Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34353a3a2f33322d3438203d3e2037373139.roa
File: 326130363a34353a3a2f33322d3438203d3e2037373139.roa (raw, json)
Hash identifier: O25ttMXNBp89QCladCBl6XCrVe4rUlYVi1eDkZ4yuBM=
Subject key identifier: 39:FB:5F:11:CC:B4:51:69:82:C5:B3:E5:8E:47:C8:05:D3:2A:68:A0
Certificate issuer: /CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Certificate serial: 796DBBF8FD40125AC1C0C9C2D9F7A1989F92DB51
Authority key identifier: E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject info access: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34353a3a2f33322d3438203d3e2037373139.roa
Signing time: Mon 08 Sep 2025 08:30:37 +0000
ROA not before: Mon 08 Sep 2025 08:25:37 +0000
ROA not after: Mon 07 Sep 2026 08:30:37 +0000
asID: 7719
IP address blocks: 2a06:45::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:6d:bb:f8:fd:40:12:5a:c1:c0:c9:c2:d9:f7:a1:98:9f:92:db:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3dcc9700181940fb31c01ea795ecfbc31492afa
Validity
Not Before: Sep 8 08:25:37 2025 GMT
Not After : Sep 7 08:30:37 2026 GMT
Subject: CN=39FB5F11CCB4516982C5B3E58E47C805D32A68A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:85:37:5d:f7:54:34:39:af:a6:1c:0e:13:
b6:64:4c:92:cc:c0:f6:f5:94:17:17:57:48:6d:e2:
3d:0d:94:6d:fe:72:10:56:63:74:af:db:d2:51:cd:
51:d2:20:33:be:fa:d0:fc:71:1a:9a:7d:24:55:b9:
88:3f:5a:76:5f:77:f1:7a:83:2a:ea:e8:6a:a1:a5:
35:18:99:02:34:3f:6b:10:7d:58:67:eb:fb:5b:98:
c4:06:ac:d0:18:bd:7e:45:16:d9:59:1c:43:f6:de:
95:c0:cf:c1:b6:2a:d4:92:96:8a:1d:b9:92:4a:d4:
db:74:45:17:0f:6e:3f:c1:d2:e8:d5:db:f2:08:ae:
2f:0f:e3:8d:19:f2:49:aa:57:f9:b3:cc:06:5b:96:
5e:03:3e:b6:a9:7b:10:d2:7c:15:51:9d:f7:ef:e7:
de:38:be:78:d8:5b:60:3a:c1:eb:ac:03:e2:7a:19:
06:c6:9e:70:97:3f:5c:1f:e5:59:30:eb:a3:bd:75:
55:26:5a:08:bf:fa:21:6f:99:f0:d8:b2:6e:ce:73:
b5:50:a6:57:a7:39:19:70:74:6e:da:31:15:9f:37:
27:3d:73:ec:33:45:f7:01:a0:79:1b:6d:74:34:28:
81:82:dd:b9:da:c7:ea:1f:c8:65:98:0e:aa:ba:15:
b0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FB:5F:11:CC:B4:51:69:82:C5:B3:E5:8E:47:C8:05:D3:2A:68:A0
X509v3 Authority Key Identifier:
keyid:E3:DC:C9:70:01:81:94:0F:B3:1C:01:EA:79:5E:CF:BC:31:49:2A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/E3DCC9700181940FB31C01EA795ECFBC31492AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49zJcAGBlA-zHAHqeV7PvDFJKvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/8/326130363a34353a3a2f33322d3438203d3e2037373139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:45::/32
Signature Algorithm: sha256WithRSAEncryption
6d:f9:35:86:ef:8a:c5:c1:03:6b:22:11:33:a7:5f:14:8d:dc:
11:49:31:b5:e8:11:cc:0d:1e:21:fd:ff:43:44:50:16:66:1a:
ac:9f:c4:8e:9e:a1:11:66:df:08:b4:8d:1c:27:f8:ad:3f:fb:
42:5a:cd:1a:f7:6c:38:02:69:7b:ef:d1:a6:14:92:84:f2:0c:
5d:35:5f:05:4e:7e:be:c3:eb:da:3b:54:09:7f:09:39:11:7c:
dc:40:1c:aa:cf:37:3c:28:22:04:83:49:0d:e9:79:c5:c5:86:
ba:cc:ae:d1:86:d6:01:24:96:74:f2:08:34:d1:b9:fa:ff:54:
69:2e:46:ed:b4:ad:2f:0f:a0:97:2d:70:91:8b:d3:0b:7d:a4:
a4:fe:5c:2d:f9:46:94:e2:93:67:1e:c6:d5:c1:56:05:92:fd:
fb:6f:59:04:05:8a:1e:c5:22:e1:65:b0:13:2e:8c:34:fd:fe:
58:48:dc:c5:89:01:ed:db:8c:2c:50:fb:3f:27:8a:1d:77:d8:
cf:98:60:e6:ea:e7:f9:df:35:82:e0:22:ae:c1:a0:a1:2e:a8:
ba:55:0e:5f:a6:71:18:42:da:fb:c1:19:7e:01:b4:de:90:7f:
8e:74:f9:1e:19:40:d5:e9:94:95:ab:03:ee:04:9e:e3:d4:2b:
53:11:3b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 18:45:40 2025 by rpki-client