Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383038303a3a2f34312d3438203d3e2030.roa
File: 326131333a633030373a383038303a3a2f34312d3438203d3e2030.roa (raw, json)
Hash identifier: F3j42vEXuR9TD5CGRl6IWwbxl3bjJmLrzfF1Jm3xeG8=
Subject key identifier: 59:7C:F5:DF:53:0C:E7:AC:1F:E9:13:D4:8D:BC:98:47:B5:33:97:00
Certificate issuer: /CN=d4700d8e6f022571a0b26fcd4c70c0408ea4ffc9
Certificate serial: 59DB16D192A34A00AE17AC2BB790790B9A89895D
Authority key identifier: D4:70:0D:8E:6F:02:25:71:A0:B2:6F:CD:4C:70:C0:40:8E:A4:FF:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
Subject info access: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383038303a3a2f34312d3438203d3e2030.roa
Signing time: Mon 16 Jun 2025 21:59:04 +0000
ROA not before: Mon 16 Jun 2025 21:54:04 +0000
ROA not after: Mon 15 Jun 2026 21:59:04 +0000
asID: 0
IP address blocks: 2a13:c007:8080::/41 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.crl
rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.mft
rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:47:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:db:16:d1:92:a3:4a:00:ae:17:ac:2b:b7:90:79:0b:9a:89:89:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4700d8e6f022571a0b26fcd4c70c0408ea4ffc9
Validity
Not Before: Jun 16 21:54:04 2025 GMT
Not After : Jun 15 21:59:04 2026 GMT
Subject: CN=597CF5DF530CE7AC1FE913D48DBC9847B5339700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f4:5a:38:ee:a4:9a:c5:ed:01:6a:2c:2a:8a:
7a:0a:a4:60:47:b3:47:8f:ef:1d:80:90:33:8c:87:
e9:0e:c0:8d:69:52:6b:5c:83:ff:3b:02:1d:b9:59:
74:d2:4d:59:78:9d:29:52:a3:e9:4e:1d:ef:68:22:
f9:aa:a0:2d:e6:21:65:a9:58:03:d6:fa:0f:50:d1:
a5:d0:6e:bf:36:84:dd:ad:6d:af:57:f8:86:ea:3a:
18:66:a8:a8:1e:21:47:e1:80:c9:1f:7e:f3:87:06:
11:67:df:05:53:67:c6:80:c6:9f:35:64:56:eb:ad:
cb:a9:6c:45:c3:7b:28:b5:1b:19:f2:6a:1e:6f:f4:
59:0f:2c:19:89:eb:e6:31:45:98:7f:80:f0:ba:3b:
7a:a6:02:db:62:e1:f5:4b:73:cd:1b:07:d5:0b:d0:
b2:28:7d:a0:62:1a:f1:00:a5:50:9b:a5:d4:98:ab:
ef:27:a8:e8:39:9e:f5:56:94:69:39:05:a1:bf:8a:
13:eb:05:45:82:37:75:3d:a7:0d:7a:9d:b0:d6:2c:
41:dc:c4:66:5e:c6:54:61:57:a9:6b:3c:e2:19:d4:
aa:ed:dc:98:e6:70:ea:ef:30:71:0f:20:93:1d:e3:
8f:b7:34:45:78:bd:80:21:45:df:48:98:d7:3f:f4:
78:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7C:F5:DF:53:0C:E7:AC:1F:E9:13:D4:8D:BC:98:47:B5:33:97:00
X509v3 Authority Key Identifier:
keyid:D4:70:0D:8E:6F:02:25:71:A0:B2:6F:CD:4C:70:C0:40:8E:A4:FF:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/D4700D8E6F022571A0B26FCD4C70C0408EA4FFC9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HANjm8CJXGgsm_NTHDAQI6k_8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/6ab96e7a6130498aa9813d7ee5bbed31/11/326131333a633030373a383038303a3a2f34312d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8080::/41
