Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35372e302f32342d3234203d3e20383334.roa
File: 37372e33372e35372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 1lsin17m+xJF3B1qIQx8LV84RB8DS2V0HvWPzHOF4Ew=
Subject key identifier: 75:E6:6A:F5:3E:D4:D7:70:BC:ED:3C:A7:09:1C:6C:01:6A:CA:DD:38
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 414DD4DD1616EAF9F66D7BB3BA60F3C83DF568DF
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35372e302f32342d3234203d3e20383334.roa
Signing time: Mon 24 Jul 2023 08:30:06 +0000
ROA not before: Mon 24 Jul 2023 08:25:06 +0000
ROA not after: Mon 22 Jul 2024 08:30:06 +0000
asID: 834
IP address blocks: 77.37.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:4d:d4:dd:16:16:ea:f9:f6:6d:7b:b3:ba:60:f3:c8:3d:f5:68:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Jul 24 08:25:06 2023 GMT
Not After : Jul 22 08:30:06 2024 GMT
Subject: CN=75E66AF53ED4D770BCED3CA7091C6C016ACADD38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5b:c7:7e:18:e3:9b:f2:9c:c0:10:be:7f:47:
db:fe:02:02:9e:b9:21:09:d9:6e:1d:a4:f0:ee:03:
f3:f9:3b:56:32:ad:64:cb:86:d8:57:80:b7:b2:35:
29:30:7d:6e:bc:77:e0:91:04:79:cd:78:1e:b6:ab:
88:ca:0d:a8:76:69:8b:d5:a4:0f:8e:a7:1d:fd:01:
b7:a5:95:d4:f1:84:be:dd:b6:48:0f:a6:ed:1d:33:
b0:81:ae:0b:b4:e5:98:34:83:d4:4c:74:b8:38:43:
28:23:d8:86:46:bb:20:88:22:59:f0:9c:cc:08:6f:
cd:23:9f:8e:dc:b8:69:1c:63:2a:03:3c:8a:b4:e8:
60:10:23:85:3e:1e:79:18:30:24:df:be:d4:4c:50:
6e:98:0c:b9:11:7d:8e:64:63:75:58:17:d7:fe:9a:
81:54:09:98:22:df:a7:3c:1e:57:cd:0e:7d:97:f4:
20:ba:e3:2b:50:e4:f9:29:7c:c4:8c:9a:3d:e1:aa:
4d:9b:d3:b1:4a:71:10:97:16:35:2f:a2:1e:c3:51:
96:d7:8f:ff:6e:76:9a:e7:a4:f1:f4:8a:32:f9:bc:
20:be:d8:33:1d:73:6b:a3:4f:97:8d:67:6c:e3:a5:
c6:b7:33:50:2f:38:de:87:b6:b6:e4:9d:5d:65:bb:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E6:6A:F5:3E:D4:D7:70:BC:ED:3C:A7:09:1C:6C:01:6A:CA:DD:38
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e35372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.57.0/24
Signature Algorithm: sha256WithRSAEncryption
36:0d:fd:91:21:c6:28:16:4b:7a:19:9a:8f:3f:c0:84:e4:7b:
e7:47:8f:4a:43:5e:60:73:d9:9c:41:96:c0:f4:e1:94:99:92:
b5:c8:d7:42:78:ff:1c:3b:98:92:09:39:a2:cd:f8:5d:a2:ac:
e3:ae:7b:3c:7f:7c:da:98:e3:55:d8:df:8f:eb:fb:78:c0:2f:
bf:a7:76:49:1b:f4:0f:32:a9:07:ce:23:a1:4c:8d:d0:1a:75:
3f:d8:b6:5b:65:b4:1d:0f:73:e3:ef:8e:b0:49:53:60:59:79:
bb:96:86:82:49:33:49:3d:1d:1a:24:ac:43:00:85:54:37:bc:
14:fb:60:0b:e7:d0:dd:77:13:91:88:8a:52:d5:75:9d:7f:80:
7a:d1:10:59:1e:80:1e:4c:28:65:46:5b:3b:ce:81:e2:db:1b:
6a:c5:68:f1:55:38:60:72:0e:4c:23:53:68:df:f3:c5:ce:bb:
ee:69:7d:05:0b:74:c0:7c:c3:59:f1:74:9a:6a:ba:b3:9b:26:
51:cb:6f:8c:28:94:0e:8a:61:f9:28:45:ef:53:28:41:cb:e2:
72:8d:04:af:3a:70:45:0b:1d:e2:f9:f9:42:4f:e5:8b:2f:3b:
07:2f:bc:a2:d2:01:54:7a:af:9d:c8:87:69:1a:c0:90:e0:81:
1d:a0:5d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:12 2024 by rpki-client on console-fra.rpki-client.org