Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
File: 3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa (raw, json)
Hash identifier: p3Dt6n/YM4JC1HzoBI1il5hduNzHZIpvxkXeAutWuXA=
Subject key identifier: F1:16:85:54:0F:85:AF:16:31:1A:FA:17:52:05:43:29:A2:58:B2:90
Certificate issuer: /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial: 5B8B3A73CC61E34B82C336D4E8B8C61A1052DC88
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
Signing time: Wed 25 Feb 2026 13:28:50 +0000
ROA not before: Wed 25 Feb 2026 13:23:50 +0000
ROA not after: Wed 24 Feb 2027 13:28:50 +0000
asID: 151464
IP address blocks: 194.127.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:09:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:8b:3a:73:cc:61:e3:4b:82:c3:36:d4:e8:b8:c6:1a:10:52:dc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Validity
Not Before: Feb 25 13:23:50 2026 GMT
Not After : Feb 24 13:28:50 2027 GMT
Subject: CN=F11685540F85AF16311AFA1752054329A258B290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:a9:b4:d0:67:1c:2a:5e:f8:94:4c:22:75:
ba:e4:12:6f:d9:bd:3a:b5:c2:2c:5b:6b:41:e5:ef:
8f:a6:65:93:b0:52:94:a5:ed:39:a0:32:52:20:08:
b1:c4:78:80:33:e8:7b:25:09:cd:cd:c6:3a:27:9f:
ba:28:c5:47:72:a7:4a:e5:b6:6e:96:cf:b5:e2:bb:
52:a9:f3:36:77:01:d5:54:f7:ee:7f:53:b3:0b:66:
51:69:9d:d5:36:87:3b:0e:92:7b:0b:8e:c5:12:2b:
92:a2:46:29:b4:9e:a9:72:41:78:08:ca:a7:da:0a:
96:20:cf:1a:97:96:a8:d5:bd:f2:3b:dd:ee:c0:bf:
a6:f4:4f:9a:58:13:ee:b7:10:c0:ac:6e:36:c4:78:
40:13:f5:94:83:56:b9:46:76:3b:90:15:61:80:eb:
0f:f1:a7:17:f0:5d:a6:b8:3c:c4:92:f9:67:fd:62:
8f:d5:ea:79:f9:14:04:bb:f4:37:c5:8c:e8:b9:37:
8d:85:6a:54:d9:dc:ca:27:97:2c:68:8f:3f:50:15:
17:64:4d:b9:d1:85:29:93:4f:9b:2b:8d:f6:9f:52:
b3:c1:ed:a4:88:ce:f9:25:53:6a:3e:0a:96:dc:ca:
0c:91:18:00:94:41:b8:13:62:79:74:50:9d:2a:ca:
da:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:16:85:54:0F:85:AF:16:31:1A:FA:17:52:05:43:29:A2:58:B2:90
X509v3 Authority Key Identifier:
keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.229.0/24
Signature Algorithm: sha256WithRSAEncryption
08:04:85:13:5e:13:39:ad:4b:33:dc:71:1d:52:a5:c4:2e:e9:
d5:ef:91:cb:8c:db:0d:19:49:89:f9:b8:ea:ea:c1:24:1c:00:
1e:12:8e:d6:92:a1:f4:36:f8:40:92:b6:a6:9c:96:c9:f9:a3:
f4:f7:44:73:da:9d:4e:8c:0d:3f:8c:18:1e:50:10:ae:79:58:
61:4d:b3:1e:dc:92:b3:30:2e:dc:a3:fa:54:a2:6b:ef:56:ce:
4a:1a:e3:03:7c:21:20:8b:bd:5f:10:cf:b7:18:28:58:58:e7:
81:13:b2:1a:d9:83:7e:86:06:ca:e5:32:cd:86:cf:85:ff:11:
4b:0e:c5:17:bd:85:41:00:e2:a6:80:07:d1:b4:e1:ff:65:a8:
47:a5:2e:22:4b:9a:cd:fd:bb:0e:3e:a2:2b:f9:bc:3b:a7:e2:
5e:02:9e:f4:81:7f:0d:eb:93:44:4f:f0:66:98:07:00:29:23:
7f:6c:69:e4:6c:93:b4:f6:75:1e:01:79:60:04:4f:8a:4c:d3:
24:ff:07:b8:f7:a2:af:79:8f:83:6c:5d:6e:2b:8e:43:ac:ff:
9c:f3:ad:b2:fc:9e:c7:e4:3b:a9:22:56:d3:dc:c8:f8:3c:93:
c6:c3:6d:b2:40:97:84:65:53:c9:b6:1b:18:5a:3f:09:0b:d3:
54:c3:f0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:10:36 2026 by rpki-client