Signature Algorithm: sha256WithRSAEncryption
60:82:b1:51:5f:42:2d:02:68:1d:95:2e:82:0c:da:7b:92:ce:
fd:a7:9d:3e:9a:37:2a:3b:64:e1:63:ee:59:13:7f:e2:2b:f3:
11:54:18:b4:5c:cf:6c:90:dd:96:a4:49:4f:d2:2a:96:ad:14:
71:8e:98:aa:fb:c0:7f:97:a2:da:5d:b8:1b:00:94:55:59:fb:
f3:ec:d8:b6:21:e6:ae:b6:de:ce:88:4d:36:f8:72:da:b1:7d:
2d:40:f9:a6:ba:22:35:ad:3f:4f:0b:ad:c9:61:ba:0e:3e:96:
4c:b3:55:25:ff:b5:89:2a:d4:20:94:3f:8e:b1:37:ee:5d:64:
84:4b:5b:bc:23:01:e5:89:cc:d0:91:98:03:17:fc:7a:08:d6:
7a:40:a0:bf:77:0c:95:0c:0a:81:5b:6d:c5:52:75:03:1d:58:
97:63:65:3f:f5:71:24:de:41:b3:98:f8:90:2d:c4:1e:8c:a2:
64:a1:41:d8:69:ca:77:5e:bf:14:cc:e1:35:ce:db:47:45:ad:
0d:38:60:78:df:e9:41:91:38:e0:59:93:e6:4c:1a:03:6d:a2:
bf:82:04:6c:65:54:53:7c:e3:e0:bb:38:c6:83:1b:c9:e7:5c:
21:6b:d8:e0:23:7f:92:03:24:3e:ed:c1:e0:14:dd:b2:a4:20:
1b:97:a5:90
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIUWdsW0ZKjSgCuF6wrt5B5C5qJiV0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDQ3MDBkOGU2ZjAyMjU3MWEwYjI2ZmNkNGM3MGMwNDA4
ZWE0ZmZjOTAeFw0yNTA2MTYyMTU0MDRaFw0yNjA2MTUyMTU5MDRaMDMxMTAvBgNV
BAMTKDU5N0NGNURGNTMwQ0U3QUMxRkU5MTNENDhEQkM5ODQ3QjUzMzk3MDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg9Fo47qSaxe0BaiwqinoKpGBH
s0eP7x2AkDOMh+kOwI1pUmtcg/87Ah25WXTSTVl4nSlSo+lOHe9oIvmqoC3mIWWp
WAPW+g9Q0aXQbr82hN2tba9X+IbqOhhmqKgeIUfhgMkffvOHBhFn3wVTZ8aAxp81
ZFbrrcupbEXDeyi1Gxnyah5v9FkPLBmJ6+YxRZh/gPC6O3qmAtti4fVLc80bB9UL
0LIofaBiGvEApVCbpdSYq+8nqOg5nvVWlGk5BaG/ihPrBUWCN3U9pw16nbDWLEHc
xGZexlRhV6lrPOIZ1Krt3JjmcOrvMHEPIJMd44+3NEV4vYAhRd9ImNc/9HhjAgMB
AAGjggInMIICIzAdBgNVHQ4EFgQUWXz131MM56wf6RPUjbyYR7UzlwAwHwYDVR0j
BBgwFoAU1HANjm8CJXGgsm/NTHDAQI6k/8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV
HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvNmFiOTZlN2E2MTMwNDk4YWE5ODEzZDdlZTViYmVkMzEvMTEvRDQ3MDBEOEU2
RjAyMjU3MUEwQjI2RkNENEM3MEMwNDA4RUE0RkZDOS5jcmwwZAYIKwYBBQUHAQEE
WDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzFIQU5qbThDSlhHZ3NtX05USERBUUk2a184ay5jZXIwgaMGCCsG
AQUFBwELBIGWMIGTMIGQBggrBgEFBQcwC4aBg3JzeW5jOi8vcnBraS1ycHMuYXJp
bi5uZXQvcmVwb3NpdG9yeS82YWI5NmU3YTYxMzA0OThhYTk4MTNkN2VlNWJiZWQz
MS8xMS8zMjYxMzEzMzNhNjMzMDMwMzczYTM4MzAzODMwM2EzYTJmMzQzMTJkMzQz
ODIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB
BQUHAQcBAf8EEzARMA8EAgACMAkDBwcqE8AHgIAwDQYJKoZIhvcNAQELBQADggEB
AGCCsVFfQi0CaB2VLoIM2nuSzv2nnT6aNyo7ZOFj7lkTf+Ir8xFUGLRcz2yQ3Zak
SU/SKpatFHGOmKr7wH+XotpduBsAlFVZ+/Ps2LYh5q623s6ITTb4ctqxfS1A+aa6
IjWtP08Lrclhug4+lkyzVSX/tYkq1CCUP46xN+5dZIRLW7wjAeWJzNCRmAMX/HoI
1npAoL93DJUMCoFbbcVSdQMdWJdjZT/1cSTeQbOY+JAtxB6MomShQdhpyndevxTM
4TXO20dFrQ04YHjf6UGROOBZk+ZMGgNtor+CBGxlVFN84+C7OMaDG8nnXCFr2OAj
f5IDJD7tweAU3bKkIBuXpZA=
-----END CERTIFICATE-----
Generated at Sun Jun 29 08:00:59 2025 by rpki-client