Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666230303a3a2f34302d3438203d3e20323134373435.roa
File: 326131343a316563373a666230303a3a2f34302d3438203d3e20323134373435.roa (raw, json)
Hash identifier: 6hKao63oIzBdls8N02e3UeaWWtVa56Xgit+XQJDfjec=
Subject key identifier: 83:7F:F6:AE:A3:35:20:9B:5A:01:23:16:41:A1:3D:F5:A0:4A:09:B6
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 7ED671C1FCDA1EB95B3E726DB8C9AB922E8CE3BD
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666230303a3a2f34302d3438203d3e20323134373435.roa
Signing time: Sun 24 Aug 2025 21:55:31 +0000
ROA not before: Sun 24 Aug 2025 21:50:31 +0000
ROA not after: Sun 23 Aug 2026 21:55:31 +0000
asID: 214745
IP address blocks: 2a14:1ec7:fb00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 06:11:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:d6:71:c1:fc:da:1e:b9:5b:3e:72:6d:b8:c9:ab:92:2e:8c:e3:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Aug 24 21:50:31 2025 GMT
Not After : Aug 23 21:55:31 2026 GMT
Subject: CN=837FF6AEA335209B5A01231641A13DF5A04A09B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:4a:f3:4d:08:d7:e9:5f:70:49:04:ac:b2:
ef:7f:4b:bb:8c:6c:05:65:56:4c:75:bc:20:ee:0c:
76:07:ea:54:2a:23:5b:63:7b:f8:69:2f:92:2f:df:
44:4e:78:80:af:af:b9:13:b7:3e:9d:1e:a9:22:c8:
c9:a0:b2:d6:48:1e:f0:d7:6c:63:9e:ca:f9:a5:e3:
13:cf:99:e5:be:e8:60:e5:2b:55:80:6c:7a:a2:f5:
2d:ad:64:4b:0c:5d:f1:ef:f3:dd:1f:d9:57:65:2a:
fc:3e:50:71:27:fd:91:68:e5:5f:d4:56:ed:12:e1:
b3:26:d6:d6:1a:e0:fa:07:82:cc:8e:7e:cd:13:7e:
2a:09:fd:9f:50:c2:05:58:c1:db:bf:bf:32:19:3e:
5e:69:88:e7:d0:68:b8:42:db:df:12:78:56:dd:13:
b0:dd:f8:f1:c1:1f:34:5f:a7:06:7d:9e:d6:79:d0:
80:0b:ee:b2:79:79:dd:00:f5:44:b9:1f:45:0b:38:
8b:07:42:3b:20:a4:00:56:7c:bb:00:ac:5a:14:fb:
c6:ce:9a:ed:d2:70:9f:a9:5f:63:98:f3:f3:1e:11:
41:21:4c:12:bb:a1:ee:01:b6:66:76:ff:1b:f5:a6:
59:3f:79:ad:7f:69:b6:cc:10:4a:75:dd:2f:f1:0b:
a0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7F:F6:AE:A3:35:20:9B:5A:01:23:16:41:A1:3D:F5:A0:4A:09:B6
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666230303a3a2f34302d3438203d3e20323134373435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:fb00::/40
Signature Algorithm: sha256WithRSAEncryption
53:26:d6:78:d5:08:f6:3a:8c:0f:4c:80:6e:7c:5c:48:97:4a:
ec:98:d5:a5:a5:ec:fd:4d:13:fc:ab:2a:e2:e4:d0:38:8a:19:
9c:59:dd:9c:ff:1d:cc:5b:f0:b7:23:1f:b6:92:66:2d:c8:8a:
0b:e8:50:05:d2:85:e9:5e:2f:72:69:78:88:dd:42:71:84:31:
ac:05:c5:5a:33:72:ee:7d:6e:4a:33:ca:68:9c:7e:b4:4e:31:
8c:45:4e:9b:62:8c:a2:41:66:2d:cc:c8:bb:37:88:f8:91:08:
94:70:2a:99:6c:83:1c:93:c4:03:7b:ff:1e:28:5f:ec:21:e8:
60:44:9e:dc:ea:c9:95:1a:e2:c6:9a:59:be:2f:3a:91:42:6f:
8f:14:a9:e8:d4:6a:64:00:20:8e:8e:96:5c:53:a7:b3:c3:8d:
9a:df:f1:5c:ea:32:58:39:b0:ee:f0:dc:78:34:67:41:48:18:
8b:8f:2d:86:81:55:6f:e1:5a:c8:41:6c:44:f5:b6:44:09:57:
63:ba:a5:50:c3:c9:59:b3:53:c0:80:99:b0:f4:71:ab:a4:92:
b2:8f:31:b9:41:6b:d7:fb:87:2e:cb:2c:f0:86:f3:4d:5c:21:
c3:4f:0b:e4:59:67:a2:d4:bf:56:3a:42:da:63:73:33:69:a0:
15:32:a9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 14:34:08 2025 by rpki-client