Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ndpwXQr0DFZEYAa1c0O-3LbE2d0.roa
File: ndpwXQr0DFZEYAa1c0O-3LbE2d0.roa (raw, json)
Hash identifier: vPOmxM9kg1tTyYliwSKFemIpfx1XBUWworUDWjHCOrs=
Subject key identifier: 9D:DA:70:5D:0A:F4:0C:56:44:60:06:B5:73:43:BE:DC:B6:C4:D9:DD
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 019424459704C374E5DCCAA2D14EE43EFF6E
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ndpwXQr0DFZEYAa1c0O-3LbE2d0.roa
Signing time: Wed 01 Jan 2025 23:48:47 +0000
ROA not before: Wed 01 Jan 2025 23:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213388
IP address blocks: 2a05:4144::/40 maxlen: 40
2a05:4144:100::/40 maxlen: 40
2a05:4144:200::/40 maxlen: 40
2a05:4144:300::/40 maxlen: 40
2a05:4144:400::/40 maxlen: 40
2a05:4144:500::/40 maxlen: 40
2a05:4144:600::/40 maxlen: 40
2a05:4144:700::/40 maxlen: 40
2a05:4144:800::/40 maxlen: 40
2a05:4144:900::/40 maxlen: 40
2a05:4144:a00::/40 maxlen: 40
2a05:4144:b00::/40 maxlen: 40
2a05:4144:c00::/40 maxlen: 40
2a05:4144:d00::/40 maxlen: 40
2a05:4144:e00::/40 maxlen: 40
2a05:4144:1000::/40 maxlen: 40
2a05:4144:1100::/40 maxlen: 40
2a05:4144:1200::/40 maxlen: 40
2a05:4144:1300::/40 maxlen: 40
2a05:4144:1400::/40 maxlen: 40
2a05:4144:1500::/40 maxlen: 40
2a05:4144:1600::/40 maxlen: 40
2a05:4144:1700::/40 maxlen: 40
2a05:4144:1800::/40 maxlen: 40
2a05:4144:1900::/40 maxlen: 40
2a05:4144:1a00::/40 maxlen: 40
2a05:4144:1b00::/40 maxlen: 40
2a05:4144:1c00::/40 maxlen: 40
2a05:4144:1d00::/40 maxlen: 40
2a05:4144:1e00::/40 maxlen: 40
2a05:4144:2000::/40 maxlen: 40
2a05:4144:2100::/40 maxlen: 40
2a05:4144:2200::/40 maxlen: 40
2a05:4144:2300::/40 maxlen: 40
2a05:4144:2400::/40 maxlen: 40
2a05:4144:2500::/40 maxlen: 40
2a05:4144:2600::/40 maxlen: 40
2a05:4144:2700::/40 maxlen: 40
2a05:4144:2800::/40 maxlen: 40
2a05:4144:2900::/40 maxlen: 40
2a05:4144:2a00::/40 maxlen: 40
2a05:4144:2b00::/40 maxlen: 40
2a05:4144:2c00::/40 maxlen: 40
2a05:4144:2d00::/40 maxlen: 40
2a05:4144:2e00::/40 maxlen: 40
2a05:4144:3000::/40 maxlen: 40
2a05:4144:3100::/40 maxlen: 40
2a05:4144:3200::/40 maxlen: 40
2a05:4144:3300::/40 maxlen: 40
2a05:4144:3400::/40 maxlen: 40
2a05:4144:3500::/40 maxlen: 40
2a05:4144:3600::/40 maxlen: 40
2a05:4144:3700::/40 maxlen: 40
2a05:4144:3800::/40 maxlen: 40
2a05:4144:3900::/40 maxlen: 40
2a05:4144:3a00::/40 maxlen: 40
2a05:4144:3b00::/40 maxlen: 40
2a05:4144:3c00::/40 maxlen: 40
