Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa (raw, json)
Hash identifier: 1XIc2YSRLnB4ZsWHPPyM7zWbtzrv9y2IWHzYQb2CF58=
Subject key identifier: E1:34:3C:55:21:F1:26:9D:41:8D:21:ED:72:C1:74:72:A7:CC:42:F0
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 5EE4B8D7DCE7A602C5FDF7DCE0CFBE4364365F1D
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
Signing time: Sun 17 Aug 2025 21:10:40 +0000
ROA not before: Sun 17 Aug 2025 21:05:40 +0000
ROA not after: Sun 16 Aug 2026 21:10:40 +0000
asID: 216194
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:e4:b8:d7:dc:e7:a6:02:c5:fd:f7:dc:e0:cf:be:43:64:36:5f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Aug 17 21:05:40 2025 GMT
Not After : Aug 16 21:10:40 2026 GMT
Subject: CN=E1343C5521F1269D418D21ED72C17472A7CC42F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c6:3c:50:4e:71:00:fc:bf:0c:dd:9b:ae:08:
83:7f:ae:ab:fe:58:69:b1:54:0d:77:a4:b8:3f:28:
25:ee:4a:88:08:cd:ce:0f:7e:b3:bc:71:b0:60:fc:
5f:90:84:25:f5:14:a4:86:22:a7:1d:b5:11:e3:ca:
a4:2b:49:03:a1:62:a2:58:ad:a2:5b:da:37:b5:00:
e0:6e:20:b4:98:7e:b0:5b:48:e2:a1:0c:cc:58:ba:
d4:16:1a:ae:96:93:c0:81:2e:0a:5c:e3:81:78:3e:
50:e5:66:80:7f:35:66:7c:f6:da:a2:1d:18:65:a0:
30:1b:7e:2f:f0:65:3e:44:1d:99:71:0a:e1:a4:8e:
e3:b1:96:94:15:2c:58:3b:09:cc:27:5a:31:6d:26:
39:7d:92:93:1d:0c:4b:c1:cc:95:76:bf:a0:12:61:
ac:6b:9b:40:ed:bb:01:96:08:86:9a:d6:e7:2d:c9:
f4:49:6a:13:ad:d5:11:d5:bb:b8:6c:ba:55:94:23:
11:4d:18:80:42:92:1e:88:c9:71:15:bc:35:69:b1:
e6:32:07:92:51:b3:35:60:cc:08:da:31:7c:22:c6:
4e:eb:fa:7c:7e:e9:de:a2:57:4e:05:8c:d4:62:8b:
88:fc:b3:90:0b:5c:81:29:49:ce:33:8d:f8:47:9d:
09:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:34:3C:55:21:F1:26:9D:41:8D:21:ED:72:C1:74:72:A7:CC:42:F0
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
7e:02:3f:28:51:6d:a1:27:3f:b5:82:3d:b9:1f:ee:f7:8d:b4:
ec:4d:82:8e:84:2f:ee:78:97:98:cf:8c:5d:e7:86:f0:ed:71:
97:4a:e2:5b:ef:75:b1:98:ea:57:ff:37:33:43:34:ea:12:24:
47:65:1a:1c:87:3c:80:37:7a:9f:ae:ff:7b:32:db:56:ec:4c:
60:7a:0b:d8:f7:49:40:18:37:d5:99:0d:44:5a:41:c5:d6:66:
47:7a:63:82:8e:3e:2a:35:e2:3a:16:a5:47:e6:db:c6:19:fe:
91:3a:73:36:3f:81:c1:de:be:a3:a8:6b:3e:c1:34:a6:b0:cf:
2c:cb:86:a0:73:b7:16:27:00:69:1a:36:47:a1:f6:71:05:5f:
6f:13:cd:28:68:26:21:fd:df:95:13:35:3d:11:50:9d:33:c8:
aa:aa:71:4a:4f:0d:bc:d4:56:4d:05:c3:8b:d9:70:9a:fc:43:
90:ac:84:b8:ea:63:4c:1e:fc:44:9d:53:ca:c3:6c:f6:0f:67:
05:63:d1:00:7a:0f:2c:6b:ab:9e:28:97:39:94:8c:93:a6:83:
16:df:56:fe:9f:f6:cc:3e:2c:dd:5d:c9:68:66:07:4b:05:82:
64:c8:04:db:07:f9:4a:a4:38:53:82:ff:fd:1d:9f:b5:64:7c:
aa:ef:7f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:17:30 2025 by rpki-client