Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
File: 326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa (raw, json)
Hash identifier: j3GV3ANei/ADQ7iORXmzuEkTB4Ul8kzWfM8VjOrHPfc=
Subject key identifier: EC:69:A9:47:A4:8E:AD:1B:4C:67:11:CD:80:2A:70:62:1D:08:85:39
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 324158DB4EBFF26686D314D56132E0111A32004A
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
Signing time: Wed 21 May 2025 14:05:53 +0000
ROA not before: Wed 21 May 2025 14:00:53 +0000
ROA not after: Wed 20 May 2026 14:05:53 +0000
asID: 210348
IP address blocks: 2a11:29c0:3dfc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 10:22:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:41:58:db:4e:bf:f2:66:86:d3:14:d5:61:32:e0:11:1a:32:00:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: May 21 14:00:53 2025 GMT
Not After : May 20 14:05:53 2026 GMT
Subject: CN=EC69A947A48EAD1B4C6711CD802A70621D088539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:69:2f:a6:73:78:17:6d:9a:c4:e1:45:d9:db:
a5:ac:17:de:de:72:9b:26:8e:a3:59:06:d2:23:15:
d5:27:31:86:b5:a2:1f:14:87:3d:70:1b:e1:8d:74:
42:08:ec:15:49:66:ff:38:cd:01:a4:5b:a1:55:cf:
79:e4:13:be:a1:7a:52:b7:ef:40:e8:78:70:9a:c3:
6f:0c:a4:2f:71:d8:bd:5c:b8:54:9b:dc:4d:0f:2d:
af:38:c3:63:c7:0b:74:25:a0:09:a3:91:f2:38:12:
37:5b:10:59:8a:ba:c1:2d:f5:42:40:4d:b4:96:7f:
fd:ac:7b:3c:82:c0:e0:61:d1:6f:20:89:3f:75:0e:
48:de:4b:47:e4:c9:8d:5d:4f:c0:19:81:42:e6:57:
1d:10:bc:d2:45:2b:7d:d7:ab:4b:e5:d6:65:74:7e:
46:c1:db:d6:3f:c0:dc:51:17:41:de:bb:94:14:10:
b4:37:ca:6e:33:c8:b4:5c:aa:af:64:bf:2e:18:30:
3a:ed:06:32:bb:10:9e:25:93:c0:cc:a1:81:5b:96:
88:4e:52:6d:ab:a9:2a:68:8c:2d:00:13:7a:c1:11:
e7:82:32:66:c5:9c:88:b0:68:a0:8e:c3:14:ef:e5:
16:74:14:a4:17:96:20:d2:4e:f4:9a:c3:de:f3:ed:
6f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:69:A9:47:A4:8E:AD:1B:4C:67:11:CD:80:2A:70:62:1D:08:85:39
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfc::/48
Signature Algorithm: sha256WithRSAEncryption
76:eb:18:29:29:46:2a:08:8e:58:74:6d:6e:11:32:90:6c:4f:
19:2e:05:1d:a1:41:7b:5a:af:58:25:9e:2c:58:a0:12:cb:ce:
e6:27:9e:fc:b1:c4:5a:e1:01:fb:a2:74:6e:ce:da:21:b7:96:
8e:6f:31:13:9b:c9:e7:e3:04:62:56:e2:42:93:e1:a3:8c:9f:
b8:1c:4d:21:56:7c:6b:ba:ab:1a:ec:84:46:9b:cd:31:c8:94:
97:a0:e9:07:cd:67:9f:70:4a:43:93:04:61:fd:64:4b:77:a9:
41:c1:5d:34:b5:60:52:44:7a:0d:b3:3e:6e:d6:c4:e8:24:b0:
f7:31:58:d4:92:54:0d:69:79:2c:ba:08:e4:08:c1:a1:ee:2c:
07:94:97:ad:ed:bd:bc:8b:77:31:ec:1e:d9:8a:a2:fb:12:e9:
7e:17:22:a3:cc:d8:70:fd:4b:4e:c8:65:25:72:7a:c0:5b:d8:
c3:f7:cf:e5:44:4d:cb:9e:81:ba:c9:e9:53:c6:54:00:d2:5a:
44:2e:37:ca:6f:4d:e7:bc:7d:bd:6e:d7:76:86:f1:92:fb:d0:
ca:8b:77:3d:bc:9c:38:b8:6f:71:5e:bf:ac:ea:6c:72:1b:a8:
e4:d6:8d:17:24:58:64:97:62:13:21:6d:fa:fc:fb:65:d0:7f:
a4:68:a7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:47:04 2025 by rpki-client