Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34313a343030303a3a2f34302d3438203d3e20313939313038.roa
File: 326130363a34313a343030303a3a2f34302d3438203d3e20313939313038.roa (raw, json)
Hash identifier: vTHmJdYQ4zedxSNiHVypsHE+Bmfq9aAQg7rE7ifJsUI=
Subject key identifier: 4F:06:25:0B:48:92:4B:2C:62:C0:5B:48:36:13:89:5E:62:20:9D:F5
Certificate issuer: /CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Certificate serial: 2DEBAD821D95185D5480AD189B999BACED89D557
Authority key identifier: E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject info access: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34313a343030303a3a2f34302d3438203d3e20313939313038.roa
Signing time: Sat 17 May 2025 07:24:58 +0000
ROA not before: Sat 17 May 2025 07:19:58 +0000
ROA not after: Sat 16 May 2026 07:24:58 +0000
asID: 199108
IP address blocks: 2a06:41:4000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:eb:ad:82:1d:95:18:5d:54:80:ad:18:9b:99:9b:ac:ed:89:d5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Validity
Not Before: May 17 07:19:58 2025 GMT
Not After : May 16 07:24:58 2026 GMT
Subject: CN=4F06250B48924B2C62C05B483613895E62209DF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fc:15:ec:d3:08:26:68:8f:1c:d3:45:e1:84:
92:1a:9e:64:37:32:08:9f:16:87:42:8f:02:da:04:
a8:a8:2f:01:30:6c:a5:5b:75:2e:86:9b:99:79:bf:
5f:60:33:9a:de:5e:24:bd:a1:70:fd:a7:65:dc:7b:
43:06:6b:25:48:29:09:81:1f:5f:79:1c:59:ef:16:
1f:8d:5e:a0:bf:36:ec:7a:1b:3e:9f:12:42:13:a2:
c8:4c:a9:41:1e:54:64:b8:16:b4:a8:55:e1:fb:08:
86:f5:dd:40:6a:9b:8b:68:ec:5f:4b:61:a9:51:f4:
75:29:dc:e0:1f:2c:5c:e4:28:13:ab:8e:1a:da:a2:
f5:30:61:f0:a2:e6:d7:ad:ed:9a:d4:d8:50:fa:c0:
39:2e:eb:63:9e:e5:3e:46:1d:42:bf:f4:ef:90:51:
d6:03:da:e4:0a:34:a6:19:52:53:3c:7b:1e:5d:9d:
c4:35:8f:2c:be:2c:fd:1a:e8:e6:67:8e:84:cd:ed:
97:76:4a:3f:f2:90:ff:10:42:e2:d7:f8:0e:8f:f4:
e9:e1:27:bb:48:98:0a:25:d3:22:90:ad:b7:b5:93:
29:76:df:e7:a5:03:5b:87:6a:72:22:04:ea:84:39:
4c:21:03:93:1d:b3:e5:d9:e2:0c:72:4a:12:a2:8f:
b9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:06:25:0B:48:92:4B:2C:62:C0:5B:48:36:13:89:5E:62:20:9D:F5
X509v3 Authority Key Identifier:
keyid:E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34313a343030303a3a2f34302d3438203d3e20313939313038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:41:4000::/40
Signature Algorithm: sha256WithRSAEncryption
29:a4:83:66:1d:d1:0c:80:e9:6f:38:0a:3d:72:4c:dc:a3:c1:
54:14:fd:4c:db:23:73:2f:b3:53:3c:da:b0:87:40:2a:a7:2d:
b7:91:cb:56:02:0f:59:a2:2f:b0:34:f7:dd:65:83:f6:bb:fd:
89:9d:34:5e:92:56:98:8e:df:29:87:87:ce:ce:d7:c3:11:04:
71:c2:32:c5:94:5c:eb:d8:1d:e3:ba:d4:1f:62:56:4e:72:b6:
87:e4:26:78:cd:b1:b3:69:7e:ff:7c:f6:8b:68:39:1e:9f:44:
19:a8:20:fc:a9:6a:44:a7:e3:f0:9b:f0:95:57:c1:46:12:00:
87:d7:1c:55:10:16:e7:b2:a4:02:62:f8:d7:69:c6:ef:1f:39:
48:3a:e3:c5:80:53:83:36:e2:08:35:1f:8c:9e:18:70:d9:43:
7f:0c:86:6b:12:26:5f:f1:18:3a:1e:d2:67:0a:1e:4d:73:3e:
f4:e8:63:56:d4:16:43:79:e7:0c:47:4a:a7:f9:ec:b3:7d:c8:
bb:6a:5c:f4:88:31:cf:14:bb:ca:da:38:9c:f9:c3:16:7f:06:
a1:d4:32:d8:45:e6:20:e0:f2:3a:38:f1:41:02:e1:c9:46:d6:
fb:49:df:70:28:86:be:26:c7:d5:79:f7:49:47:2e:a1:c4:e3:
97:c5:d5:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:25:23 2025 by rpki-client