Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
File: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (raw, json)
Hash identifier: MZinW+ThJOvxuorz79LfJwm0SPpHFhvqZI72l4euJeU=
Subject key identifier: 23:45:F1:DF:74:1A:A0:B8:65:67:A5:A5:1E:B8:80:14:60:4C:65:F8
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 2662D068700BE6F3040739D8ED8B078D2B340FA7
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
Signing time: Thu 11 Jun 2026 16:51:37 +0000
ROA not before: Thu 11 Jun 2026 16:46:37 +0000
ROA not after: Thu 10 Jun 2027 16:51:37 +0000
asID: 52112
IP address blocks: 2a13:9640::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:62:d0:68:70:0b:e6:f3:04:07:39:d8:ed:8b:07:8d:2b:34:0f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Jun 11 16:46:37 2026 GMT
Not After : Jun 10 16:51:37 2027 GMT
Subject: CN=2345F1DF741AA0B86567A5A51EB88014604C65F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:ba:3f:32:43:79:d7:37:6b:04:44:10:e3:
77:cc:ff:44:9d:6c:6f:ac:56:5a:26:47:2c:81:ca:
a8:ba:38:28:39:9f:ec:1c:92:39:eb:33:46:b4:fc:
eb:14:18:bc:53:c5:e6:37:93:e4:92:de:eb:65:86:
68:90:09:fe:bf:5f:eb:d9:eb:03:56:f7:75:23:e4:
fb:72:32:a3:68:ad:bd:2d:7c:08:e6:d7:5a:92:41:
1e:86:f8:34:fb:57:4a:8d:06:72:5e:ab:a3:5a:40:
01:81:f4:f9:7f:ed:02:2e:97:a5:e1:e5:c6:be:79:
5f:e2:bf:c0:e7:e2:30:da:40:9b:fd:ac:4a:53:42:
de:56:f3:34:7a:53:44:7f:73:7c:c0:26:92:59:3c:
0b:b5:63:38:a2:62:68:bd:e8:e7:7e:8a:df:0e:b6:
de:8d:7a:e3:f5:1c:0e:f4:41:ae:96:79:f8:8a:27:
c3:99:60:99:1c:78:29:aa:7d:0b:f1:ca:0d:2f:0e:
fe:ae:c2:8b:bd:bb:44:bc:88:6a:f1:c4:c0:5c:48:
ac:58:24:cd:5d:b3:57:41:b5:0b:2f:91:33:7a:70:
e9:b2:25:42:40:52:1f:f5:ff:65:5e:9a:f6:52:ea:
65:cb:68:63:f9:3d:1c:52:f6:4c:fb:5c:08:a8:75:
50:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:45:F1:DF:74:1A:A0:B8:65:67:A5:A5:1E:B8:80:14:60:4C:65:F8
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9640::/44
Signature Algorithm: sha256WithRSAEncryption
31:aa:82:30:de:b4:49:f4:d5:64:c3:d3:e1:33:29:52:ad:96:
79:40:a5:d5:71:db:d9:75:d8:d5:79:11:14:fb:fd:61:73:32:
39:e1:ef:4a:b3:a4:fc:82:d5:b2:f0:78:a2:67:3e:7e:9d:85:
66:90:82:20:b0:48:c1:71:c8:72:01:34:6d:95:7e:dc:a6:4d:
58:7a:8d:c1:a0:0c:a3:0a:2d:13:e4:d1:6e:f5:bd:f1:03:8d:
bb:a2:8a:27:e6:11:36:1d:21:15:72:af:7a:94:99:c4:f0:16:
90:c0:5b:13:14:12:c1:e4:53:f8:e5:6c:73:1d:86:1c:2d:eb:
a1:54:04:1b:38:5e:46:e6:b1:c8:1e:7f:bb:44:9e:cd:61:91:
7a:ff:69:0f:3d:96:dd:c7:9f:c9:49:cd:bb:26:e3:63:2a:06:
75:18:70:4d:51:83:15:12:39:28:56:9f:da:df:b0:21:e1:29:
e0:fe:0f:32:98:cd:fe:7c:82:6a:35:72:33:b6:42:c4:91:c3:
fc:d5:97:e3:ed:05:f5:e3:ed:18:cd:d8:5d:5c:7b:be:c4:4b:
50:d8:88:db:7c:a3:33:b7:e5:60:4f:28:f6:de:e4:aa:96:e0:
5f:9a:72:53:32:b4:81:36:f3:27:8e:5a:b3:ca:0f:b7:e9:5a:
49:3d:ce:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:16:35 2026 by rpki-client