Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36342e302f32322d3234203d3e20383334.roa
File: 37372e33372e36342e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: m+fMYvohV4ZIpwe9fnQ1QElUIaNG600N8JoJwbGHDzo=
Subject key identifier: 53:CE:9A:97:08:63:B8:9A:D0:DD:67:81:76:D3:99:B7:0B:D6:07:45
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 2E00BDB0396A738F27F3DA85BF367AF720B47A29
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36342e302f32322d3234203d3e20383334.roa
Signing time: Wed 09 Aug 2023 13:30:04 +0000
ROA not before: Wed 09 Aug 2023 13:25:04 +0000
ROA not after: Wed 07 Aug 2024 13:30:04 +0000
asID: 834
IP address blocks: 77.37.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:00:bd:b0:39:6a:73:8f:27:f3:da:85:bf:36:7a:f7:20:b4:7a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Aug 9 13:25:04 2023 GMT
Not After : Aug 7 13:30:04 2024 GMT
Subject: CN=53CE9A970863B89AD0DD678176D399B70BD60745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cc:55:10:1c:b9:06:1e:ce:9a:41:98:92:1e:
18:a5:3d:fb:92:4d:71:b1:71:97:5f:17:63:96:7f:
a7:5f:55:63:06:ed:ac:79:15:e1:40:6d:b1:4a:59:
15:e8:b9:8b:c4:d5:d3:56:f7:0a:65:62:9d:e4:c2:
24:ae:85:24:61:11:d9:bf:66:a8:a8:c4:14:9e:86:
3f:11:0a:4b:45:99:72:41:eb:43:c5:36:af:d6:a4:
be:0d:72:58:e7:47:d0:67:4e:19:85:0b:80:f7:10:
18:af:b1:c0:c6:27:26:c3:89:1b:39:11:88:27:b5:
6d:00:1e:b3:c6:f3:9d:b2:eb:80:24:15:61:40:44:
3f:4d:3d:6c:b5:4a:71:5f:b6:59:58:d0:69:ce:40:
9a:3c:0f:fc:c7:e1:c4:a5:07:63:41:f6:de:02:eb:
69:a8:08:d8:d1:f8:9b:72:eb:fc:3b:b5:f6:8f:b8:
f9:d2:d4:88:ec:e9:ce:24:85:62:8d:0f:65:27:c6:
ca:59:ab:67:7c:d8:35:2f:64:3a:5c:3e:2b:97:fc:
ee:8d:62:73:1e:0a:d9:07:af:7c:f3:3f:a8:e0:9a:
f8:5f:bd:ba:54:36:df:0a:00:f3:e0:35:30:6b:40:
84:c5:bc:87:c2:cf:6e:69:86:cc:fc:0e:7b:f8:38:
df:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CE:9A:97:08:63:B8:9A:D0:DD:67:81:76:D3:99:B7:0B:D6:07:45
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36342e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.64.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:b5:ab:6e:61:8b:02:1d:48:8e:08:f8:8c:a2:27:e9:f3:51:
92:9b:89:d3:0b:69:ad:9c:ed:88:0b:a0:df:b0:b5:c9:28:27:
bc:96:68:2f:bf:cb:12:7a:35:80:af:62:e5:32:98:20:c2:de:
81:36:33:4b:04:12:e4:ba:54:25:dd:16:63:b2:b3:26:c7:6e:
d7:ee:3d:12:69:4b:bb:96:7f:78:e6:83:ee:d4:08:d8:c1:04:
44:da:44:f2:bc:40:53:f7:63:c8:19:2d:0b:4f:c1:36:ec:ff:
98:77:5a:00:92:93:df:b5:bd:2d:7c:49:5b:a3:36:2a:97:76:
54:d7:e6:2b:c5:97:c7:52:dc:c7:a7:8f:82:07:ce:bb:22:58:
de:7f:49:d8:45:88:47:40:11:f6:3c:a0:9f:7c:7a:61:bd:f2:
4a:dd:2d:30:3c:87:56:aa:61:0d:d9:a5:df:66:e4:b7:7e:39:
dd:67:2f:08:41:62:f6:ad:23:3c:cd:4a:59:33:d3:54:98:02:
81:5c:e0:aa:4d:6d:fe:a1:ba:3b:30:c7:af:e9:c8:8e:85:3d:
c6:27:ec:82:00:76:87:82:e3:97:2d:f8:74:f4:04:8c:b5:6d:
21:48:eb:f8:32:48:d8:f2:14:11:60:60:7e:6c:e0:6b:17:61:
ea:7b:ea:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:01:01 2025 by rpki-client