Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f33322d3438203d3e20323030323432.roa
File: 326131343a366634303a3a2f33322d3438203d3e20323030323432.roa (raw, json)
Hash identifier: Wfb1Be/94YdOwhsZcBM1MQm53XT2cW1zoUNNRItseq0=
Subject key identifier: 9C:ED:AE:2B:32:C9:C9:B6:55:7C:82:4D:1A:82:AB:C9:2C:AE:51:EB
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 63DC219D88F828DD67A8F4B6CBA4BD3E73F5FD36
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f33322d3438203d3e20323030323432.roa
Signing time: Tue 02 Jun 2026 17:50:40 +0000
ROA not before: Tue 02 Jun 2026 17:45:40 +0000
ROA not after: Tue 01 Jun 2027 17:50:40 +0000
asID: 200242
IP address blocks: 2a14:6f40::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:dc:21:9d:88:f8:28:dd:67:a8:f4:b6:cb:a4:bd:3e:73:f5:fd:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jun 2 17:45:40 2026 GMT
Not After : Jun 1 17:50:40 2027 GMT
Subject: CN=9CEDAE2B32C9C9B6557C824D1A82ABC92CAE51EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:29:4c:5b:76:7f:f3:08:3a:42:89:9b:7a:81:
bb:00:53:53:b9:f7:9d:af:12:20:2c:4d:76:58:51:
da:0e:ba:74:e0:f1:d6:d4:65:20:ab:d5:b6:ca:7e:
9d:42:36:8c:9a:31:fd:c7:e1:8b:6c:ad:e5:07:63:
50:a3:40:50:ba:bc:f8:76:e0:18:5b:ff:86:5e:0b:
c7:6f:3f:2e:20:31:88:b3:27:3b:38:e1:15:e8:a6:
75:d9:a2:25:cb:92:a3:c7:68:86:30:9b:ff:42:2e:
bb:02:19:2a:67:b1:a1:0f:df:54:9e:00:13:ef:30:
7b:90:5f:a8:a5:d0:5c:23:88:15:d2:43:14:4e:67:
ca:ae:ed:ec:da:e1:29:a4:ee:04:b8:d9:ba:a2:52:
3b:24:d1:2c:1c:c3:df:22:47:72:50:dd:16:df:c1:
72:cb:d3:64:1b:bc:8a:c4:3f:49:4b:ef:20:17:89:
4e:f4:0e:ac:37:f1:17:03:9f:4c:1c:36:02:f6:f9:
77:b6:93:da:ca:20:49:38:b9:3f:24:4f:dc:29:6d:
6e:5e:e2:e0:d6:50:3c:8a:69:d6:d9:9b:67:dd:1e:
78:0a:6b:c8:35:06:b2:b2:f6:69:f4:07:af:18:34:
a1:7d:74:a0:04:82:44:36:bc:e6:4e:e6:3c:82:c6:
70:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:ED:AE:2B:32:C9:C9:B6:55:7C:82:4D:1A:82:AB:C9:2C:AE:51:EB
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f33322d3438203d3e20323030323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f40::/32
Signature Algorithm: sha256WithRSAEncryption
72:84:56:65:0e:b0:49:f7:94:16:57:51:6e:a9:01:f7:ea:9a:
e9:3c:02:4b:f3:57:e0:44:c6:49:ae:3a:a6:89:80:69:d7:38:
76:e4:0f:50:75:1a:e1:74:49:1d:42:f3:3f:40:b6:c9:9e:a5:
57:01:b1:25:f3:a1:09:3f:4f:a6:9b:01:c0:d6:c2:75:f3:f6:
fe:7c:6c:84:ca:be:ef:94:3f:e0:05:26:21:97:29:31:8d:e2:
da:45:6d:ed:8e:16:cd:8f:4d:49:14:ba:bb:cb:60:4a:06:6e:
7f:1b:16:b7:d9:3a:da:06:d4:26:5f:00:d7:94:82:bf:b8:96:
ce:a6:5f:ac:c6:1f:43:dc:ec:38:48:33:97:18:21:2c:cc:19:
8c:9e:b4:9d:47:bc:82:a2:3d:de:92:f5:e3:9a:bd:0f:75:6d:
8b:b8:45:e5:b9:1a:f0:81:84:a1:7b:0d:0e:8e:92:6c:d9:d1:
78:75:30:d5:5d:5e:de:52:1d:f7:c2:fc:70:0b:51:d5:3f:20:
a7:ea:48:d1:b1:c9:84:3b:5d:02:f1:ba:5d:87:9b:ca:40:f8:
bd:9b:4b:37:02:94:fe:55:d0:aa:c7:4d:5e:53:f2:a7:db:cd:
d9:09:0e:ac:ac:e0:63:e6:02:ab:f4:79:6c:0d:83:02:39:32:
e4:7d:eb:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:06:32 2026 by rpki-client