Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
File: 326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa (raw, json)
Hash identifier: 8HPgnPldTlqd1Z363+ppRIxfOmsIQPfiCzU3fi1lkIs=
Subject key identifier: 49:DC:78:37:C9:1F:CA:B8:8C:35:60:15:79:31:F5:6F:89:83:65:CE
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 5EF4C5ECBCC8DA3FAF531530E85ADF998C164536
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
Signing time: Sun 31 May 2026 11:50:40 +0000
ROA not before: Sun 31 May 2026 11:45:40 +0000
ROA not after: Sun 30 May 2027 11:50:40 +0000
asID: 215473
IP address blocks: 2a14:6f44:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:f4:c5:ec:bc:c8:da:3f:af:53:15:30:e8:5a:df:99:8c:16:45:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: May 31 11:45:40 2026 GMT
Not After : May 30 11:50:40 2027 GMT
Subject: CN=49DC7837C91FCAB88C3560157931F56F898365CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:2a:19:0e:7e:eb:3a:6d:ad:60:05:54:40:
21:07:6d:4c:a4:17:f2:9b:b4:48:74:80:bc:81:d4:
1d:44:42:49:17:f6:d1:56:bb:62:53:5e:4d:68:08:
56:cf:27:92:ee:7d:5f:56:e6:a6:84:a4:de:87:74:
9f:f8:29:aa:b7:3c:3f:f1:b4:dc:71:69:11:be:c4:
94:cb:6d:58:2d:62:53:56:a9:82:29:85:96:cd:18:
ea:28:6c:a1:e4:5f:4b:11:20:44:0d:a3:0c:ae:ad:
93:f4:b8:68:05:2f:ff:fe:1d:d2:2e:39:a2:31:42:
e9:e6:b2:0a:1f:9d:20:29:74:77:df:83:b5:25:22:
eb:de:0c:95:ed:e5:20:46:a7:2f:82:9d:36:ea:06:
92:ea:b4:3b:c5:21:b4:e0:5b:d7:6a:86:e3:35:d8:
90:e7:73:ac:12:c8:0c:2e:7b:7e:1b:3e:7f:ca:01:
dd:73:39:ba:4e:19:d0:52:65:f2:a2:c2:b6:bb:de:
24:ff:3f:7e:e6:1f:32:fc:03:c3:3c:40:1d:94:26:
0f:41:29:81:b9:9b:7e:6a:f7:b4:9a:d4:14:f2:90:
13:f9:05:15:23:68:d3:16:fe:ee:7b:b7:87:e6:ac:
97:c7:56:49:89:ad:f8:f5:48:e1:bd:71:62:84:9c:
bc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DC:78:37:C9:1F:CA:B8:8C:35:60:15:79:31:F5:6F:89:83:65:CE
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a623030623a3a2f34382d3438203d3e20323135343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
21:c1:69:2a:4e:32:46:7e:81:b4:b3:d6:4f:4a:fd:c8:27:5f:
db:a3:43:9c:76:65:0b:3a:c8:2a:08:0d:00:28:61:dc:74:d0:
79:d0:96:56:d2:f4:43:35:67:c4:85:90:2b:22:93:b3:9f:63:
16:93:b0:d7:65:ce:31:7f:d2:cb:96:50:91:ab:6b:15:c1:98:
6a:ad:63:4f:a3:a1:c9:ab:56:64:fc:53:71:ff:a8:e6:f8:81:
9a:51:a4:2b:ba:33:8c:5c:66:90:10:e0:32:3a:c2:5d:61:11:
ca:bb:9b:2d:76:24:3c:8e:31:06:7f:76:36:24:a6:ca:f6:7f:
a5:a1:c8:e0:6f:87:3b:3d:25:3a:fd:20:f2:d8:56:fe:02:9d:
bc:00:11:23:2d:e7:ac:c2:bc:14:52:f6:ad:0d:1a:11:aa:34:
f6:96:14:3e:58:7e:8a:48:95:87:87:d1:b4:ba:83:f1:1a:93:
85:8e:3d:89:fe:84:e1:c9:02:66:6f:27:59:ba:1a:3e:6a:43:
22:d8:e6:23:b9:32:c6:be:1a:e5:d9:5a:19:bb:1c:e7:b2:e4:
51:44:e0:be:68:e8:ad:20:30:1b:07:47:44:64:9a:ce:bf:eb:
9a:c9:fe:7d:96:cb:82:fc:7d:03:3f:3a:ce:7e:06:58:6b:10:
2d:fb:2a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:42:37 2026 by rpki-client