Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e38382e302f32342d3234203d3e20383334.roa
File: 37372e33372e38382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: lxYiZ8EMZiXq+S5a9F0sOkhR6CStx/lT+1sPHhlgs30=
Subject key identifier: 37:7F:9C:9E:D7:B2:C3:7A:10:82:7E:34:C0:C5:A6:26:FF:8E:9F:D9
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 351C21543C9C134E23137FD70E71908380E20C68
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e38382e302f32342d3234203d3e20383334.roa
Signing time: Sun 16 Apr 2023 00:00:13 +0000
ROA not before: Sat 15 Apr 2023 23:55:13 +0000
ROA not after: Sun 14 Apr 2024 00:00:13 +0000
asID: 834
IP address blocks: 77.37.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1c:21:54:3c:9c:13:4e:23:13:7f:d7:0e:71:90:83:80:e2:0c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Apr 15 23:55:13 2023 GMT
Not After : Apr 14 00:00:13 2024 GMT
Subject: CN=377F9C9ED7B2C37A10827E34C0C5A626FF8E9FD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:2f:eb:66:1c:83:5a:1b:13:40:00:da:a6:
b8:1f:cb:b7:00:9d:09:01:81:e6:59:d1:27:58:6a:
7c:ff:00:fd:2e:b3:f4:fb:6e:d5:da:5c:a2:d5:fa:
fe:a9:27:e1:f1:42:5c:36:07:cd:51:8a:ca:47:41:
54:75:f0:2f:36:14:1c:80:58:a3:b0:0a:9d:e1:b8:
73:e6:fc:29:f9:88:f3:16:c3:f0:62:b4:0d:80:22:
53:0c:eb:93:3a:d8:11:83:11:4c:b6:c0:6d:0b:5b:
29:ce:67:33:b0:b5:f8:4d:22:11:4d:e7:ea:96:9a:
e7:fa:16:d7:d4:fa:78:9d:b4:87:c0:61:12:b5:a4:
57:ac:25:fb:50:71:fd:54:0b:1a:19:87:81:8d:53:
12:74:4d:d2:67:12:23:a3:b3:50:66:79:ae:43:cc:
de:90:09:91:0b:63:fc:c1:50:93:51:b1:f3:2f:b6:
ff:55:7c:dd:cf:37:92:01:73:04:ac:f9:35:ea:5e:
db:c6:25:57:af:b1:8a:b1:7b:d9:33:7a:d7:71:2a:
2d:fe:0c:44:64:26:5a:f6:f2:f3:86:26:15:9a:c1:
0f:7d:dd:c6:05:d8:3a:a6:b9:11:17:3a:c1:45:7d:
27:c7:ba:b1:0f:f4:2e:c8:94:8b:99:04:21:3f:92:
e4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7F:9C:9E:D7:B2:C3:7A:10:82:7E:34:C0:C5:A6:26:FF:8E:9F:D9
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e38382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.88.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:79:41:5e:83:a3:61:c6:8f:e3:90:49:e3:be:0e:34:d6:a7:
8b:5a:85:3b:8d:e6:8b:d1:fd:b0:b7:e3:1d:14:12:2f:5c:51:
80:27:06:3a:c0:c7:0d:0d:f3:7b:c4:a0:55:f4:2d:ba:a0:9f:
25:85:f1:51:11:92:fe:1e:d4:ad:70:77:89:16:e4:b5:a0:32:
d2:56:6b:64:e2:b0:8d:47:6f:d4:ff:23:c6:ba:71:61:c9:89:
b9:9f:e7:92:d0:f5:8e:8b:31:e1:84:23:f4:c8:ac:47:18:b3:
a2:d8:68:d5:0a:fa:0b:9b:46:f1:d0:53:22:13:26:75:2f:f8:
48:e9:a6:20:3a:99:7e:41:d6:8c:57:27:f3:0c:1c:bd:4d:ed:
6c:8e:51:f4:d1:66:9e:94:44:59:d1:f1:c2:15:a8:45:43:14:
d0:ee:a9:bf:fd:c8:e2:c4:37:01:5f:b8:ff:5d:99:dd:99:da:
50:b2:c7:dd:f3:1c:88:0a:5b:26:85:87:cd:c4:71:3c:d6:d1:
9c:2f:2a:a2:0e:9d:5a:d0:39:f3:5e:d2:f9:b3:3b:c2:8d:0e:
2b:1e:87:ee:83:7e:84:2c:7d:aa:8d:ee:d7:55:31:1d:81:6a:
a2:78:e9:08:57:6e:98:c3:08:fa:6e:fe:7d:17:da:72:5e:4e:
71:d2:3d:3f
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgIUNRwhVDycE04jE3/XDnGQg4DiDGgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTgwNGQxZTJiMTI2MDA2YmZlNTA3OTYzNmE2YThkZGU1
YjdmZDlhNjAeFw0yMzA0MTUyMzU1MTNaFw0yNDA0MTQwMDAwMTNaMDMxMTAvBgNV
BAMTKDM3N0Y5QzlFRDdCMkMzN0ExMDgyN0UzNEMwQzVBNjI2RkY4RTlGRDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL8i/rZhyDWhsTQADaprgfy7cA
nQkBgeZZ0SdYanz/AP0us/T7btXaXKLV+v6pJ+HxQlw2B81RispHQVR18C82FByA
WKOwCp3huHPm/Cn5iPMWw/BitA2AIlMM65M62BGDEUy2wG0LWynOZzOwtfhNIhFN
5+qWmuf6FtfU+nidtIfAYRK1pFesJftQcf1UCxoZh4GNUxJ0TdJnEiOjs1Bmea5D
zN6QCZELY/zBUJNRsfMvtv9VfN3PN5IBcwSs+TXqXtvGJVevsYqxe9kzetdxKi3+
DERkJlr28vOGJhWawQ993cYF2DqmuREXOsFFfSfHurEP9C7IlIuZBCE/kuT7AgMB
AAGjggI1MIICMTAdBgNVHQ4EFgQUN3+cnteyw3oQgn40wMWmJv+On9kwHwYDVR0j
BBgwFoAUWATR4rEmAGv+UHljamqN3lt/2aYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMtNTczNy00YmVmLTljMzUtM2QxMTNjNmVl
ZTM3LzAvNTgwNEQxRTJCMTI2MDA2QkZFNTA3OTYzNkE2QThEREU1QjdGRDlBNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1dBVFI0ckVtQUd2LVVIbGphbXFOM2x0
XzJhWS5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDAzYTU0MmMt
NTczNy00YmVmLTljMzUtM2QxMTNjNmVlZTM3LzAvMzczNzJlMzMzNzJlMzgzODJl
MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE0lWDANBgkq
hkiG9w0BAQsFAAOCAQEAtHlBXoOjYcaP45BJ474ONNani1qFO43mi9H9sLfjHRQS
L1xRgCcGOsDHDQ3ze8SgVfQtuqCfJYXxURGS/h7UrXB3iRbktaAy0lZrZOKwjUdv
1P8jxrpxYcmJuZ/nktD1josx4YQj9MisRxizotho1Qr6C5tG8dBTIhMmdS/4SOmm
IDqZfkHWjFcn8wwcvU3tbI5R9NFmnpREWdHxwhWoRUMU0O6pv/3I4sQ3AV+4/12Z
3ZnaULLH3fMciApbJoWHzcRxPNbRnC8qog6dWtA5817S+bM7wo0OKx6H7oN+hCx9
qo3u11UxHYFqonjpCFdumMMI+m7+fRfacl5OcdI9Pw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:44:30 2025 by rpki-client