Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a3a2f33322d3434203d3e2034383432.roa
File: 326131333a313830303a3a2f33322d3434203d3e2034383432.roa (raw, json)
Hash identifier: bE+qtBuJQ5Ql+ocOGWkNEbG+qXwDKoAat3uVJIxYlBU=
Subject key identifier: 83:87:BF:66:84:9D:C7:5E:33:EE:B0:CE:A2:85:8F:A6:BF:BE:8D:E0
Certificate issuer: /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial: 674A897E74417BAE1D61E65557A46AE3B5014311
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a3a2f33322d3434203d3e2034383432.roa
Signing time: Wed 25 Feb 2026 13:28:49 +0000
ROA not before: Wed 25 Feb 2026 13:23:49 +0000
ROA not after: Wed 24 Feb 2027 13:28:49 +0000
asID: 4842
IP address blocks: 2a13:1800::/32 maxlen: 44
Validation: OK
Signature path: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:10:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:4a:89:7e:74:41:7b:ae:1d:61:e6:55:57:a4:6a:e3:b5:01:43:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Validity
Not Before: Feb 25 13:23:49 2026 GMT
Not After : Feb 24 13:28:49 2027 GMT
Subject: CN=8387BF66849DC75E33EEB0CEA2858FA6BFBE8DE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:8c:f4:ed:71:8e:47:9a:37:23:0f:f4:8e:
f3:20:51:08:61:2f:df:68:0e:0f:80:f0:92:6d:ca:
f7:7a:fe:36:da:dc:f0:6f:d1:b5:10:7a:59:14:33:
50:87:52:e8:33:da:b8:f4:1e:7b:75:6b:ef:e0:d3:
4b:34:7d:e7:49:43:34:20:50:39:8c:8f:35:d0:d1:
c4:13:c6:43:51:1e:06:52:ea:c3:14:a1:68:33:bb:
95:dc:11:16:47:70:10:de:d9:9f:2c:70:d5:98:ce:
8f:04:10:54:cc:4e:5f:bf:a8:85:a4:9a:37:41:d1:
6e:20:8b:22:62:86:f6:fc:59:ee:8a:67:a0:e3:4e:
c2:cf:df:3f:76:71:e7:90:19:fc:bf:f0:0d:bb:77:
20:44:e6:25:c6:1a:ef:5f:ec:04:f9:5e:56:9c:34:
a9:98:40:3c:a0:98:74:63:a0:36:c9:ed:09:56:0e:
a9:f9:04:26:d9:8e:31:6b:9d:97:51:2f:17:7e:b6:
26:fa:d3:15:f4:80:96:ad:e6:75:f4:d1:33:21:ee:
27:dd:e3:bd:8f:9c:ff:64:3a:8d:37:33:21:10:dc:
b5:e4:28:1b:64:7b:15:be:40:36:5d:b6:2b:74:42:
5f:3b:fe:e6:24:e3:f0:39:96:d9:ac:4b:42:eb:23:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:87:BF:66:84:9D:C7:5E:33:EE:B0:CE:A2:85:8F:A6:BF:BE:8D:E0
X509v3 Authority Key Identifier:
keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a3a2f33322d3434203d3e2034383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1800::/32
Signature Algorithm: sha256WithRSAEncryption
82:b3:6e:17:24:b0:35:ad:6c:9d:0f:dc:49:55:b6:14:cd:77:
c1:d9:b5:20:02:3e:e0:17:2a:de:6a:34:bd:d0:c4:cc:4a:89:
6d:c1:e6:55:2f:ae:d7:04:73:9f:5c:7b:07:53:43:8e:6e:b5:
4e:71:92:07:16:6f:e5:8e:3d:85:75:b9:37:58:f0:1e:da:fd:
18:78:fd:f3:be:1e:5d:28:f8:9c:91:6c:c8:30:7e:a9:6c:e5:
ed:36:9c:02:98:cb:1d:fd:d1:64:7a:8d:cd:77:62:18:b6:11:
93:2a:f9:eb:e8:6e:46:39:6d:7f:6d:09:c0:0b:7b:4b:a0:57:
28:46:e7:a2:42:ca:a0:80:34:51:59:f8:3b:61:78:4f:91:69:
9e:20:46:db:00:40:4d:44:f7:d8:44:dc:8f:a1:8c:41:7e:74:
0d:31:6f:4b:7e:86:87:a3:4a:cb:05:6e:aa:71:8d:28:6a:e0:
d4:f4:6d:74:02:a5:15:cd:d7:04:ba:6a:64:f0:af:ac:d8:6e:
48:66:6c:a1:d1:05:ed:2c:b6:83:18:a5:e3:b6:5b:ef:bd:1e:
71:0c:fa:e9:1e:fd:05:26:43:34:9d:66:44:ad:c0:0a:49:24:
2a:a1:09:57:e0:bf:43:ac:ba:2e:49:5b:0c:1f:3a:a9:a4:a9:
e8:67:29:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:25:26 2026 by rpki-client