Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a32303a3a2f34382d3438203d3e203336323336.roa
File: 326130303a646438303a32303a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: YScPu3yyJakM6oDpcoBniF51yXeWW9Zs1Gtggh8D3Uo=
Subject key identifier: 3F:DB:A2:35:88:D9:3C:79:B0:EE:BD:CC:63:E6:45:D7:7F:6E:CB:E0
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 0A28CF155EB32368DA824BF891BBC9AAE9F36DDF
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a32303a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 04 Aug 2025 20:13:53 +0000
ROA not before: Mon 04 Aug 2025 20:08:53 +0000
ROA not after: Mon 03 Aug 2026 20:13:53 +0000
asID: 36236
IP address blocks: 2a00:dd80:20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 12:42:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:28:cf:15:5e:b3:23:68:da:82:4b:f8:91:bb:c9:aa:e9:f3:6d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Aug 4 20:08:53 2025 GMT
Not After : Aug 3 20:13:53 2026 GMT
Subject: CN=3FDBA23588D93C79B0EEBDCC63E645D77F6ECBE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:3c:ce:29:bf:6c:3e:2c:70:76:14:de:41:
2b:b1:a2:de:ad:f6:c8:c4:b9:04:0e:9b:74:dd:23:
7c:b9:55:cb:67:4d:a5:7f:7c:f6:df:2f:81:5f:7c:
7f:f7:2f:bc:77:ae:66:94:14:44:56:73:2f:34:0c:
04:a8:51:d8:51:db:ca:fd:c8:ec:19:89:f7:e7:0c:
6f:46:5b:1d:17:1a:aa:72:5f:64:4e:01:e0:c5:6c:
03:5a:16:7d:92:e7:30:6d:33:55:3f:88:78:59:ff:
32:c0:6b:59:59:32:07:2a:18:07:8b:90:20:ff:90:
7a:59:7d:d5:58:0a:c1:73:34:37:1e:5e:f8:81:3f:
ab:7b:f9:13:44:19:58:2c:95:b8:0b:c9:30:fa:16:
d1:cc:03:c2:c2:3b:2b:70:fd:38:b4:58:9d:fb:14:
f1:4f:88:0b:37:c2:6d:da:0f:53:fb:1b:98:76:97:
38:a2:42:b9:4c:8f:63:68:fe:2c:87:71:6a:2f:67:
e8:25:ff:4d:9d:7f:9a:00:4b:01:66:4d:8f:70:ab:
16:b2:da:23:d8:61:e4:e1:d9:a8:df:b0:f0:7e:2f:
5e:72:4c:d6:3e:fc:33:a1:74:fd:a3:4b:ca:e2:f9:
f7:6d:ef:f1:ec:1a:f0:04:65:fa:8d:8f:dc:38:83:
74:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DB:A2:35:88:D9:3C:79:B0:EE:BD:CC:63:E6:45:D7:7F:6E:CB:E0
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a32303a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:20::/48
Signature Algorithm: sha256WithRSAEncryption
0e:de:37:20:02:e3:7c:bd:d5:b4:27:0e:7e:6c:2b:f6:b8:78:
0d:6a:40:5a:89:86:54:2f:84:25:e4:98:f0:3a:d9:17:dd:92:
cf:be:78:1f:66:59:b8:f6:76:b7:eb:08:54:14:fe:2f:bf:95:
d3:ef:af:1b:d1:6f:c2:d1:82:c2:2a:e7:dd:cf:4b:f5:60:87:
91:10:74:c7:fe:af:d3:9b:5a:44:80:c6:81:e6:46:05:ab:1f:
a1:44:c7:7a:d5:fe:23:a9:7f:cc:88:3d:35:a5:c6:ed:0a:ba:
16:d6:45:0d:3b:87:87:9b:73:64:b8:eb:18:ed:2a:72:58:2b:
a8:28:81:a4:e2:8c:fe:f5:f8:5a:63:cf:25:26:80:1e:ba:12:
73:d3:7e:33:97:14:ba:56:ff:6e:a8:38:89:c6:c1:1c:38:02:
ff:40:3e:e5:fd:3d:7f:bb:19:01:3b:10:be:b0:e2:b0:2e:dd:
47:0d:6d:0f:04:c8:d5:63:94:b4:0d:6f:ed:23:b6:15:f5:12:
0b:8d:f7:eb:ad:13:41:20:4d:aa:cf:0f:70:8e:11:47:c0:49:
9b:1b:9e:6a:1d:ac:3f:24:34:ad:4e:50:e2:f0:51:ae:ab:7b:
8c:8b:44:91:5c:7c:f2:80:75:dc:d8:39:ba:a3:12:8d:df:50:
6e:93:72:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:13:03 2025 by rpki-client