2a05:4144:3d00::/40 maxlen: 40
2a05:4144:3e00::/40 maxlen: 40
2a05:4144:4000::/40 maxlen: 40
2a05:4144:4100::/40 maxlen: 40
2a05:4144:4200::/40 maxlen: 40
2a05:4144:4300::/40 maxlen: 40
2a05:4144:4400::/40 maxlen: 40
2a05:4144:4500::/40 maxlen: 40
2a05:4144:4600::/40 maxlen: 40
2a05:4144:4700::/40 maxlen: 40
2a05:4144:4800::/40 maxlen: 40
2a05:4144:4900::/40 maxlen: 40
2a05:4144:4a00::/40 maxlen: 40
2a05:4144:4b00::/40 maxlen: 40
2a05:4144:4c00::/40 maxlen: 40
2a05:4144:4d00::/40 maxlen: 40
2a05:4144:4e00::/40 maxlen: 40
2a05:4144:5000::/40 maxlen: 40
2a05:4144:5100::/40 maxlen: 40
2a05:4144:5200::/40 maxlen: 40
2a05:4144:5300::/40 maxlen: 40
2a05:4144:5400::/40 maxlen: 40
2a05:4144:5500::/40 maxlen: 40
2a05:4144:5600::/40 maxlen: 40
2a05:4144:5700::/40 maxlen: 40
2a05:4144:5800::/40 maxlen: 40
2a05:4144:5900::/40 maxlen: 40
2a05:4144:5a00::/40 maxlen: 40
2a05:4144:5b00::/40 maxlen: 40
2a05:4144:5c00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:97:04:c3:74:e5:dc:ca:a2:d1:4e:e4:3e:ff:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 23:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9dda705d0af40c56446006b57343bedcb6c4d9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:24:f2:ab:fa:9c:fb:b6:3e:bb:34:ac:d3:
28:1a:d4:24:d9:18:b2:4f:48:0c:fb:57:4a:d7:88:
84:3c:59:1c:9f:39:0a:59:ad:68:b0:fb:2a:02:3a:
e1:95:15:72:55:dc:89:ac:30:8d:d4:c8:e5:a9:7b:
02:b4:c6:84:ba:10:95:f6:58:b2:0a:31:7f:c0:cc:
c7:c4:79:ed:ac:8a:83:a4:4e:ef:d3:27:34:f9:6f:
aa:d1:0e:d3:cb:96:aa:22:82:c8:55:65:ba:25:28:
54:f4:df:c8:ce:e1:b1:03:bd:71:a7:0e:82:0c:fd:
94:19:53:7b:a2:9c:75:df:6b:13:d3:16:5e:34:f9:
ed:86:d3:17:23:12:8a:bb:84:c0:30:d0:4a:cb:cd:
2b:18:ae:3e:78:3e:a6:c2:01:46:39:16:a6:e4:a5:
66:ce:60:28:87:c6:c4:46:06:08:5d:69:e4:d8:b7:
15:f7:3d:43:ea:be:1d:0b:41:8a:12:d6:e1:a4:c2:
3d:c5:3c:5a:a1:e4:96:a4:d5:e5:fd:cb:a4:b7:f8:
18:51:e9:83:c2:c7:5e:ce:a4:e9:02:b3:b5:ae:c3:
0b:af:19:45:60:27:47:00:45:7d:a8:fa:59:72:c0:
68:94:47:51:ed:bb:44:4c:49:bf:4b:1f:36:23:54:
56:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DA:70:5D:0A:F4:0C:56:44:60:06:B5:73:43:BE:DC:B6:C4:D9:DD
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/ndpwXQr0DFZEYAa1c0O-3LbE2d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4144::-2a05:4144:eff:ffff:ffff:ffff:ffff:ffff
2a05:4144:1000::-2a05:4144:1eff:ffff:ffff:ffff:ffff:ffff
2a05:4144:2000::-2a05:4144:2eff:ffff:ffff:ffff:ffff:ffff
2a05:4144:3000::-2a05:4144:3eff:ffff:ffff:ffff:ffff:ffff
