Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa
File: 326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa (raw, json)
Hash identifier: o+zMczxDH5k0bxLKjGFdyPf4XREu2E6kpBmBhZN2RNk=
Subject key identifier: 46:E7:FF:B4:DD:E5:91:4F:DA:FB:84:A4:3A:ED:A4:19:79:AD:6E:FF
Certificate issuer: /CN=75a838e02c61800f73d3019de0a51f567b64bc0e
Certificate serial: 51B6BE1FE5034D39CC98B543EB8A542C8018FD65
Authority key identifier: 75:A8:38:E0:2C:61:80:0F:73:D3:01:9D:E0:A5:1F:56:7B:64:BC:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dag44CxhgA9z0wGd4KUfVntkvA4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa
Signing time: Sat 01 Nov 2025 11:11:08 +0000
ROA not before: Sat 01 Nov 2025 11:06:08 +0000
ROA not after: Sat 31 Oct 2026 11:11:08 +0000
asID: 214575
IP address blocks: 2a0f:1cc5:b00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/75A838E02C61800F73D3019DE0A51F567B64BC0E.crl
rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/75A838E02C61800F73D3019DE0A51F567B64BC0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/dag44CxhgA9z0wGd4KUfVntkvA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:54:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:b6:be:1f:e5:03:4d:39:cc:98:b5:43:eb:8a:54:2c:80:18:fd:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a838e02c61800f73d3019de0a51f567b64bc0e
Validity
Not Before: Nov 1 11:06:08 2025 GMT
Not After : Oct 31 11:11:08 2026 GMT
Subject: CN=46E7FFB4DDE5914FDAFB84A43AEDA41979AD6EFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a2:4f:a2:f9:6e:80:cb:eb:87:18:ce:21:8c:
6a:93:8d:58:72:46:b8:d7:a2:8a:3b:32:cb:c6:1c:
a1:b6:b8:ea:f9:4b:3c:69:ba:26:f9:c5:5f:54:45:
e6:89:9f:5e:ca:d4:bc:72:7d:b0:f1:6e:a9:17:8c:
14:3a:fc:2c:6c:b4:23:b1:00:3a:8c:d0:05:89:9f:
2c:35:88:85:46:ec:7e:1c:5e:22:c1:f2:e1:eb:bb:
5b:2b:f0:dc:ca:86:de:e4:7d:31:fb:e0:7c:c7:27:
e0:e8:e4:ea:4c:12:54:fc:e5:59:4a:f3:2a:0a:a3:
e0:be:f3:84:43:34:99:b5:39:c0:fc:d9:0e:9f:a4:
69:10:2b:ea:4f:97:07:f6:e1:5d:2d:5b:a2:30:20:
fc:16:0e:a8:96:11:4b:c9:15:c5:b2:99:47:66:4b:
a6:83:e7:08:a0:e5:69:2c:96:8d:74:76:b4:4b:01:
18:02:30:f8:19:7b:18:50:0f:76:c0:b1:ce:91:4f:
12:05:91:93:dd:17:f4:56:8d:85:98:c8:89:a8:69:
53:cb:84:2c:29:c2:9f:ef:20:7f:b0:be:c3:cc:82:
e5:23:4a:3e:ae:ca:db:48:5b:55:ca:45:24:e2:c1:
c8:75:7b:fa:b2:0b:fc:79:ae:d0:c3:30:a4:62:97:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E7:FF:B4:DD:E5:91:4F:DA:FB:84:A4:3A:ED:A4:19:79:AD:6E:FF
X509v3 Authority Key Identifier:
keyid:75:A8:38:E0:2C:61:80:0F:73:D3:01:9D:E0:A5:1F:56:7B:64:BC:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/75A838E02C61800F73D3019DE0A51F567B64BC0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dag44CxhgA9z0wGd4KUfVntkvA4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e26eb136-4fe5-4e61-a4d8-f345f52bc25d/0/326130663a316363353a6230303a3a2f34302d3438203d3e20323134353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:1cc5:b00::/40
Signature Algorithm: sha256WithRSAEncryption
33:78:5f:55:e4:43:79:81:ee:24:1a:36:1b:03:31:86:c4:98:
b1:c2:3c:d2:f3:9c:d0:04:a1:d4:d8:c5:89:2f:e9:ff:3b:8d:
25:f7:ad:96:73:7d:be:05:dc:36:ca:42:ec:35:73:d3:ff:64:
d5:77:a6:97:20:c7:a3:3f:7d:f1:25:00:7e:79:d8:c0:a4:db:
f1:0e:1f:26:58:83:c2:b1:b1:f2:57:ce:c0:3f:00:df:c6:fe:
61:41:32:71:ce:1b:e1:e7:88:10:b8:36:a2:0a:6a:d6:f1:e4:
e2:9e:98:8e:96:3f:b1:9e:4b:e0:4e:3b:66:a1:9d:6f:88:17:
34:f0:b0:43:7e:8f:73:5d:7c:70:3f:6b:d2:4a:9e:e3:50:9e:
6a:78:77:f3:09:83:77:74:4b:da:45:9e:f2:66:cf:5d:1b:90:
c2:80:ba:42:ba:c6:9e:93:71:fe:6c:34:bf:34:ba:6a:b5:9f:
49:ee:59:c3:58:97:4d:3b:6c:53:63:77:71:58:5c:b6:fc:2e:
a9:9d:4e:f4:a6:47:35:bc:d3:25:36:31:c9:32:86:13:9b:0a:
08:e4:6b:a3:8d:4c:8c:73:54:a4:11:ff:f7:ab:5a:48:11:05:
3a:92:45:47:6b:04:c6:c0:77:a9:e3:d3:59:da:09:f0:b9:92:
a9:40:9b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 23:04:34 2025 by rpki-client