Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34303a3a2f32392d3438203d3e20393435.roa
File: 326130363a34303a3a2f32392d3438203d3e20393435.roa (raw, json)
Hash identifier: G7IO5pCXePAgjcDHm8kdBu1fiidx9sSNA7PECFvEXqU=
Subject key identifier: 73:B1:97:48:10:31:8E:D5:89:B2:CD:5C:49:A9:40:92:51:7A:12:1E
Certificate issuer: /CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Certificate serial: 41887F709EFBA42891B24C1571CDDDACEE5F6F4A
Authority key identifier: E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject info access: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34303a3a2f32392d3438203d3e20393435.roa
Signing time: Fri 16 May 2025 07:19:22 +0000
ROA not before: Fri 16 May 2025 07:14:22 +0000
ROA not after: Fri 15 May 2026 07:19:22 +0000
asID: 945
IP address blocks: 2a06:40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 06:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:88:7f:70:9e:fb:a4:28:91:b2:4c:15:71:cd:dd:ac:ee:5f:6f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Validity
Not Before: May 16 07:14:22 2025 GMT
Not After : May 15 07:19:22 2026 GMT
Subject: CN=73B1974810318ED589B2CD5C49A94092517A121E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:04:c1:5e:4e:b1:4c:ed:e9:b3:be:27:6a:
42:1b:dd:c7:21:10:87:af:6d:44:b2:25:5e:9f:b0:
d6:d2:6a:77:0f:d8:a1:27:b9:b8:1c:de:27:e6:37:
4d:c7:14:40:f4:3e:c6:fd:6a:e9:93:06:24:ed:c2:
c4:67:f6:b1:54:67:5d:e5:33:24:fe:30:d3:ad:f8:
c9:52:72:50:d6:5b:73:41:11:43:46:c9:08:87:c7:
47:e0:53:be:6b:6e:14:75:d4:0e:d5:c8:21:6a:f7:
fe:dc:52:0e:57:4e:ff:ba:57:28:b2:c9:9c:d2:bb:
3e:b1:89:ed:b2:f5:4a:ab:ca:15:68:31:70:00:8d:
86:c8:5d:ff:07:73:7e:c9:64:35:95:73:70:7c:70:
89:80:fb:c9:ff:f2:03:8e:18:86:62:cb:b2:42:91:
6a:93:b9:0e:84:b2:69:d0:14:8d:22:5e:4b:46:51:
20:43:d6:90:6d:28:8f:f8:2c:bc:5d:5c:1c:06:11:
97:7b:f4:d5:65:35:91:78:5d:06:75:74:4a:fd:26:
af:b1:3e:49:78:ff:50:a7:fb:2e:0e:ef:f2:33:56:
e9:11:a0:75:87:05:75:7d:77:c6:15:e8:8b:bf:7f:
30:56:d5:71:a1:73:81:e5:63:3d:b4:29:03:9c:6b:
6f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B1:97:48:10:31:8E:D5:89:B2:CD:5C:49:A9:40:92:51:7A:12:1E
X509v3 Authority Key Identifier:
keyid:E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34303a3a2f32392d3438203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:40::/29
Signature Algorithm: sha256WithRSAEncryption
10:10:db:6d:cd:eb:ca:54:3e:36:39:51:24:ac:f5:3d:d4:d1:
4b:d4:c3:1f:de:5b:29:a7:b1:45:d8:d2:bb:de:cd:49:f6:aa:
7f:35:82:9d:b8:76:a2:67:27:8d:d9:0f:d6:8f:34:cf:3b:35:
f3:2c:ae:6d:a4:98:67:de:fa:e7:b3:ff:07:fa:31:8f:d0:60:
23:d2:6d:6e:32:6c:ee:7d:2e:1c:90:02:90:33:62:85:d2:f3:
e3:ca:8a:5c:22:a3:a8:d8:b1:06:42:0f:19:c8:9e:11:9a:e8:
6f:10:04:3f:85:5d:ca:d5:c6:70:e9:43:f8:7f:31:4a:f0:65:
b6:fb:60:7b:0f:c2:f5:3f:1c:38:e2:e3:20:10:94:f0:ab:fa:
18:06:ea:f4:f4:1f:06:a1:ff:68:c1:1c:1d:46:f3:19:cc:16:
8c:99:5a:5b:4d:04:d5:cc:8c:f9:68:d6:32:83:ca:59:11:47:
ad:80:b8:d5:17:f0:b3:ba:a4:c2:ca:97:c0:bc:f6:e3:af:c4:
13:df:8d:3b:80:45:19:7a:8e:cf:23:ad:71:9c:eb:3a:03:61:
d3:cb:4b:de:46:4e:35:28:57:74:31:00:1a:dd:8a:98:bc:b0:
9a:ba:48:70:ca:aa:fd:90:79:57:ad:96:c5:07:fc:cd:5d:40:
c7:14:6c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:31:38 2025 by rpki-client