Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f34302d3434203d3e20323135333138.roa
File: 326131343a316563323a3a2f34302d3434203d3e20323135333138.roa (raw, json)
Hash identifier: 1f8XyNlehbCOnOttGzyrDosIHnqaI9sKAvrNf1ADCiI=
Subject key identifier: C2:6A:B5:D5:19:7B:73:08:98:AF:6B:F2:66:5D:E7:3A:FC:F4:3F:AC
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 174B72F92164550D35D37E23A8DE92024AB97652
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f34302d3434203d3e20323135333138.roa
Signing time: Sun 12 Oct 2025 11:52:49 +0000
ROA not before: Sun 12 Oct 2025 11:47:49 +0000
ROA not after: Sun 11 Oct 2026 11:52:49 +0000
asID: 215318
IP address blocks: 2a14:1ec2::/40 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:4b:72:f9:21:64:55:0d:35:d3:7e:23:a8:de:92:02:4a:b9:76:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Oct 12 11:47:49 2025 GMT
Not After : Oct 11 11:52:49 2026 GMT
Subject: CN=C26AB5D5197B730898AF6BF2665DE73AFCF43FAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3d:a5:d3:3d:f4:22:bb:4f:4b:48:43:5a:d0:
3c:41:4a:b4:c4:76:45:76:ae:88:c8:c9:b7:7b:3e:
60:2a:4a:bb:c9:15:41:f4:13:f2:2d:97:bf:ed:89:
85:b2:f5:29:44:0c:05:05:0f:d0:d7:37:7d:56:c9:
a4:5d:65:57:e7:4e:67:e3:19:7d:64:15:49:c3:c4:
a2:40:0f:7b:d1:95:02:45:5d:34:98:5c:3c:7a:c4:
a5:0f:39:82:22:18:c3:28:ed:17:fd:d2:fa:82:84:
0f:90:37:ef:f5:7f:98:ed:98:32:df:02:38:91:34:
6b:16:77:91:37:04:92:03:15:87:a0:ee:a2:8d:26:
82:87:c2:6c:68:46:e9:40:98:48:7e:65:8b:ca:27:
cb:72:bf:8b:86:74:28:ee:c2:82:d3:82:54:e0:ae:
08:06:90:67:fa:1c:22:e1:c5:e6:e3:53:34:08:b2:
98:d4:a9:bc:a2:b4:5d:60:c7:63:22:3d:30:bd:db:
3b:cd:28:1d:9f:ee:29:27:92:ac:97:d9:7e:22:2b:
c7:e8:1c:60:f5:7c:d3:ea:bf:ba:c5:a6:07:4d:f5:
3a:18:e3:5a:71:67:60:8e:20:d7:5b:f7:25:a1:c9:
77:0a:da:d0:49:f8:e0:e9:0c:82:89:1c:39:f0:72:
ae:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6A:B5:D5:19:7B:73:08:98:AF:6B:F2:66:5D:E7:3A:FC:F4:3F:AC
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f34302d3434203d3e20323135333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec2::/40
Signature Algorithm: sha256WithRSAEncryption
a4:2b:a5:d4:8e:13:0a:c0:92:c7:a3:30:e0:bb:39:86:43:af:
5c:3c:20:80:78:84:aa:b8:fe:28:4a:c5:8a:5c:4b:d6:27:9f:
f8:d5:d4:d0:f0:3a:e0:ba:2b:76:c2:4f:5f:82:b9:27:35:d7:
d5:c0:0f:ef:9d:55:eb:c5:db:c1:d6:5e:c7:9b:b5:8a:c3:40:
f4:df:ef:8a:0d:b3:73:ce:dc:72:22:4b:d4:62:98:5a:5d:fd:
c0:c7:1f:67:37:0f:ce:07:cc:de:1e:0d:d0:b1:45:e6:28:b8:
d9:22:d3:7d:94:c1:92:57:4d:02:4d:3c:ed:33:4c:d5:5b:dd:
70:05:4f:a0:a3:f4:60:8b:6f:5e:0e:f3:3f:9e:f6:93:73:4a:
3c:74:c5:8c:7c:97:5b:80:f2:27:8b:33:4a:ef:96:17:58:f4:
9b:3c:56:ac:5d:85:ff:7d:f3:74:9a:99:ae:68:a6:33:f5:e9:
50:08:ea:b4:37:d3:85:17:56:57:cd:be:42:ed:17:1a:e3:c6:
c0:e4:bb:ce:94:85:bd:ef:1c:b9:82:93:70:75:ca:b1:22:07:
90:52:c4:2b:c0:db:34:0e:74:c0:80:af:d7:85:05:3a:31:d6:
05:c4:1f:67:0e:08:bc:6c:48:c1:a2:9d:24:d6:ca:01:69:78:
6d:5b:e9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:43:14 2025 by rpki-client