Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
File: 326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa (raw, json)
Hash identifier: FmiBX7ObUBJXMx50BEJxB5rcHYX/1xnmOVK+ALpTHJE=
Subject key identifier: 7F:D5:BC:35:C2:F4:CF:54:8D:0E:74:26:5A:33:30:54:C5:5B:60:38
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 746DFECB64690BF3574039F7A61611BA349D2D07
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
Signing time: Sun 29 Jun 2025 11:43:48 +0000
ROA not before: Sun 29 Jun 2025 11:38:48 +0000
ROA not after: Sun 28 Jun 2026 11:43:48 +0000
asID: 215473
IP address blocks: 2a14:6f44:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 09:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:6d:fe:cb:64:69:0b:f3:57:40:39:f7:a6:16:11:ba:34:9d:2d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jun 29 11:38:48 2025 GMT
Not After : Jun 28 11:43:48 2026 GMT
Subject: CN=7FD5BC35C2F4CF548D0E74265A333054C55B6038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1b:4f:27:69:04:72:b9:ea:85:3e:5c:d9:04:
7c:e0:05:06:fa:1d:e6:1a:ed:d7:ef:d2:a4:63:93:
cb:62:03:d4:dc:c2:28:03:69:2a:28:16:bb:1c:18:
62:c8:0b:0d:3c:1f:c4:0e:f7:34:34:d4:91:2c:72:
81:68:01:1f:f2:5a:98:bf:01:05:4f:ea:ee:db:d7:
27:45:90:c5:ab:7e:8b:0f:4d:a6:c9:3e:81:a8:6a:
40:eb:49:3c:b1:48:30:87:00:c6:37:e7:8c:b6:94:
0a:bd:d8:54:6b:15:ae:f6:82:5d:17:a0:3d:6a:ae:
ed:ac:01:6c:ad:ef:b9:fd:4e:ef:95:4d:35:28:73:
14:34:e2:e5:5f:70:ad:df:f0:46:ea:92:01:db:67:
43:a2:f0:71:29:8e:0e:50:5f:5a:e3:79:fe:c6:08:
4c:e9:c6:c3:de:9b:14:f3:ae:45:b2:81:d1:7e:6b:
90:6c:c3:75:df:75:04:46:d2:4f:c0:d2:28:8d:ec:
35:42:16:a0:d1:2b:1b:4c:0d:21:96:c3:f9:e8:e6:
3b:06:89:99:1a:37:58:1a:0e:10:b8:78:cd:c5:f0:
73:3b:d1:30:f7:0c:d9:7c:cc:49:35:2e:cb:2e:29:
78:da:18:b2:60:19:a0:57:f9:c5:be:3f:2e:53:ac:
60:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D5:BC:35:C2:F4:CF:54:8D:0E:74:26:5A:33:30:54:C5:5B:60:38
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
4b:60:ef:1e:7a:33:04:c9:32:d6:c0:20:4f:ed:31:db:4f:9d:
58:92:93:c5:71:2c:6f:2d:99:d4:ac:ce:d8:6f:60:91:1c:29:
05:aa:d7:bd:fa:64:70:01:01:ca:fc:d2:ca:74:5c:87:15:59:
84:36:99:18:28:3c:79:cb:58:15:4c:5e:14:29:5c:fb:29:99:
10:a7:59:69:6f:4d:42:d9:eb:52:04:8a:96:ac:78:0e:65:e2:
56:cf:dc:7a:e8:11:7a:e6:e8:d8:71:fe:0c:1c:71:7d:2d:46:
5f:79:f0:6f:19:ad:59:c4:b6:f4:40:75:1d:76:ff:2f:fd:51:
17:1c:74:ca:93:bf:bd:73:29:d1:9c:05:bf:b3:3b:69:71:56:
b4:06:be:d8:ea:54:80:61:11:76:35:fe:38:79:53:e8:d3:00:
2d:c0:4e:07:97:4a:60:ea:85:b4:ea:d8:b3:64:73:9c:1c:ae:
46:ac:c3:78:7d:8b:82:01:4d:bd:2b:b3:6a:7f:4b:e7:6f:8c:
ed:0e:92:15:d7:b4:ab:42:54:02:9c:18:b2:9f:9e:e6:67:d3:
ff:f2:19:ba:c1:d9:ed:74:7b:1b:ae:e2:8b:3d:c8:a8:2a:ad:
ee:03:3d:43:93:77:bf:7d:fe:b9:ca:57:4d:29:4b:b9:27:48:
0d:47:1b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:12:35 2025 by rpki-client