Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
File: 37372e3234332e38342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 4+veJSu7kg3cvuywP8PuXeT/0WCKN1aoOaxl9oPsyXs=
Subject key identifier: BF:AA:96:6F:3F:FA:B6:48:27:D2:4E:A8:89:32:C1:C1:25:E3:B9:59
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 3A3B7313157E5F15607D76BC6B718B3FD1A26F2C
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:12 +0000
ROA not before: Fri 27 Dec 2024 11:42:12 +0000
ROA not after: Fri 26 Dec 2025 11:47:12 +0000
asID: 136787
IP address blocks: 77.243.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:3b:73:13:15:7e:5f:15:60:7d:76:bc:6b:71:8b:3f:d1:a2:6f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:12 2024 GMT
Not After : Dec 26 11:47:12 2025 GMT
Subject: CN=BFAA966F3FFAB64827D24EA88932C1C125E3B959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2c:d2:f6:5b:eb:ff:92:2c:5d:fa:9d:79:e2:
de:45:1f:8f:0a:ed:09:7e:28:e1:f7:97:7a:9e:52:
eb:e7:72:35:f6:36:06:f0:f6:84:26:d6:60:b5:ca:
d4:44:93:1a:d2:8a:dd:b2:24:53:00:58:ba:66:5c:
ff:68:a7:2f:25:77:fd:17:04:c8:85:d1:a6:d2:3d:
f4:6f:81:74:2a:1a:87:d0:c8:4f:59:2a:01:16:dd:
60:9c:70:fe:69:86:d7:d7:74:58:f0:eb:ec:da:b6:
ad:8b:4f:ae:f1:ea:2b:b2:fb:3a:b3:10:b1:2e:04:
92:c9:93:60:0b:26:07:83:3d:57:c4:da:d6:a9:fe:
e5:82:a5:c2:a0:70:7d:60:dc:84:89:64:ca:90:82:
cb:3c:e5:fe:1d:0d:3e:35:25:f9:e8:e4:0a:95:bc:
54:96:27:76:3f:0b:e3:4d:53:4e:f7:28:3a:63:1a:
32:d0:13:be:d6:10:b5:84:ff:9a:3a:e6:25:ce:99:
6f:40:b5:94:dc:49:5d:43:6f:44:44:18:8a:b9:36:
10:94:b9:55:43:88:24:f1:0b:ff:4f:d4:2c:6f:03:
ca:43:fe:77:58:97:6b:c3:ea:82:0e:9d:db:8d:11:
f7:1a:19:06:c2:32:a0:8c:0e:d6:41:83:ad:05:ae:
71:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AA:96:6F:3F:FA:B6:48:27:D2:4E:A8:89:32:C1:C1:25:E3:B9:59
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.84.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:35:77:05:2f:28:ff:0a:7a:37:88:49:41:90:15:25:e6:7c:
65:c9:b0:e0:74:fa:0e:f1:7a:f5:17:12:5b:e3:db:ae:15:6a:
b1:4a:37:df:51:b2:6a:3e:3c:f3:51:60:23:e6:52:6a:8d:7c:
af:ad:f3:88:70:e7:c2:26:3a:56:82:97:ec:7d:02:dd:d3:e5:
a1:75:1c:be:a1:e8:43:a3:2d:86:b2:18:02:cb:5c:45:e8:99:
01:de:c1:5e:8f:8c:47:23:a3:2e:69:7b:3b:bb:a2:53:bd:24:
77:1b:28:6d:14:ba:40:9c:97:dd:54:5e:68:5b:47:7c:f8:4d:
59:7b:b5:6e:d3:28:ac:11:a4:48:a0:2d:75:fb:9c:74:10:a3:
52:3e:0b:ae:8b:e8:aa:ac:dc:6d:38:0b:82:53:d1:fc:5e:05:
32:83:fe:c4:de:35:56:62:d0:79:44:b6:84:d2:a2:cb:ef:cc:
e2:84:23:db:9a:83:1f:6d:eb:68:97:01:32:0d:bc:34:a4:c5:
1e:a4:d2:36:f3:28:65:1a:a2:b1:89:b9:fa:0f:2b:39:88:31:
70:fc:c5:ae:d0:06:45:6f:07:c2:28:c2:4d:0f:fd:b9:ad:35:
48:8c:6c:6f:57:23:4e:4b:d6:0f:fa:45:d9:38:5c:b6:b3:e1:
4d:7c:98:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:55:19 2025 by rpki-client