Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
File: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (raw, json)
Hash identifier: gguUaLGiZloULmQoLb1t2Z/Nc/im18/K2ylNKEqcBq8=
Subject key identifier: 6E:B6:98:45:49:EC:11:24:AC:92:02:0E:6D:DA:98:12:5F:A5:F0:61
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 32A82F5CB9D62BDDCF739276A8D68D7187CBAB55
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
Signing time: Thu 11 Jun 2026 16:51:37 +0000
ROA not before: Thu 11 Jun 2026 16:46:37 +0000
ROA not after: Thu 10 Jun 2027 16:51:37 +0000
asID: 204291
IP address blocks: 2a13:9644:4000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:a8:2f:5c:b9:d6:2b:dd:cf:73:92:76:a8:d6:8d:71:87:cb:ab:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Jun 11 16:46:37 2026 GMT
Not After : Jun 10 16:51:37 2027 GMT
Subject: CN=6EB6984549EC1124AC92020E6DDA98125FA5F061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:60:a6:67:9b:b3:0f:23:3b:7a:7b:fe:3e:f6:
51:8d:cf:60:1d:61:3e:25:93:35:a3:ba:f7:49:ef:
aa:da:72:dc:0b:15:25:31:3b:07:21:ad:fc:5e:a9:
4e:38:95:e9:80:94:89:30:c4:36:06:ae:42:bf:74:
b0:78:63:25:9c:d2:2c:ef:f8:f0:f3:a6:c6:13:76:
12:66:de:6a:f9:d6:18:7c:b4:9a:4e:38:c2:9e:8c:
e4:2c:c0:5f:f6:7a:96:d1:12:ad:26:13:47:59:9d:
16:d9:57:60:7d:a0:b5:f9:5f:96:49:97:de:79:3f:
3b:cf:ea:06:c1:94:f5:a1:38:79:37:a1:aa:77:8a:
8e:2a:41:8b:dc:d2:50:95:0d:f2:b4:f6:7e:4c:4f:
3c:0f:f8:66:fa:8a:ec:e4:b0:f8:f2:b1:5f:77:52:
93:56:6c:b2:4d:85:3a:f3:95:42:92:b2:a2:e9:30:
63:a0:71:69:39:e4:f4:6f:1e:09:b3:e2:35:cc:a1:
ca:ce:e3:0e:51:9b:c3:60:57:1c:2c:29:fb:f4:79:
27:24:40:15:94:39:d1:70:5e:ea:23:50:54:09:12:
07:53:98:5a:61:d0:16:a3:99:eb:f5:43:04:09:60:
cf:34:68:7e:9f:b2:24:d6:16:a6:5c:02:8b:eb:ad:
d5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B6:98:45:49:EC:11:24:AC:92:02:0E:6D:DA:98:12:5F:A5:F0:61
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:4000::/40
Signature Algorithm: sha256WithRSAEncryption
19:52:a9:ac:bc:26:d0:fc:ec:bc:ad:cc:ee:e8:5a:a8:68:86:
31:8a:39:0f:63:25:91:a6:90:6c:04:66:3a:fc:51:b1:ab:29:
65:c4:4a:d6:6a:11:5c:81:d3:be:4b:10:5f:b7:20:2d:08:fe:
b4:2d:8c:80:d4:d8:68:59:35:82:f3:01:5a:d4:8a:46:90:d9:
bf:d6:4b:d2:21:01:8c:35:c5:20:7f:04:61:3d:ca:05:20:c1:
ed:01:47:20:5e:7f:46:fe:52:ff:35:5b:2c:27:65:bb:cf:a3:
f9:21:fd:68:84:19:2a:fb:f1:d7:24:b5:1a:c2:3a:49:1b:53:
f3:d4:93:f1:79:f4:a6:f5:91:f3:3a:89:b2:60:38:12:fa:01:
57:c6:db:0e:cd:6d:f2:da:c2:9a:2a:87:4b:5e:e1:d6:fc:83:
ee:dc:99:0c:b1:7a:ae:00:2a:0b:59:db:8a:a3:f7:fc:79:95:
2e:ae:24:f6:d2:1d:42:b3:25:2a:73:fc:7a:c6:e8:50:25:83:
43:da:1c:38:50:ab:04:f0:5c:a8:ea:b7:fb:15:80:4e:5d:9e:
dd:ad:81:ab:30:a3:b8:c2:43:63:06:27:6a:a4:60:6a:a6:ed:
27:c3:a6:64:79:f1:ed:f4:cc:6b:e4:62:82:ad:88:34:4d:18:
3b:93:94:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:30:19 2026 by rpki-client