Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37362e302f32342d3234203d3e20383334.roa
File: 37372e33372e37362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Xm/8SrE8L+pumC78cKjra3U5bXsbn6ZdWkq5sBsNlM0=
Subject key identifier: 8B:EB:17:7C:A9:BA:83:42:B7:AB:6B:0D:C3:73:8E:09:0A:38:C2:6F
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 24F5DCA57C33A19137B0A76B47AA54531DCE2866
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37362e302f32342d3234203d3e20383334.roa
Signing time: Thu 11 May 2023 11:30:05 +0000
ROA not before: Thu 11 May 2023 11:25:05 +0000
ROA not after: Thu 09 May 2024 11:30:05 +0000
asID: 834
IP address blocks: 77.37.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:f5:dc:a5:7c:33:a1:91:37:b0:a7:6b:47:aa:54:53:1d:ce:28:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: May 11 11:25:05 2023 GMT
Not After : May 9 11:30:05 2024 GMT
Subject: CN=8BEB177CA9BA8342B7AB6B0DC3738E090A38C26F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:04:1f:f0:ff:27:20:95:bc:bb:85:9d:d6:b3:
89:aa:0d:c4:c6:7f:2f:24:01:bc:c3:69:39:b5:90:
8e:93:6c:d6:a6:f8:5e:a0:ac:0d:1a:d9:9e:d3:f4:
bb:87:2d:a9:98:f1:8f:f4:78:fe:10:d5:97:57:9e:
eb:85:df:ac:24:b7:2f:11:85:eb:dd:b1:8a:40:2f:
61:ae:3c:87:6a:9f:d6:37:96:63:04:38:25:9e:cc:
91:18:87:8b:df:d7:94:e1:e7:24:4d:bb:30:3a:b8:
8b:83:de:d5:e2:db:b4:08:7a:f3:e7:19:ae:d8:88:
77:a0:10:1f:f9:93:99:d5:29:4d:09:f5:5e:2d:c3:
df:78:3d:98:3e:c2:71:85:53:cb:e9:d1:71:ed:72:
fe:33:ef:ac:f3:0a:91:90:a8:28:48:1d:63:9d:15:
ae:19:5a:4e:fe:0c:e9:e5:2e:1b:ad:38:83:5d:14:
8b:90:79:5c:7d:20:66:bb:76:c4:c9:25:bc:0f:cc:
63:ed:81:54:47:f7:79:56:99:a8:19:2e:80:49:75:
21:8e:6d:c5:4f:b7:25:bf:ed:fe:0c:20:66:5f:fe:
9e:64:f4:f7:e8:86:e1:3a:e3:c9:16:11:5c:2b:20:
e7:59:59:9a:c1:18:0e:38:f9:6e:4c:ca:e7:51:13:
e1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EB:17:7C:A9:BA:83:42:B7:AB:6B:0D:C3:73:8E:09:0A:38:C2:6F
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:9c:19:2b:7a:11:1c:91:6a:8b:b4:e8:57:73:0a:9e:04:67:
c7:30:18:89:dd:d5:1c:8a:e3:82:10:f2:2d:65:dc:9d:5c:13:
bc:3c:04:a7:b1:2a:37:53:e3:4b:9f:0a:4c:6d:d9:81:13:10:
10:8f:2c:67:ec:0e:84:56:a0:7d:d5:9b:81:99:9f:9d:46:c9:
35:b7:73:7d:ac:82:02:0b:24:b8:79:ce:dc:2f:30:7b:7b:6a:
77:c5:76:a8:ca:2f:f7:a0:6d:35:85:8f:5f:ee:8c:3c:06:2b:
3f:5c:24:5d:f6:bd:cf:b9:73:44:c8:0f:db:35:85:63:51:52:
fe:a3:bd:59:cb:7a:c8:67:23:6e:92:71:e0:c6:c4:96:eb:c1:
04:69:5e:d1:06:4d:8a:bd:d4:da:3a:16:54:8e:42:12:e4:e8:
32:f3:fe:a3:5f:54:a5:2e:25:61:bb:43:11:c3:8d:db:2a:ba:
3a:e5:4b:23:c2:a0:a2:9b:b1:0b:dd:3e:4c:9e:4a:5f:18:a3:
2b:34:27:5c:d4:24:60:dc:ac:1b:71:14:82:e7:5e:75:18:01:
1c:24:1c:cb:73:5f:d6:cd:d3:4f:bb:78:07:7e:fc:47:78:b3:
9e:c4:0d:d8:e3:36:52:27:81:b6:34:80:02:1f:79:02:0c:9f:
02:7a:46:b0
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgIUJPXcpXwzoZE3sKdrR6pUUx3OKGYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTgwNGQxZTJiMTI2MDA2YmZlNTA3OTYzNmE2YThkZGU1
YjdmZDlhNjAeFw0yMzA1MTExMTI1MDVaFw0yNDA1MDkxMTMwMDVaMDMxMTAvBgNV
BAMTKDhCRUIxNzdDQTlCQTgzNDJCN0FCNkIwREMzNzM4RTA5MEEzOEMyNkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSBB/w/ycglby7hZ3Ws4mqDcTG
fy8kAbzDaTm1kI6TbNam+F6grA0a2Z7T9LuHLamY8Y/0eP4Q1ZdXnuuF36wkty8R
hevdsYpAL2GuPIdqn9Y3lmMEOCWezJEYh4vf15Th5yRNuzA6uIuD3tXi27QIevPn
Ga7YiHegEB/5k5nVKU0J9V4tw994PZg+wnGFU8vp0XHtcv4z76zzCpGQqChIHWOd
Fa4ZWk7+DOnlLhutOINdFIuQeVx9IGa7dsTJJbwPzGPtgVRH93lWmagZLoBJdSGO
bcVPtyW/7f4MIGZf/p5k9PfohuE648kWEVwrIOdZWZrBGA44+W5MyudRE+ENAgMB
AAGjggI1MIICMTAdBgNVHQ4EFgQUi+sXfKm6g0K3q2sNw3OOCQo4wm8wHwYDVR0j
BBgwFoAUWATR4rEmAGv+UHljamqN3lt/2aYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMtNTczNy00YmVmLTljMzUtM2QxMTNjNmVl
ZTM3LzAvNTgwNEQxRTJCMTI2MDA2QkZFNTA3OTYzNkE2QThEREU1QjdGRDlBNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1dBVFI0ckVtQUd2LVVIbGphbXFOM2x0
XzJhWS5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMt
NTczNy00YmVmLTljMzUtM2QxMTNjNmVlZTM3LzAvMzczNzJlMzMzNzJlMzczNjJl
MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE0lTDANBgkq
hkiG9w0BAQsFAAOCAQEAjJwZK3oRHJFqi7ToV3MKngRnxzAYid3VHIrjghDyLWXc
nVwTvDwEp7EqN1PjS58KTG3ZgRMQEI8sZ+wOhFagfdWbgZmfnUbJNbdzfayCAgsk
uHnO3C8we3tqd8V2qMov96BtNYWPX+6MPAYrP1wkXfa9z7lzRMgP2zWFY1FS/qO9
Wct6yGcjbpJx4MbEluvBBGle0QZNir3U2joWVI5CEuToMvP+o19UpS4lYbtDEcON
2yq6OuVLI8KgopuxC90+TJ5KXxijKzQnXNQkYNysG3EUgudedRgBHCQcy3Nf1s3T
T7t4B378R3iznsQN2OM2UieBtjSAAh95AgyfAnpGsA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:50:38 2025 by rpki-client