Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34613a3a2f34382d3438203d3e20323135393837.roa
File: 326131313a323963303a34613a3a2f34382d3438203d3e20323135393837.roa (raw, json)
Hash identifier: +Ds2R3eQvlDyTISIv2t2OAVLPOG4awihW5MlHadMDWM=
Subject key identifier: CE:03:18:3E:6F:0E:FC:17:17:A6:C6:32:09:80:5E:5A:6B:70:17:60
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 6C436AD4D4770610A3D23053713C380D6858B324
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34613a3a2f34382d3438203d3e20323135393837.roa
Signing time: Mon 18 Aug 2025 18:10:40 +0000
ROA not before: Mon 18 Aug 2025 18:05:40 +0000
ROA not after: Mon 17 Aug 2026 18:10:40 +0000
asID: 215987
IP address blocks: 2a11:29c0:4a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:43:6a:d4:d4:77:06:10:a3:d2:30:53:71:3c:38:0d:68:58:b3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Aug 18 18:05:40 2025 GMT
Not After : Aug 17 18:10:40 2026 GMT
Subject: CN=CE03183E6F0EFC1717A6C63209805E5A6B701760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:41:63:83:4a:93:7d:67:0b:a6:47:19:2a:cb:
1f:b2:bf:a2:48:a0:39:59:7e:1e:9b:65:d5:8d:4b:
54:19:ed:38:71:4a:28:3b:c6:3c:d7:64:ae:85:48:
ed:51:a8:94:56:21:13:c1:2a:a8:5e:5c:d2:78:72:
bf:b6:9e:4a:f9:19:bd:54:2c:f0:7b:44:13:15:1f:
3b:5b:57:a4:ad:1a:8f:37:9a:1f:65:31:9d:a3:42:
cb:f6:35:e3:98:b6:d3:de:e7:e2:c9:4b:4a:01:46:
58:4b:11:43:08:b6:33:53:88:95:fe:5d:f1:bb:82:
c9:75:3e:63:79:ff:ea:3d:23:d8:c6:20:09:49:ba:
ba:12:88:ba:ca:92:e9:c5:78:42:de:18:3a:20:03:
b2:3c:91:72:0c:0b:26:fd:d4:df:9f:5e:43:3b:c5:
cd:29:20:a0:62:a8:59:b4:65:25:ed:8a:68:4d:5b:
04:40:4b:65:0d:0a:bc:86:1f:57:0c:00:3f:0e:df:
01:8e:7e:52:3f:e5:74:30:d7:0e:30:35:56:74:d1:
45:33:d7:ff:6c:5e:16:a2:87:cf:9b:88:1a:cc:fa:
7c:e9:7b:60:ed:cb:2d:a7:da:71:63:38:2e:46:0d:
10:30:43:e5:bb:da:2e:f4:9d:2c:b7:ff:30:9b:5f:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:03:18:3E:6F:0E:FC:17:17:A6:C6:32:09:80:5E:5A:6B:70:17:60
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34613a3a2f34382d3438203d3e20323135393837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:4a::/48
Signature Algorithm: sha256WithRSAEncryption
36:22:10:26:7f:a6:7d:19:29:3b:d7:39:ed:31:66:9f:cf:8a:
31:0f:d0:f0:02:54:7f:8f:58:e5:9a:22:d1:33:79:63:eb:71:
7c:a9:90:b4:ce:df:1a:9c:9d:38:1e:2d:36:48:86:55:d9:3c:
71:57:43:e9:cf:eb:9a:e3:ab:d5:a1:48:66:c8:37:f0:ea:08:
0b:92:d5:21:7b:88:47:30:9a:68:2a:11:bd:b1:14:48:cb:a9:
a0:82:49:8d:13:12:4d:24:7d:1a:b8:96:50:84:2a:7e:46:59:
79:20:62:dd:07:89:8e:b8:eb:dd:cc:5e:e8:17:de:b3:00:0f:
b9:64:f3:1f:d0:40:0f:63:c2:20:df:6c:10:53:a1:e0:5e:6a:
91:57:70:af:f4:ab:e6:fe:30:8f:cc:f0:70:47:de:d6:1e:51:
f7:dc:ba:e7:f4:d3:0c:32:90:f9:88:bc:ec:02:ee:ec:25:d9:
ad:b4:d9:14:f2:45:90:c5:f5:01:dc:06:57:4b:d5:34:4d:82:
45:73:25:0d:d0:fd:1d:5b:06:5e:d0:53:b5:f2:3e:6f:1c:92:
0c:a5:7e:e1:05:49:ca:a7:00:fa:e7:c1:3e:5f:3b:6c:e7:80:
b4:16:f4:25:18:73:02:d1:d3:e1:d1:c3:ab:c4:ee:95:13:39:
a1:77:94:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:55:38 2025 by rpki-client