2a05:4144:4000::-2a05:4144:4eff:ffff:ffff:ffff:ffff:ffff
2a05:4144:5000::-2a05:4144:5cff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2f:1e:97:88:57:c8:0f:22:7f:0a:13:e6:ae:c4:bb:16:83:90:
62:4a:06:e8:66:8e:fa:d0:d3:56:07:fd:20:7f:53:e9:5b:65:
85:6e:99:02:e1:64:d2:c5:7d:8c:1a:50:35:90:95:fe:ad:49:
0a:d5:a9:9e:f0:bf:ec:f9:05:18:14:4d:eb:f6:4a:c6:8c:d6:
9b:c3:07:15:46:92:b9:11:0f:89:d2:96:34:bd:04:64:2d:22:
4a:d7:2c:82:21:97:f4:f9:a8:4e:93:d8:2b:d8:06:6b:0e:01:
25:d6:f6:32:f9:29:66:fa:1f:a1:4a:6f:e5:e9:d2:22:4f:26:
9a:40:94:93:29:8e:86:38:32:ed:55:e3:7f:21:ea:5a:25:43:
2f:d5:a4:89:6f:78:be:6f:80:c7:e3:ad:d8:21:d6:9c:f5:06:
a1:8f:0c:49:2e:ad:36:62:b7:bd:83:f0:a6:ed:11:ef:6f:90:
ae:f1:82:e3:91:fb:d8:2a:c6:fc:ad:57:a7:16:4e:cc:51:62:
d8:42:f4:aa:f3:62:fd:aa:66:76:d3:fa:fe:de:ba:56:e5:c4:
a9:8c:e5:1a:40:12:55:22:ba:fb:08:ea:0d:27:8d:0f:c5:3c:
61:43:9c:4c:82:6f:91:33:a5:66:51:4b:b1:36:3c:5d:d7:2f:
35:15:c8:3c
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAZQkRZcEw3Tl3Mqi0U7kPv9uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjUwMTAxMjM0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZGRhNzA1ZDBhZjQwYzU2NDQ2MDA2YjU3MzQzYmVkY2I2YzRkOWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0Ik8qv6nPu2Prs0rNMoGtQk2Riy
T0gM+1dK14iEPFkcnzkKWa1osPsqAjrhlRVyVdyJrDCN1MjlqXsCtMaEuhCV9liy
CjF/wMzHxHntrIqDpE7v0yc0+W+q0Q7Ty5aqIoLIVWW6JShU9N/IzuGxA71xpw6C
DP2UGVN7opx132sT0xZeNPnthtMXIxKKu4TAMNBKy80rGK4+eD6mwgFGORam5KVm
zmAoh8bERgYIXWnk2LcV9z1D6r4dC0GKEtbhpMI9xTxaoeSWpNXl/cukt/gYUemD
wsdezqTpArO1rsMLrxlFYCdHAEV9qPpZcsBolEdR7btETEm/Sx82I1RW5wIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFJ3acF0K9AxWRGAGtXNDvty2xNndMB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvbmRwd1hRcjBERlpFWUFhMWMwTy0zTGJFMmQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwcQQCAAIwazAPAwUCKgVB
RAMGACoFQUQOMBADBgQqBUFEEAMGACoFQUQeMBADBgUqBUFEIAMGACoFQUQuMBAD
BgQqBUFEMAMGACoFQUQ+MBADBgYqBUFEQAMGACoFQUROMBADBgQqBUFEUAMGACoF
QURcMA0GCSqGSIb3DQEBCwUAA4IBAQAvHpeIV8gPIn8KE+auxLsWg5BiSgboZo76
0NNWB/0gf1PpW2WFbpkC4WTSxX2MGlA1kJX+rUkK1ame8L/s+QUYFE3r9krGjNab
wwcVRpK5EQ+J0pY0vQRkLSJK1yyCIZf0+ahOk9gr2AZrDgEl1vYy+Slm+h+hSm/l
6dIiTyaaQJSTKY6GODLtVeN/IepaJUMv1aSJb3i+b4DH463YIdac9QahjwxJLq02
Yre9g/Cm7RHvb5Cu8YLjkfvYKsb8rVenFk7MUWLYQvSq82L9qmZ20/r+3rpW5cSp
jOUaQBJVIrr7COoNJ40PxTxhQ5xMgm+RM6VmUUuxNjxd1y81Fcg8
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net