Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e39332e302f32342d3234203d3e20383334.roa
File: 37372e33372e39332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: dic51y26arZTUX+RD8HqMMywhMzi/wjrcvXCXYap9P0=
Subject key identifier: 7D:05:12:0B:3B:80:C5:46:EC:10:83:5A:C6:6C:8C:1A:9C:40:97:3C
Certificate issuer: /CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Certificate serial: 1981E0B9009377251FFBA0E44125038F65003CF6
Authority key identifier: 58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e39332e302f32342d3234203d3e20383334.roa
Signing time: Sun 02 Apr 2023 00:00:09 +0000
ROA not before: Sat 01 Apr 2023 23:55:09 +0000
ROA not after: Sun 31 Mar 2024 00:00:09 +0000
asID: 834
IP address blocks: 77.37.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:81:e0:b9:00:93:77:25:1f:fb:a0:e4:41:25:03:8f:65:00:3c:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5804d1e2b126006bfe5079636a6a8dde5b7fd9a6
Validity
Not Before: Apr 1 23:55:09 2023 GMT
Not After : Mar 31 00:00:09 2024 GMT
Subject: CN=7D05120B3B80C546EC10835AC66C8C1A9C40973C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:e1:11:61:d8:0c:42:6e:97:9b:5e:45:25:
d7:d0:55:5f:b4:60:b9:86:5d:fc:cb:eb:d0:b8:88:
aa:8b:07:8f:f0:8f:d2:a7:7a:ea:66:97:6b:31:d0:
9c:f1:24:c4:85:53:34:6f:43:5d:43:bf:5f:50:0a:
ce:5b:e5:fc:18:0c:49:17:96:6f:25:d2:22:0a:af:
8a:fc:3b:80:8b:d6:ef:af:bb:1f:5a:31:b1:8b:dd:
a9:69:48:36:9b:d9:94:7f:a2:db:5a:45:df:b9:6e:
f9:ab:b8:64:eb:e6:a3:fc:e4:9a:08:c2:1b:a3:56:
1a:fc:3c:ac:02:dc:f6:ab:76:24:de:13:52:ba:d8:
11:14:07:00:d6:e5:ad:c6:61:dc:3e:47:aa:ae:03:
29:24:d2:7b:0c:0a:31:86:58:23:65:96:51:11:08:
16:71:60:b1:88:f8:0b:e7:e0:07:5e:4a:99:09:c3:
07:66:63:1b:35:e9:c5:b6:e4:68:d9:e7:63:0e:fa:
26:5c:78:7c:63:57:b6:88:36:c3:b8:b2:42:a4:81:
80:41:14:01:23:93:4a:f7:30:cb:a4:a2:b4:20:9b:
cc:8e:37:78:bb:83:52:48:89:94:97:54:57:86:b2:
7b:83:79:eb:0c:9b:0a:db:af:db:51:1b:e8:58:cd:
aa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:05:12:0B:3B:80:C5:46:EC:10:83:5A:C6:6C:8C:1A:9C:40:97:3C
X509v3 Authority Key Identifier:
keyid:58:04:D1:E2:B1:26:00:6B:FE:50:79:63:6A:6A:8D:DE:5B:7F:D9:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/5804D1E2B126006BFE5079636A6A8DDE5B7FD9A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WATR4rEmAGv-UHljamqN3lt_2aY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/403a542c-5737-4bef-9c35-3d113c6eee37/0/37372e33372e39332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.93.0/24
Signature Algorithm: sha256WithRSAEncryption
71:7d:69:95:88:3b:37:ce:fa:99:4e:18:86:7d:8c:58:8a:ad:
ac:57:38:a2:8d:4a:52:d9:35:fc:1a:20:d9:bb:cc:75:ed:b2:
be:00:b5:7f:0e:87:f0:f0:05:87:83:64:a2:55:42:0f:ff:8b:
6e:ac:b6:27:bc:03:59:37:28:71:22:37:0c:e9:73:1f:a4:6a:
c4:fb:63:66:b5:c1:b8:97:36:fc:3b:66:6b:70:bc:d1:67:e1:
13:62:2d:f6:cf:5a:45:c9:0b:cf:17:dd:28:55:2c:9e:23:53:
25:d9:8a:a1:77:2c:5d:81:c2:fd:90:d9:ac:e5:96:6d:18:fa:
5e:f2:71:c7:7a:47:1a:21:86:57:9e:8e:d7:90:40:43:88:fe:
93:34:cf:01:8d:1d:25:ae:09:80:2b:a7:14:ec:0a:ec:48:56:
a1:22:60:74:28:ed:1f:0a:b5:0c:45:b4:45:e6:3c:97:e7:5b:
e0:ee:40:82:eb:5a:05:89:5c:0c:a2:2f:d5:a7:54:8a:68:6c:
57:a8:99:6a:ab:69:46:71:a6:a7:6b:7e:4d:b0:af:5d:45:77:
5d:d1:af:a0:56:0c:de:eb:6f:ac:e9:bb:a5:89:cb:ac:2f:14:
ab:67:82:9f:89:ff:b6:0f:ae:49:30:ea:b6:a7:0a:de:63:bd:
0f:fe:5e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:51:29 2025 by rpki-client