Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3T2TA-3zXK6KxS0wQsX9XIw2Nqw.roa
File: 3T2TA-3zXK6KxS0wQsX9XIw2Nqw.roa (raw, json)
Hash identifier: R8ptXBAoJVbwFM22MaVjGMyu+rLVOdI4NW4oUNwDCj4=
Subject key identifier: DD:3D:93:03:ED:F3:5C:AE:8A:C5:2D:30:42:C5:FD:5C:8C:36:36:AC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018837FFB5987B378F543A283A0AAC54D42E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3T2TA-3zXK6KxS0wQsX9XIw2Nqw.roa
Signing time: Sat 20 May 2023 07:11:24 +0000
ROA not before: Sat 20 May 2023 07:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:37:ff:b5:98:7b:37:8f:54:3a:28:3a:0a:ac:54:d4:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 20 07:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd3d9303edf35cae8ac52d3042c5fd5c8c3636ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:ea:6f:3b:b8:79:61:d9:82:bb:59:52:bb:
26:87:59:04:9f:7b:a7:6c:3c:1b:1d:da:83:26:1f:
17:4a:cd:ba:e7:26:dc:92:07:ce:de:31:17:0a:f4:
e6:76:e4:07:c8:a2:ce:52:64:b1:8a:fc:d6:a8:13:
61:d2:06:d5:36:f5:d5:2b:b4:a6:50:86:dd:63:a2:
b8:3b:10:f4:e4:2e:6b:0e:20:9f:d1:1d:78:e8:7a:
73:86:be:27:0b:02:ec:57:9f:32:7a:8a:d4:d0:0b:
e1:a5:1e:24:27:55:d9:1c:4b:ad:e7:ba:cc:1c:50:
7a:0a:9f:7c:57:57:11:59:99:ff:0f:86:c9:27:46:
a5:37:0c:e6:ce:84:0a:06:49:1d:89:21:86:c2:c4:
45:53:61:a9:fe:9c:61:31:d3:05:3b:3a:f2:84:32:
18:89:ce:52:2c:26:73:b9:1f:8c:86:26:c8:90:a4:
0d:84:ff:ac:ca:62:06:9e:c2:2e:a8:98:16:01:fa:
3e:95:9a:af:ef:d3:d0:22:be:97:fd:c1:45:fd:59:
2b:9c:8a:23:09:f2:4e:f1:10:30:45:60:91:6a:52:
4f:1d:b9:69:f4:98:4f:02:48:e0:24:fc:9f:bc:bb:
79:b9:65:7b:0e:ed:d9:fc:98:5b:e7:7a:37:d7:09:
d4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3D:93:03:ED:F3:5C:AE:8A:C5:2D:30:42:C5:FD:5C:8C:36:36:AC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3T2TA-3zXK6KxS0wQsX9XIw2Nqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:23:28:64:b9:ad:69:fb:7b:07:96:de:11:15:49:f4:18:19:
cd:c2:59:7b:f0:b9:a7:ae:8c:90:fa:18:58:14:91:b9:a8:c3:
79:35:6c:e8:cf:93:00:d4:51:95:c0:d6:e4:f0:ae:d8:29:de:
6b:c2:cb:a3:39:ed:19:65:46:26:e4:5f:cd:0a:43:64:75:af:
0b:f1:95:ac:71:ee:b4:56:ed:4c:fd:6c:41:b5:bc:61:0a:bc:
0d:bd:a4:f7:de:6f:af:ca:c6:9d:59:d9:45:a5:d1:30:77:87:
b9:0e:a6:7b:77:a8:ad:e4:fa:24:ca:d8:65:ef:d9:e8:7c:5c:
bc:fe:7d:86:dc:6c:04:9a:85:2f:ad:3b:7f:a4:34:bc:a7:3f:
8b:e6:66:be:3e:d2:33:83:d5:79:56:38:b6:e8:f6:a3:b5:bd:
6d:59:f3:79:9e:b0:0e:29:ea:7a:95:54:55:9a:08:ce:e5:80:
ca:ca:68:58:84:51:5a:66:21:cd:2e:39:71:47:ce:a5:cb:93:
36:77:24:17:5e:89:78:72:3c:49:8e:af:99:7f:24:2d:82:79:
08:8f:42:74:c9:12:21:ac:2a:22:8c:87:09:08:d8:38:45:c4:
4b:87:37:4b:ff:f3:16:44:af:d9:91:f8:4f:ac:00:76:92:b2:
82:6e:38:9f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYg3/7WYezePVDooOgqsVNQuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMDQ3YmUxNWIyNzU5MDJkY2Y2MTdkYzNkMGUxNmRjMWYz
MDgwMjIwHhcNMjMwNTIwMDcxMTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDNkOTMwM2VkZjM1Y2FlOGFjNTJkMzA0MmM1ZmQ1YzhjMzYzNmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyHqbzu4eWHZgrtZUrsmh1kEn3un
bDwbHdqDJh8XSs265ybckgfO3jEXCvTmduQHyKLOUmSxivzWqBNh0gbVNvXVK7Sm
UIbdY6K4OxD05C5rDiCf0R146Hpzhr4nCwLsV58yeorU0AvhpR4kJ1XZHEut57rM
HFB6Cp98V1cRWZn/D4bJJ0alNwzmzoQKBkkdiSGGwsRFU2Gp/pxhMdMFOzryhDIY
ic5SLCZzuR+MhibIkKQNhP+symIGnsIuqJgWAfo+lZqv79PQIr6X/cFF/VkrnIoj
CfJO8RAwRWCRalJPHblp9JhPAkjgJPyfvLt5uWV7Du3Z/Jhb53o31wnUaQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFN09kwPt81yuisUtMELF/VyMNjasMB8GA1UdIwQY
MBaAFHIEe+FbJ1kC3PYX3D0OFtwfMIAiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMt
MWFiZTNhYzEwYWE2LzEvM1QyVEEtM3pYSzZLeFMwd1FzWDlYSXcyTnF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83OTg0NDctMjFmNC00NWFiLTk5ZGMtMWFiZTNhYzEwYWE2
LzEvY2dSNzRWc25XUUxjOWhmY1BRNFczQjh3Z0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHUjKGS5rWn7eweW3hEV
SfQYGc3CWXvwuaeujJD6GFgUkbmow3k1bOjPkwDUUZXA1uTwrtgp3mvCy6M57Rll
RibkX80KQ2R1rwvxlaxx7rRW7Uz9bEG1vGEKvA29pPfeb6/Kxp1Z2UWl0TB3h7kO
pnt3qK3k+iTK2GXv2eh8XLz+fYbcbASahS+tO3+kNLynP4vmZr4+0jOD1XlWOLbo
9qO1vW1Z83mesA4p6nqVVFWaCM7lgMrKaFiEUVpmIc0uOXFHzqXLkzZ3JBdeiXhy
PEmOr5l/JC2CeQiPQnTJEiGsKiKMhwkI2DhFxEuHN0v/8xZEr9mR+E+sAHaSsoJu
OJ8=
-----END CERTIFICATE-----
Generated at Thu May 1 00:42:03 2025 by rpki-client