Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/njGgKFMMQYCCOcUQU9FLXyns41E.roa
File: njGgKFMMQYCCOcUQU9FLXyns41E.roa (raw, json)
Hash identifier: mOXzfRSGU/yibvLqtvjYzBQ5Qk8Adr7qWGYN92JzeoI=
Subject key identifier: 9E:31:A0:28:53:0C:41:80:82:39:C5:10:53:D1:4B:5F:29:EC:E3:51
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 019420D63CB75A489D69F340B46F11CC57A8
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/njGgKFMMQYCCOcUQU9FLXyns41E.roa
Signing time: Wed 01 Jan 2025 07:48:18 +0000
ROA not before: Wed 01 Jan 2025 07:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203105
IP address blocks: 2a07:22c1:40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:3c:b7:5a:48:9d:69:f3:40:b4:6f:11:cc:57:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 07:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e31a028530c41808239c51053d14b5f29ece351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9b:0d:ee:fb:a9:39:b1:97:a8:e8:59:58:e4:
1b:52:6f:19:cd:c2:2a:cc:f3:55:d8:93:27:0a:39:
90:b7:da:3a:fb:63:b6:a9:e7:70:37:f7:22:09:98:
d0:52:a8:b1:3e:8b:fd:12:55:de:69:a8:34:dc:6a:
1f:ce:66:d9:ad:52:a7:aa:5a:36:83:e2:aa:d2:ea:
25:48:a7:bf:1f:21:3f:25:68:f1:d6:cc:35:d4:8d:
72:a5:a0:5c:21:6a:e7:48:7d:39:16:db:fa:95:ef:
53:c0:b4:f9:c2:54:a2:50:8e:76:dc:90:2b:b8:35:
12:c7:b6:ae:35:6e:1b:4f:ea:23:63:a0:ed:30:98:
f2:80:5e:66:9a:48:f1:92:46:d9:28:24:be:d8:56:
d8:64:d5:f3:3c:ca:a4:0c:a6:31:d9:20:f8:96:f7:
06:c0:cf:cd:a7:78:c2:f9:0e:4d:3d:3d:0e:f0:26:
7d:24:09:87:06:57:53:55:27:bf:75:ca:26:25:74:
30:96:33:a6:1c:1b:b6:63:86:d4:6b:0d:df:eb:66:
1c:1a:04:d3:43:43:1c:7b:8a:e3:44:3b:bd:d1:22:
ad:01:5b:82:00:b6:e0:1f:ec:ea:25:84:ae:6b:65:
a5:59:8c:b7:20:4d:9b:ad:48:c9:3e:10:0f:fe:ad:
13:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:31:A0:28:53:0C:41:80:82:39:C5:10:53:D1:4B:5F:29:EC:E3:51
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/njGgKFMMQYCCOcUQU9FLXyns41E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:40::/48
Signature Algorithm: sha256WithRSAEncryption
75:bc:53:98:55:70:a0:53:e3:42:13:18:35:2e:a0:73:29:ac:
8b:f0:51:98:37:7d:11:46:80:2d:5b:40:1c:ce:7e:50:54:d7:
3c:66:37:48:47:19:ab:53:e9:65:78:fe:a6:44:95:e7:5a:31:
24:f9:c7:21:ae:4d:dc:71:6a:4c:8d:8b:1f:10:68:16:f1:a0:
fe:12:5f:f4:cf:f0:f1:7d:49:6c:6c:e6:7e:44:e2:fe:c7:da:
5f:e5:15:7e:f0:2b:e0:b1:6d:5a:ec:b1:75:d6:93:9f:51:f4:
ca:19:ff:63:cc:ce:05:30:04:e8:f1:a2:73:80:8a:b2:44:0e:
b2:7d:91:8f:89:48:4b:be:c2:e6:7b:7d:fc:7b:de:bd:4a:c0:
9b:77:49:36:04:65:33:cb:67:50:c1:21:59:ed:7b:d2:2d:4f:
d8:dd:6e:31:7d:5f:75:79:90:c5:1d:35:92:e0:0f:a4:28:45:
ee:a3:98:32:a9:2c:17:b4:67:af:ad:af:4a:3b:3a:52:ad:b6:
97:13:37:ad:ba:92:dd:dc:6e:6b:fd:2d:d9:fd:f8:7c:87:0d:
28:0b:c5:6d:2a:2d:f1:e8:6b:6c:8a:87:52:1b:c8:c5:9f:d3:
a3:cc:7b:db:c7:29:af:18:04:70:2b:28:e5:95:28:b3:9c:84:
52:a4:e6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:50:04 2025 by rpki-client