Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37312e302f32342d3234203d3e203439393939.roa
File: 37372e33372e37312e302f32342d3234203d3e203439393939.roa (raw, json)
Hash identifier: 3NQdbj0GGRzb0IDhHP7rlOhrid9YDKdQ9tKjsXK9jvU=
Subject key identifier: 5C:14:C7:A4:C1:60:C1:F6:A9:BE:42:8E:60:FC:8C:82:F8:33:FA:BF
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 29E0A70E2E657D3B232A04C775AD9E94AE61041B
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37312e302f32342d3234203d3e203439393939.roa
Signing time: Fri 20 Jan 2023 06:26:09 +0000
ROA not before: Fri 20 Jan 2023 06:21:09 +0000
ROA not after: Fri 19 Jan 2024 06:26:09 +0000
asID: 49999
IP address blocks: 77.37.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e0:a7:0e:2e:65:7d:3b:23:2a:04:c7:75:ad:9e:94:ae:61:04:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Jan 20 06:21:09 2023 GMT
Not After : Jan 19 06:26:09 2024 GMT
Subject: CN=5C14C7A4C160C1F6A9BE428E60FC8C82F833FABF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:16:6c:9f:45:05:b8:c9:53:53:70:b2:8d:80:
bb:ba:67:0e:9a:f7:84:ec:6c:c3:50:eb:ab:0c:84:
67:3e:f3:d8:59:dd:3f:48:af:a3:2b:42:89:bd:74:
1b:3c:2c:43:d9:60:ec:d9:32:d8:ea:0e:22:93:a0:
cd:89:23:bb:16:f3:4a:c8:e4:41:9d:1c:d3:b1:1f:
69:d7:70:e9:2e:b6:57:38:30:50:51:19:c4:b0:d7:
13:19:9d:65:4e:b2:ae:43:5c:44:e5:aa:aa:20:58:
2c:c9:c0:2a:30:68:69:18:3c:2d:95:4a:d7:69:2a:
dd:3f:1e:7f:a9:08:1c:0d:11:3a:46:44:b9:3f:01:
bb:7b:40:da:cb:e5:1c:cd:3f:43:85:80:3c:6b:14:
1f:68:5a:27:27:99:63:a8:8f:c5:3a:76:0e:af:a7:
38:27:75:0c:ba:0c:57:eb:cd:99:c4:9c:c2:c4:72:
52:5c:85:4d:6a:9a:ca:e6:a4:58:28:14:b7:7b:8a:
33:fb:20:17:89:12:ea:9e:c7:81:c7:17:21:26:20:
d2:84:bc:d6:aa:dc:08:b3:6e:2d:20:f1:71:c9:0e:
91:66:fc:12:98:0c:80:fd:03:24:e4:4a:62:08:ff:
a0:d3:e9:2a:ab:c0:56:64:f2:a5:06:8d:45:e1:2b:
d3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:14:C7:A4:C1:60:C1:F6:A9:BE:42:8E:60:FC:8C:82:F8:33:FA:BF
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37312e302f32342d3234203d3e203439393939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.71.0/24
Signature Algorithm: sha256WithRSAEncryption
67:12:2f:cc:75:7d:ec:6f:36:ac:c8:eb:b5:10:48:70:0c:03:
51:ad:e5:18:3e:29:54:fe:7c:43:42:38:16:66:f3:a5:5a:63:
00:f5:49:5f:d1:ed:5b:8e:89:77:4c:39:09:3d:bd:6f:73:3f:
45:fa:59:54:e8:e6:64:9a:6d:cc:7f:ca:91:39:36:40:4a:be:
6b:83:80:17:ef:89:0e:1d:20:6e:2e:66:47:cc:b4:51:b8:03:
88:3c:cf:e7:f5:60:ad:47:8e:77:1b:90:75:bf:2f:3c:b0:1b:
17:d4:05:12:eb:5b:83:7b:49:be:53:a8:26:7c:70:a2:6b:83:
08:68:71:63:6d:bd:11:25:a2:d6:3c:66:c1:5f:06:2f:50:1d:
93:90:00:82:7b:7b:48:0e:80:0a:4b:41:47:c7:d8:48:0f:57:
c1:5e:4f:1e:a2:34:85:9b:78:a6:57:3a:65:6a:e9:48:9c:8f:
32:b5:12:36:2d:e3:b4:eb:12:f9:e7:3d:43:da:9c:23:98:b6:
9b:70:d3:d8:66:ab:14:d6:2e:24:df:ca:02:8b:c2:04:40:01:
a8:0b:a5:e3:ba:4d:f7:a5:15:b3:a6:f4:05:04:ce:c7:68:92:
a5:5f:dc:eb:06:da:c1:f1:8f:fc:90:6a:14:d2:3c:29:ff:3f:
7f:8e:91:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:48:24 2025 by rpki-client