Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
File: 326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa (raw, json)
Hash identifier: YoTkCqxmNOzzLi9iVgmlNr37mRC/kz01BF5FtK0w4Wo=
Subject key identifier: F3:FE:B1:BF:EF:71:17:14:E3:C1:D2:76:62:FA:60:50:FC:C7:2E:57
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 40CEB9166BA85B575703C2CE9712E18EC5CBCC9A
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
Signing time: Sun 31 May 2026 11:50:40 +0000
ROA not before: Sun 31 May 2026 11:45:40 +0000
ROA not after: Sun 30 May 2027 11:50:40 +0000
asID: 54681
IP address blocks: 2a14:6f44:c0ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:ce:b9:16:6b:a8:5b:57:57:03:c2:ce:97:12:e1:8e:c5:cb:cc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: May 31 11:45:40 2026 GMT
Not After : May 30 11:50:40 2027 GMT
Subject: CN=F3FEB1BFEF711714E3C1D27662FA6050FCC72E57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:06:77:2d:9b:a1:a3:dc:af:db:e8:71:53:
ad:90:71:a5:88:3d:cc:48:c8:d2:7f:6c:ff:b0:c3:
0f:bc:6b:3f:b1:d5:80:ed:04:fc:cb:72:05:56:05:
ef:91:a3:82:09:11:6c:72:d0:1a:37:0f:ba:8d:35:
66:32:fe:6e:f4:1c:3b:e0:50:3e:aa:ff:67:d7:f1:
90:fe:48:4b:63:c7:44:34:d0:d4:5d:78:69:87:3e:
b2:3e:ea:c8:92:92:ff:84:67:0e:34:9c:8e:53:f0:
eb:e2:42:8e:39:6c:6e:d1:95:bc:e9:99:96:ce:00:
89:3e:d3:b5:47:36:6f:5c:a3:34:3b:85:0a:68:ed:
b9:e9:4b:d8:94:34:7c:c5:3f:aa:1c:43:2f:d6:d6:
d8:75:3f:5d:b6:e0:6e:38:d4:7e:b3:84:e3:6e:77:
6d:83:e6:4a:b2:a4:48:ca:5f:bd:6d:c4:19:19:24:
9d:0d:fc:36:c6:a4:36:5a:8e:8b:b7:87:e0:71:0e:
d9:da:cc:de:3b:6e:ab:82:c2:09:fa:b4:1a:26:bf:
84:ab:0e:a6:0d:ce:2d:71:f7:6d:c4:79:d8:1a:77:
c0:78:26:87:c7:6b:01:41:88:e9:d2:82:e9:1d:52:
de:b6:b3:99:93:11:bf:7a:94:b7:83:cb:1f:85:3c:
86:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FE:B1:BF:EF:71:17:14:E3:C1:D2:76:62:FA:60:50:FC:C7:2E:57
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c0ff::/48
Signature Algorithm: sha256WithRSAEncryption
20:7c:64:38:87:a1:9c:e6:10:a9:b4:0a:b1:c2:b2:6c:cf:99:
27:79:a9:58:27:21:4d:52:0a:b9:5d:ba:30:02:df:c9:ce:11:
2e:64:e9:f3:13:c6:a6:d6:06:83:db:e9:eb:3c:78:79:19:27:
d2:e2:d1:b5:8d:43:20:07:a6:58:bc:b9:00:cd:29:8c:66:60:
04:83:71:9a:58:43:1b:04:f8:92:29:c8:8c:c4:31:8b:83:36:
72:d1:91:c2:70:3a:6b:99:c8:c2:46:18:70:8d:cd:51:ed:91:
b9:6d:a1:ac:2e:91:ec:f9:0c:4c:5f:aa:41:03:52:25:29:20:
49:bf:37:b6:53:e9:f9:50:29:a4:cc:b9:ba:28:59:88:fd:db:
c7:2b:2e:5f:42:c9:2f:52:80:d8:ca:3b:11:26:10:24:09:48:
8c:c9:57:65:20:26:53:f1:11:7c:22:c1:4b:93:6d:31:3a:68:
f8:93:31:3f:b9:20:79:d6:57:15:7f:05:98:f5:84:67:19:ce:
92:dd:83:04:3b:02:b3:08:45:df:ee:0a:51:63:ad:17:ec:84:
2a:0d:ed:bc:e6:1d:10:05:76:43:8d:dd:26:00:75:cb:5a:98:
d8:80:c6:34:46:c4:74:87:13:4e:a2:92:05:08:29:2e:43:1c:
be:5e:68:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:58:15 2026 by rpki-client