Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: OTW37g4Pive1Laz1B89O0CP+u/mIDtW13N7SrAkzGjk=
Subject key identifier: 4F:01:81:49:B5:21:D5:D0:9E:73:65:61:94:17:E0:C5:B1:15:E5:33
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 25874CC95DCF2CA309EF424839F9826BB7B6C41B
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
Signing time: Wed 21 May 2025 14:05:54 +0000
ROA not before: Wed 21 May 2025 14:00:54 +0000
ROA not after: Wed 20 May 2026 14:05:54 +0000
asID: 50391
IP address blocks: 2a11:29c0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:87:4c:c9:5d:cf:2c:a3:09:ef:42:48:39:f9:82:6b:b7:b6:c4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: May 21 14:00:54 2025 GMT
Not After : May 20 14:05:54 2026 GMT
Subject: CN=4F018149B521D5D09E7365619417E0C5B115E533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:35:99:81:d3:f3:de:db:51:a3:a4:e5:1b:34:
ee:14:79:f8:63:58:1a:48:64:aa:e9:f4:d2:0e:46:
20:ff:51:de:0d:bf:42:a8:3c:f3:f9:bc:f4:78:3b:
13:08:0b:08:ab:c2:01:49:af:b6:ef:2c:56:68:14:
3c:16:96:53:f2:0e:07:e4:b9:a3:b9:00:c5:8b:47:
28:ee:ff:0e:d6:42:a4:8c:97:f3:5e:1a:ba:d6:24:
f6:51:e3:0f:64:75:e6:1d:10:83:84:3f:f2:e1:38:
f2:4c:85:4b:10:78:f7:80:e4:69:a7:77:06:95:e2:
7f:18:30:9c:6d:b8:06:5d:fa:5c:f1:46:d4:16:7b:
fa:08:ef:a2:45:99:44:ae:6c:9f:0c:e1:ca:6b:e3:
06:c3:d3:f6:33:c0:d2:e0:f6:a3:7b:ea:94:a3:08:
8f:72:95:3e:a1:41:8d:ab:65:b4:8c:96:90:43:dd:
d7:bc:ed:67:f5:a8:8e:55:2f:6f:af:75:c5:c0:c1:
e0:23:a4:17:ad:a8:8a:fa:8d:d9:9d:23:69:e8:55:
54:00:6f:c8:6e:02:96:1c:8b:79:96:fa:cd:1d:16:
d0:6e:44:fe:de:a7:7e:db:52:b0:99:94:ef:96:9d:
10:b9:4e:1a:c2:a3:f3:df:1d:e8:d3:a3:fe:7b:ae:
e3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:01:81:49:B5:21:D5:D0:9E:73:65:61:94:17:E0:C5:B1:15:E5:33
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
9a:5c:5d:e8:21:0f:25:d8:f8:1c:ca:d8:0f:f0:f5:08:85:56:
e8:71:64:7a:5c:6c:5a:a4:32:7c:18:00:83:a8:68:fe:0a:6f:
01:2c:2a:11:00:e8:57:e9:54:31:6f:85:c6:b9:82:2b:0b:03:
1e:9e:2a:b7:85:0b:b6:9e:18:e0:1f:2e:48:24:b0:47:3a:7b:
a1:45:81:7d:6d:cb:73:60:df:aa:8b:e1:58:dc:9c:f6:46:ad:
2c:0f:55:20:bf:e8:f5:e5:88:4c:94:9f:49:72:a0:cd:72:96:
25:fe:37:9d:2f:1f:2b:3f:27:ee:3d:a1:ce:59:71:df:72:db:
43:5a:36:5b:4c:bd:28:d8:22:d1:44:e5:12:7b:f3:e3:0d:15:
3f:c8:b9:be:06:66:10:b6:4c:8f:f0:5a:f6:c0:3e:b8:cf:8d:
62:a1:97:d3:d0:5d:96:74:f7:c8:8a:43:97:a0:04:8a:12:88:
bf:de:df:aa:7e:22:f3:dd:01:e0:22:4c:f4:b2:ae:ab:95:b0:
3e:1b:dd:22:dc:24:e7:34:4d:d9:fb:50:d1:29:f5:9a:e6:e8:
4d:64:07:a9:a7:46:00:f5:04:79:64:c8:45:e1:5e:55:c9:be:
4e:fb:63:1b:e1:e9:e3:e7:3e:25:ca:20:c5:1a:9f:ae:e5:9e:
60:21:38:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 21:21:27 2025 by rpki-client