Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37372e302f32342d3234203d3e20393833.roa
File: 37372e33372e37372e302f32342d3234203d3e20393833.roa (raw, json)
Hash identifier: otiw2/1FkpwE+xpq6pdNhwnbSCZFOjZ+eR5TPt49pYc=
Subject key identifier: 14:C4:BB:FA:66:E7:37:34:27:12:E5:61:09:2F:57:7B:27:EE:1C:AA
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 745B4DF116093034FC8E704CB412F684C1BCAF0D
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37372e302f32342d3234203d3e20393833.roa
Signing time: Fri 20 Jan 2023 06:26:09 +0000
ROA not before: Fri 20 Jan 2023 06:21:09 +0000
ROA not after: Fri 19 Jan 2024 06:26:09 +0000
asID: 983
IP address blocks: 77.37.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:5b:4d:f1:16:09:30:34:fc:8e:70:4c:b4:12:f6:84:c1:bc:af:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Jan 20 06:21:09 2023 GMT
Not After : Jan 19 06:26:09 2024 GMT
Subject: CN=14C4BBFA66E737342712E561092F577B27EE1CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:e2:2f:e3:28:02:5f:5d:57:af:cf:45:09:
a2:81:cb:0d:62:40:c0:30:f2:39:0a:72:5e:d5:73:
aa:a4:b8:6a:bd:7b:bf:04:78:29:cf:20:1b:74:d3:
14:03:6b:25:66:fe:1b:a5:55:fd:6f:01:4d:02:50:
f8:5b:ec:66:92:e1:9c:cb:3b:50:a6:61:e3:4a:86:
ed:73:31:32:ac:44:bd:0c:3e:e1:2a:80:cb:6a:1c:
3e:33:18:7f:e6:6b:19:fa:8a:28:3b:c9:05:68:6e:
9b:4a:d4:f3:6d:20:37:02:6d:4f:32:c3:79:da:39:
41:90:2f:fd:f9:46:53:12:86:72:63:65:64:59:e4:
bb:f8:2b:17:f8:4e:50:26:bc:35:5c:0c:c4:bf:ae:
77:b1:a8:46:40:f3:4b:3b:31:39:34:84:49:f4:7a:
69:59:71:44:86:aa:90:a6:03:35:43:b0:83:d2:07:
2c:a8:d1:83:22:26:f4:fa:81:44:fd:b2:80:97:79:
0b:79:20:89:3c:a8:d4:9c:9e:5f:4d:53:54:67:73:
ff:8e:78:ae:8f:09:87:d3:8e:cc:7b:5a:a4:87:e8:
46:01:bf:c7:b9:f8:bf:d3:95:84:de:ea:2e:92:99:
df:e8:9a:e7:f0:54:94:08:22:a6:c9:4f:86:58:de:
20:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C4:BB:FA:66:E7:37:34:27:12:E5:61:09:2F:57:7B:27:EE:1C:AA
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e37372e302f32342d3234203d3e20393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.77.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a4:33:07:9d:6a:55:29:1e:97:4c:6a:31:d8:72:10:80:f4:
94:f4:c8:d1:c4:49:28:cd:37:27:9c:54:18:45:10:fc:4b:bc:
d2:7c:a4:98:a6:63:69:2e:2d:4b:0d:6f:6e:e7:34:bb:0c:02:
7b:0b:cb:a8:6a:13:d6:80:04:c9:ad:c2:c5:ba:aa:23:0d:ec:
43:53:ce:bf:ae:d4:02:56:7b:52:80:d2:e7:da:77:ff:f4:cd:
c6:ad:51:41:65:a8:fa:e9:62:f7:a4:a4:9a:7e:c3:fa:97:65:
89:e8:61:94:b9:9f:c1:32:c3:c8:55:d5:3d:96:4e:b5:fb:6d:
a5:8b:f4:22:10:7a:12:16:b0:57:78:ab:b5:7f:cf:d4:f6:79:
68:6b:48:41:e9:bc:10:c4:9b:72:62:2c:1b:08:11:af:c1:1a:
34:27:ff:28:a4:6f:c9:34:48:2a:a9:82:eb:d5:b5:97:c1:72:
da:19:be:09:41:5c:31:e5:1f:8e:7f:e6:b8:e9:80:61:96:2d:
3c:a3:df:78:61:ec:bf:95:78:7c:43:1d:44:a9:cd:91:fd:5a:
57:f1:5f:b0:45:f0:ba:32:1d:24:d2:91:3a:35:d2:60:81:91:
b6:1d:61:39:ab:93:fa:5a:7f:02:e9:fa:91:b4:c4:cf:04:85:
2c:45:a2:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:47:22 2025 by rpki-client