Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36362e302f32342d3234203d3e20383334.roa
File: 37372e33372e36362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: VVolMLkUBF9IoFROZqObuiNU/th7Pj9KU/2Y2h4aQsg=
Subject key identifier: B7:97:A8:6C:46:AC:45:14:8F:B1:78:FB:3C:9B:28:5C:73:7F:37:73
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 0CEAA6071D0118E5E216F699133206D779923DF9
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36362e302f32342d3234203d3e20383334.roa
Signing time: Thu 13 Apr 2023 10:00:17 +0000
ROA not before: Thu 13 Apr 2023 09:55:17 +0000
ROA not after: Thu 11 Apr 2024 10:00:17 +0000
asID: 834
IP address blocks: 77.37.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ea:a6:07:1d:01:18:e5:e2:16:f6:99:13:32:06:d7:79:92:3d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Apr 13 09:55:17 2023 GMT
Not After : Apr 11 10:00:17 2024 GMT
Subject: CN=B797A86C46AC45148FB178FB3C9B285C737F3773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:e2:bd:e4:c6:5c:df:94:df:14:a7:5c:84:
04:01:58:3c:bb:71:2f:9a:47:12:3f:88:66:ef:24:
b3:57:d4:ab:5b:6e:4e:e8:61:93:2d:fb:0e:a7:ca:
e5:b4:19:3e:a4:0b:8a:bc:be:5a:24:3b:7b:70:85:
21:51:ad:a0:db:9a:01:11:c8:da:c5:12:7a:82:03:
82:f0:e2:55:9b:67:32:bf:c9:58:52:9b:8c:e0:28:
d0:df:cb:c6:f0:5d:f8:80:55:87:70:b1:0a:51:8e:
37:77:9d:ff:cb:15:b2:d3:56:d1:e7:54:6b:e6:35:
16:50:4d:cb:c9:99:f3:a9:bf:19:0b:10:4d:c7:42:
4b:d1:24:3e:1b:a0:ed:69:f3:be:f1:2c:26:dc:e7:
ab:ff:f2:8a:11:d1:b6:87:1c:49:33:34:0c:35:ba:
24:14:62:85:73:a1:a9:6e:dc:38:0b:db:04:28:93:
82:5b:6a:62:46:49:eb:1c:96:f0:e9:78:ff:ea:56:
f3:ac:4a:ca:a0:4a:2b:5b:60:94:f5:49:d9:da:2a:
b5:7f:c9:52:5d:1f:91:23:78:2d:5e:65:ea:9a:bc:
5e:f5:a3:ec:fb:c6:69:bb:fd:d9:c0:e5:df:c4:24:
e0:b8:c2:75:7e:be:fe:63:c0:04:e6:31:78:db:7c:
c5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:97:A8:6C:46:AC:45:14:8F:B1:78:FB:3C:9B:28:5C:73:7F:37:73
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e36362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.66.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:4e:d9:c1:24:89:d4:b7:13:3b:b3:0a:46:e4:76:f0:30:57:
97:91:56:e1:a6:30:9e:8a:0b:86:73:48:36:84:df:42:80:fc:
95:99:6c:af:bf:aa:9c:c9:c8:3c:8d:7d:b7:de:0a:2f:1b:e7:
2e:82:89:b9:ec:87:79:e2:66:6c:21:f9:c6:d0:25:17:36:9b:
73:60:44:dd:b7:d1:1c:ed:3c:6c:f2:78:f9:75:1e:7d:d2:13:
8d:70:17:f9:6d:5a:cb:c6:00:13:6f:19:66:50:77:ff:a2:7e:
e1:b0:f3:55:72:11:a1:89:08:4b:57:fb:a2:bd:e2:9c:a6:e9:
eb:9b:c6:e5:00:73:4b:2d:49:82:e1:5b:8d:ee:11:c2:d5:0c:
7e:59:c1:f2:a3:de:b4:c4:c3:e0:96:9e:c7:00:68:59:c0:b5:
b7:64:55:a3:8b:c3:6b:48:d0:70:dc:7a:ae:e6:cf:4a:73:48:
42:39:2a:22:a8:8e:7d:82:11:f0:b5:45:2f:e2:bf:7f:25:25:
3f:76:2d:64:5b:a0:8a:ce:66:66:3b:42:64:1e:75:2f:cd:a9:
11:49:03:06:9b:fc:f5:7e:15:e6:af:32:60:d6:0d:6c:c1:9d:
30:17:1b:32:5f:a1:db:e1:f4:b9:7f:ea:84:06:52:7e:33:74:
fd:37:2b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:03:00 2025 by rpki-client