Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634323a3a2f33312d3438203d3e20323030323432.roa
File: 326131343a366634323a3a2f33312d3438203d3e20323030323432.roa (raw, json)
Hash identifier: b+5d2pchfoJ7schvi1XWXcMUTuIuiTMPA8UYS8lBcfk=
Subject key identifier: 84:81:78:1B:E2:56:06:14:73:41:F1:66:D3:19:82:5A:5E:23:84:C2
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 46A72B8E7F96BEAC221DD09BB23CC0E4EE857698
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634323a3a2f33312d3438203d3e20323030323432.roa
Signing time: Mon 04 May 2026 14:45:18 +0000
ROA not before: Mon 04 May 2026 14:40:18 +0000
ROA not after: Mon 03 May 2027 14:45:18 +0000
asID: 200242
IP address blocks: 2a14:6f42::/31 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:12:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:a7:2b:8e:7f:96:be:ac:22:1d:d0:9b:b2:3c:c0:e4:ee:85:76:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: May 4 14:40:18 2026 GMT
Not After : May 3 14:45:18 2027 GMT
Subject: CN=8481781BE25606147341F166D319825A5E2384C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:9f:d4:9d:bc:36:10:29:b0:c7:46:18:0d:
84:0c:ad:e3:13:09:06:b0:4e:8d:d8:94:3a:84:b1:
81:f8:18:84:81:51:f0:00:52:ef:f1:b4:13:38:66:
2b:f9:b7:5a:0f:bb:5c:57:9f:f0:a1:3e:84:cc:4c:
b6:7d:24:16:7c:89:94:54:36:c2:6b:fb:ee:5e:25:
63:d7:ab:3b:93:e1:54:83:7e:b5:2f:98:bf:c3:c0:
58:b1:52:28:49:d6:f8:fa:e5:c7:10:e4:c4:9d:e9:
f3:0c:a2:b2:6b:73:24:f8:64:eb:90:9c:ad:65:71:
a4:08:1a:1d:bb:5b:d1:4b:11:e3:ea:0d:c7:5b:65:
ed:a1:1c:23:97:b8:7b:61:fd:1e:f8:ac:82:47:a3:
4c:5b:fd:ba:24:cb:64:c1:b5:2a:c2:24:19:9d:1b:
6a:fc:6a:e1:52:fb:7a:11:28:b8:cf:94:30:93:e8:
2a:59:f9:59:1e:d7:40:b3:f4:79:0f:42:6d:b4:4e:
84:5e:55:8d:93:86:0f:49:06:6e:11:36:5c:94:84:
df:67:4b:93:8d:7f:35:9f:ac:02:04:47:ba:13:6c:
2e:86:41:55:6c:15:ec:b4:ac:f1:1f:ff:80:8e:10:
00:38:18:04:c1:7e:6c:09:e6:a2:bd:ca:ff:ec:28:
3a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:81:78:1B:E2:56:06:14:73:41:F1:66:D3:19:82:5A:5E:23:84:C2
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634323a3a2f33312d3438203d3e20323030323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f42::/31
Signature Algorithm: sha256WithRSAEncryption
19:25:76:82:0d:58:fb:7d:40:f0:44:5c:2d:19:6e:a6:b6:68:
1d:78:1f:3b:c7:ec:13:03:92:3a:6b:a3:83:05:e5:a1:ce:d1:
e7:01:84:d0:05:16:0b:e6:b7:aa:c5:fc:c3:93:03:d6:e4:41:
56:d7:5d:8c:a6:0d:c4:fc:2d:ff:04:de:ea:1f:cc:cd:62:df:
17:13:e6:1d:a0:d1:fb:6e:97:c1:c9:0a:2a:6f:9e:50:d8:1e:
07:d7:45:79:8a:79:fd:c7:7b:1c:28:bd:7d:e5:0f:a9:4e:f0:
34:d6:5b:3d:09:9d:5b:f8:02:cc:ce:0a:7d:d9:6e:1b:ee:19:
ee:8f:0d:80:4f:44:67:01:03:0a:0a:af:d3:9a:e8:d8:7d:e3:
39:4d:f6:cd:29:e4:df:36:2e:6f:d4:df:3a:2f:5f:46:f8:51:
63:ea:75:15:40:c2:74:b8:b9:2b:7e:b1:c4:3c:16:03:7a:26:
6d:8a:c7:eb:0c:fe:c9:e5:e2:73:29:c3:5c:f5:83:d0:2a:fa:
66:ed:48:aa:43:99:51:e2:9f:32:a4:9f:9c:a6:1c:25:1d:81:
4f:d9:81:47:d2:30:9c:93:51:a1:c7:1f:62:e4:dd:7c:b1:1b:
fd:ec:74:01:83:d3:ae:95:41:df:76:10:9a:d8:42:30:60:f1:
6d:f9:9f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:18:10 2026 by rpki-client