Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
File: 326131343a366634303a3a2f32392d3438203d3e20323030323432.roa (raw, json)
Hash identifier: x7hOPFZjN7RZHBsYqLnDpQUy2G9KH75g5Bkk7YCqeYo=
Subject key identifier: 0C:C9:1D:F7:04:DF:6F:DF:61:95:46:98:7E:87:EC:ED:4F:9F:86:7D
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 19B1D76480111490BDD6B4C665255B6B6A564764
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
Signing time: Tue 01 Jul 2025 18:43:51 +0000
ROA not before: Tue 01 Jul 2025 18:38:51 +0000
ROA not after: Tue 30 Jun 2026 18:43:51 +0000
asID: 200242
IP address blocks: 2a14:6f40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 09:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b1:d7:64:80:11:14:90:bd:d6:b4:c6:65:25:5b:6b:6a:56:47:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jul 1 18:38:51 2025 GMT
Not After : Jun 30 18:43:51 2026 GMT
Subject: CN=0CC91DF704DF6FDF619546987E87ECED4F9F867D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:13:4b:07:63:04:4d:d5:17:ef:b6:07:17:
00:bc:15:88:24:79:62:70:ce:3a:7a:e9:ef:19:bb:
c6:6a:31:a3:0f:57:55:93:90:90:eb:9d:fa:4c:3f:
27:dd:4e:1a:f7:db:01:c6:9a:91:1d:2d:8a:2c:64:
8f:f1:02:6c:03:cf:d3:7f:78:c5:9e:3a:85:fc:71:
e6:e4:69:dc:30:4d:de:cd:7b:ef:90:cc:19:6d:b9:
03:5a:6f:9d:fc:b1:a8:cd:d7:f0:17:7d:4a:a3:14:
4a:8b:c4:b7:58:86:16:b5:d5:65:1e:b2:92:6b:6c:
93:4b:40:8d:40:de:70:7b:5c:db:1c:dd:e2:da:9b:
1a:fb:3c:81:42:a8:d4:0f:cc:3a:e0:5a:2a:b1:82:
eb:80:7d:1b:8f:0a:8e:c1:88:47:8b:36:09:98:06:
2d:38:63:f5:c4:13:77:3b:6e:c5:ff:fd:21:05:5c:
84:22:21:df:41:90:fa:d4:4f:78:d8:35:a9:1c:40:
c0:25:e6:23:ad:c6:81:1a:47:c3:d8:15:88:94:25:
73:c7:e0:6a:32:c3:a6:7a:c7:0d:ef:e4:85:95:5f:
72:96:3f:fb:5d:c3:e4:87:7f:90:81:40:8a:d7:0a:
8c:5f:e1:f6:34:1d:47:91:19:30:8a:41:70:8e:13:
01:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C9:1D:F7:04:DF:6F:DF:61:95:46:98:7E:87:EC:ED:4F:9F:86:7D
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f40::/29
Signature Algorithm: sha256WithRSAEncryption
58:b2:17:db:bd:ea:a6:68:73:46:a4:78:57:32:24:88:4e:95:
bb:1d:d7:5d:71:0d:b7:30:78:3d:3e:f0:a3:62:27:98:12:87:
60:22:5a:91:41:13:18:3e:f8:31:2a:f6:25:1e:cd:56:7b:46:
e5:2e:b3:47:12:d9:29:fc:1d:f7:fb:54:00:7a:29:8d:5e:20:
85:d3:c8:a7:dd:76:86:14:f5:3b:ea:20:d6:17:09:3b:72:7a:
97:56:b6:cc:73:10:72:9b:84:10:b6:15:97:7b:f7:b4:6d:64:
8f:a7:48:96:a7:66:c7:4e:8a:b7:25:4b:29:82:74:66:5b:ff:
30:5f:e2:8f:a3:eb:3b:56:72:8f:60:e0:74:bb:ef:09:68:2e:
7e:04:98:23:62:d3:30:66:b5:c4:ef:8b:ed:7c:c6:d1:ac:25:
e7:bb:0f:9f:28:db:4d:33:87:7e:9c:99:82:6b:4b:4f:59:32:
46:0d:9f:4d:4b:52:c0:05:b1:58:00:30:bc:91:68:9b:a9:a6:
5e:6a:88:66:f6:d0:4a:93:8e:35:b6:23:07:1b:b5:c1:e7:54:
d1:47:33:2b:3d:ba:f5:71:71:99:1f:69:a9:70:d0:96:cd:59:
db:34:f3:3f:e2:a3:db:87:c4:4d:e0:82:85:35:69:17:26:ed:
a9:75:9a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:12:25 2025 by rpki-client