Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383031303a3a2f34352d3438203d3e2030.roa
File: 326131333a633030373a383031303a3a2f34352d3438203d3e2030.roa (raw, json)
Hash identifier: jXSyObdaIfoxdZWPXkVrtrLjNc9eUeccuHBi6nz0ja4=
Subject key identifier: DD:C1:A3:25:AA:81:85:38:0D:2B:2C:2E:4A:4D:DE:D6:E3:9E:FD:5C
Certificate issuer: /CN=d4700d8e6f022571a0b26fcd4c70c0408ea4ffc9
Certificate serial: 1DD7CF0AAE62DA3F4F768E221E7C51599C19B4B2
Authority key identifier: D4:70:0D:8E:6F:02:25:71:A0:B2:6F:CD:4C:70:C0:40:8E:A4:FF:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
Subject info access: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383031303a3a2f34352d3438203d3e2030.roa
Signing time: Mon 16 Jun 2025 22:11:27 +0000
ROA not before: Mon 16 Jun 2025 22:06:27 +0000
ROA not after: Mon 15 Jun 2026 22:11:27 +0000
asID: 0
IP address blocks: 2a13:c007:8010::/45 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.crl
rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.mft
rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:47:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:d7:cf:0a:ae:62:da:3f:4f:76:8e:22:1e:7c:51:59:9c:19:b4:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4700d8e6f022571a0b26fcd4c70c0408ea4ffc9
Validity
Not Before: Jun 16 22:06:27 2025 GMT
Not After : Jun 15 22:11:27 2026 GMT
Subject: CN=DDC1A325AA8185380D2B2C2E4A4DDED6E39EFD5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:2a:74:ac:6e:86:cd:03:c6:d8:97:1b:44:
fe:0e:4e:d5:dc:8c:fa:2a:76:4c:05:7a:b5:a3:71:
2a:1d:90:83:b1:35:e2:e1:42:f9:20:59:38:d9:2f:
9a:e0:88:0c:02:8d:b5:27:d6:37:ef:f8:78:bf:11:
72:b2:08:38:f8:02:d2:0c:cd:6d:00:fd:df:01:29:
60:3c:63:b4:8b:00:43:c6:65:93:aa:68:a3:dd:fa:
32:69:60:a8:3c:bf:5c:e4:2b:75:30:7c:57:f5:87:
9f:29:40:bd:88:cc:aa:0a:8e:60:56:14:54:d0:10:
de:e7:91:b7:99:c7:33:c4:29:2e:c8:e9:c2:4c:ab:
57:63:f1:f7:90:46:d4:d9:35:82:fb:44:a2:12:07:
9e:53:d3:d2:35:80:07:c5:d2:ff:f3:11:5d:b4:7f:
04:c4:5f:03:a2:5d:62:64:cb:b2:49:91:da:d8:12:
ca:77:d4:07:6d:13:2f:4d:56:e6:8d:9a:a8:56:88:
98:c3:75:d1:af:24:b6:11:b9:42:16:db:dc:4a:b0:
e7:a2:14:e1:d4:8f:67:52:53:f0:79:92:5b:c2:ce:
43:4d:3c:db:90:bc:d6:ae:e4:d5:97:1a:8b:c3:30:
e8:85:ea:7a:18:1d:93:d2:43:03:66:0f:1c:b0:e6:
18:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C1:A3:25:AA:81:85:38:0D:2B:2C:2E:4A:4D:DE:D6:E3:9E:FD:5C
X509v3 Authority Key Identifier:
keyid:D4:70:0D:8E:6F:02:25:71:A0:B2:6F:CD:4C:70:C0:40:8E:A4:FF:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383031303a3a2f34352d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8010::/45
Signature Algorithm: sha256WithRSAEncryption
a4:14:03:0d:d0:2f:fd:87:5d:3c:24:6b:fa:9c:08:60:f4:d9:
a9:db:c0:77:84:34:ca:56:b9:b5:7d:46:d4:c4:9c:60:fc:3e:
04:1e:bc:83:23:d1:c4:99:b0:ca:ae:5e:26:61:73:c2:13:5f:
42:26:d6:e0:1c:8c:e5:cc:42:6c:a7:2d:fd:9a:3e:7d:c5:fe:
c4:47:c2:81:1c:1b:c3:89:79:2b:da:33:f9:f0:4e:84:69:0f:
d9:a2:f4:23:7b:d8:c3:00:07:8f:86:bd:d3:87:c2:d9:21:c7:
91:76:6c:a0:9d:d7:a6:98:e8:5d:af:29:a3:ef:f4:83:c6:af:
64:c7:9e:13:58:d3:0e:24:18:e6:11:89:4d:1a:f8:7a:98:1c:
9c:6a:ab:9a:08:6e:13:c4:b1:62:dc:92:f1:1a:c0:76:11:a5:
09:1d:7f:1d:f3:da:18:80:ef:26:71:89:ba:12:ba:60:f3:d4:
79:29:a7:47:83:ec:9b:20:84:39:a8:67:cb:4e:c7:59:b4:fb:
19:c1:64:34:43:53:82:ec:c7:ea:f2:f5:e4:79:3d:f9:43:de:
bb:51:df:96:90:36:a2:de:10:dd:fc:99:02:42:44:d6:fb:76:
20:84:c4:df:a7:aa:33:50:50:d0:60:50:cd:06:fe:e8:29:8b:
e0:6e:32:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:22:47 2025 by rpki-client