+allETzE6pcRHB/KHF+M=
Subject key identifier: D5:0F:44:D1:D9:E9:C2:95:62:A8:39:48:89:CD:37:E6:3C:D3:08:EF
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 1DF45D5C6DA3162BB115C8F2F5C5733BB5D98845
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35352e302f32342d3234203d3e203630373231.roa
Signing time: Fri 20 Jan 2023 06:26:08 +0000
ROA not before: Fri 20 Jan 2023 06:21:08 +0000
ROA not after: Fri 19 Jan 2024 06:26:08 +0000
asID: 60721
IP address blocks: 77.37.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:f4:5d:5c:6d:a3:16:2b:b1:15:c8:f2:f5:c5:73:3b:b5:d9:88:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Jan 20 06:21:08 2023 GMT
Not After : Jan 19 06:26:08 2024 GMT
Subject: CN=D50F44D1D9E9C29562A8394889CD37E63CD308EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2b:98:b6:f9:6a:60:b3:ef:e5:92:ce:f5:69:
de:0c:c0:2b:20:05:a7:0f:20:37:00:8e:cc:9f:66:
e1:1b:fb:0b:fe:eb:e8:20:ed:53:b0:70:77:3d:55:
e2:31:0c:0a:22:43:38:30:0f:82:e5:9f:48:50:da:
66:6c:e9:a2:72:65:9e:e8:f4:42:e6:5f:00:3c:91:
06:9d:0b:4f:42:90:19:74:7f:9e:3e:ac:7d:46:78:
6b:a6:01:83:f8:f7:97:3f:df:b1:72:43:35:08:88:
8f:5b:43:6b:fa:ac:b2:12:c4:a7:0e:e7:ee:1e:19:
26:56:da:a6:b3:d7:65:14:a3:5d:a0:27:31:60:4c:
1f:43:13:05:86:29:21:8f:1f:41:67:9e:f3:9d:ea:
e5:4f:3d:b1:3e:06:c2:fd:fe:dc:44:f5:94:75:5f:
45:f3:fa:17:5e:02:46:86:6b:3f:89:93:17:1c:f0:
95:bd:01:65:49:f3:ff:af:41:af:9b:32:8f:fb:dd:
af:c1:0d:ed:06:d0:91:d8:d8:b4:cb:c9:c8:97:d8:
cc:6d:06:67:37:8b:c2:d5:cf:1c:53:f8:c3:2f:77:
ae:f8:3c:92:6b:b3:07:5e:7c:8a:74:48:3d:1d:bf:
70:7f:03:c8:ff:d5:ac:8d:a9:c4:99:1c:d8:22:93:
19:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0F:44:D1:D9:E9:C2:95:62:A8:39:48:89:CD:37:E6:3C:D3:08:EF
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35352e302f32342d3234203d3e203630373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.55.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c9:94:94:c0:27:12:c3:1d:b3:fd:a9:fb:0a:e1:d2:23:1e:
35:af:22:4d:05:3c:af:5a:6a:c8:a0:9e:99:5a:18:57:6b:f7:
9f:f8:fa:0e:5e:5d:f6:7f:11:2d:98:49:1d:f8:15:c5:89:da:
e9:fe:e6:7f:77:96:91:b6:6d:63:4d:1b:5a:73:6b:bf:79:43:
fb:4b:1a:d0:dd:f7:f5:f3:b1:3b:9d:de:44:e1:2e:b8:77:89:
58:bf:e8:a7:17:d7:a6:a5:bc:46:d9:d7:ba:09:fe:b9:0b:9b:
12:77:5e:44:0d:90:f7:d7:dc:58:fd:83:79:8a:eb:ce:ef:c3:
af:d4:40:85:91:65:50:cc:62:6f:5a:d8:9f:4e:db:89:e8:1c:
6c:dc:d5:dd:70:3e:b3:6b:9b:a1:cd:e5:37:c6:ef:16:b2:1f:
a9:8e:de:5f:31:03:f4:eb:9f:b9:3f:87:20:1f:78:d7:d8:25:
34:6b:f2:b3:cf:41:a3:d0:13:54:53:6b:66:ef:a3:23:e8:1e:
2b:5a:a3:72:59:3f:ec:51:89:fd:fc:c6:e5:c0:db:ca:14:1f:
5d:2d:d7:b2:44:96:f8:5d:e9:fb:fd:46:c5:42:ee:d1:a9:50:
43:e7:09:3d:a1:ad:63:71:68:23:b7:22:47:30:f6:30:0b:e9:
e8:28:3f:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:52:46 2025 by rpki-client