Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a646561643a3a2f34382d3438203d3e203534363831.roa
File: 326131343a366634343a646561643a3a2f34382d3438203d3e203534363831.roa (raw, json)
Hash identifier: +RB/H3yC2Zhqk6dbZnb2AoHhKMIePUOM6t4+sjUxfqU=
Subject key identifier: D5:C4:A9:73:12:FD:38:41:31:CC:66:1F:25:4D:C5:37:29:F2:DC:13
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 283E2C45221C6932613B38EDEF80FF289782B38E
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a646561643a3a2f34382d3438203d3e203534363831.roa
Signing time: Sun 29 Jun 2025 11:43:46 +0000
ROA not before: Sun 29 Jun 2025 11:38:46 +0000
ROA not after: Sun 28 Jun 2026 11:43:46 +0000
asID: 54681
IP address blocks: 2a14:6f44:dead::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 09:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:3e:2c:45:22:1c:69:32:61:3b:38:ed:ef:80:ff:28:97:82:b3:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jun 29 11:38:46 2025 GMT
Not After : Jun 28 11:43:46 2026 GMT
Subject: CN=D5C4A97312FD384131CC661F254DC53729F2DC13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:d1:76:b7:9f:79:09:5a:3a:e4:5f:d2:75:
e9:c8:37:9f:7e:93:34:44:8a:5b:16:17:32:65:40:
e6:51:2e:d4:15:73:f6:6e:83:1c:64:42:4f:32:9b:
d4:1a:43:62:66:66:43:64:8e:4b:8d:40:9a:42:e3:
2b:c6:5e:3d:82:7c:95:61:a8:a3:d1:47:2b:66:71:
f7:55:a0:f0:e7:c5:49:8a:9c:33:66:d6:e1:52:6b:
af:cf:2e:c6:2f:af:6f:99:e8:3d:71:11:c8:8e:64:
e1:56:fb:9f:27:6e:bc:1c:29:49:17:7e:a6:6a:81:
c2:9c:15:2b:05:7d:77:bb:c3:60:57:3f:d8:d0:16:
d4:44:05:5a:2a:5e:cd:fb:ed:ae:ae:84:dd:23:39:
d4:15:72:7f:8e:e5:d4:82:a9:f8:5b:ba:de:e7:48:
75:5a:f5:02:f1:06:46:74:35:6b:28:7f:29:f1:8b:
33:0d:cc:76:ab:f4:ba:8d:29:b6:6c:03:43:e8:ce:
57:38:19:9f:4a:c9:23:c9:07:9b:e0:67:3d:91:c5:
fa:15:2f:c9:d9:5c:4c:44:9c:e9:8c:86:61:c7:c9:
49:50:30:c8:8c:f9:13:3b:12:c7:a6:bf:d8:3c:f1:
cf:3e:cd:9f:c4:1b:0a:18:e4:f3:ef:39:56:8b:63:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C4:A9:73:12:FD:38:41:31:CC:66:1F:25:4D:C5:37:29:F2:DC:13
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a646561643a3a2f34382d3438203d3e203534363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:dead::/48
Signature Algorithm: sha256WithRSAEncryption
52:c6:fa:4c:20:f1:4b:aa:fb:8e:93:2a:a2:48:b9:ca:1f:67:
6f:cb:3b:d1:04:c6:7d:b1:92:d7:e5:b2:d0:c3:70:62:05:2c:
be:3a:5a:1d:ab:9d:0d:6c:5e:c7:36:0c:91:d8:4c:1e:ac:01:
f5:70:54:e3:ae:59:7a:b0:92:c6:89:97:88:b1:d1:d9:5c:c2:
40:c3:4c:6c:3b:45:37:39:19:f9:d1:c5:1c:8a:a8:f7:dc:94:
13:b7:37:50:bd:a1:96:1a:8e:c7:02:68:5b:17:c4:0f:6e:52:
ef:25:34:dc:0c:0b:85:3d:92:de:6d:33:33:e2:9a:36:a7:31:
8c:34:9e:3a:8f:e8:f0:79:a4:eb:30:fb:44:9b:fd:ea:eb:9e:
7a:e8:a9:23:6f:de:eb:be:fd:f2:cc:75:3a:d4:ba:fe:cd:64:
33:ac:2f:b2:be:d8:e0:22:14:24:d1:68:d6:e0:3f:17:8d:cf:
53:ce:d0:11:c9:88:6b:b3:62:0e:5e:a5:8f:bd:bc:08:c9:cd:
4b:f2:d7:46:f3:22:e2:1f:1c:34:1e:c1:f0:d8:74:c1:a8:8f:
e3:c9:00:a9:ce:83:e6:51:06:71:96:34:7c:18:87:42:2d:b7:
00:60:b9:4a:1e:6a:56:55:00:81:a2:db:30:a7:27:e5:b0:fb:
a2:45:89:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:11:00 2025 by rpki-client