Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
File: AS211431.roa (raw, json)
Hash identifier: nvA6l+Jwc9G5CptQvUenSWlzbQPwUVv2NFFMNjCQ108=
Subject key identifier: 51:3F:04:59:F2:F3:02:48:5C:2A:68:A2:12:AF:4B:2F:77:24:21:52
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 67EAE87192E9A3C6C99BD1C2917D042AF1C58B1C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
Signing time: Wed 05 Mar 2025 06:40:18 +0000
ROA not before: Wed 05 Mar 2025 06:35:18 +0000
ROA not after: Wed 04 Mar 2026 06:40:18 +0000
asID: 211431
IP address blocks: 81.31.212.0/24 maxlen: 24
2a06:a005:1720::/44 maxlen: 48
2a06:a005:1790::/44 maxlen: 48
2a06:a005:17b0::/44 maxlen: 48
2a06:a005:17c0::/44 maxlen: 48
2a06:a005:17d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ea:e8:71:92:e9:a3:c6:c9:9b:d1:c2:91:7d:04:2a:f1:c5:8b:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Mar 5 06:35:18 2025 GMT
Not After : Mar 4 06:40:18 2026 GMT
Subject: CN=513F0459F2F302485C2A68A212AF4B2F77242152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:b0:6a:f0:f4:2f:14:d2:72:75:79:a1:a0:
f1:d0:5e:cc:12:c7:01:3c:e5:43:7f:60:98:e9:47:
43:f1:4e:49:8b:0a:d5:5d:6e:9d:f7:e6:06:8b:07:
f1:1b:9e:c8:90:e4:62:c2:e0:7b:5a:9d:53:43:e5:
61:79:56:f0:86:18:d1:4d:ef:87:0e:f2:e2:14:76:
34:70:58:82:a7:4d:67:ca:d9:40:f9:b0:26:42:f5:
63:50:1c:b9:b4:cf:17:23:8b:cf:23:a9:b8:d8:df:
88:09:43:de:ba:3b:d2:8f:d3:d9:21:10:25:4f:e5:
aa:e0:0e:cb:62:a4:41:d4:0b:33:48:d5:85:82:3f:
57:bc:85:06:5f:69:53:84:e9:0f:f2:c8:66:36:ce:
ab:ab:bb:03:1c:30:a2:f1:36:0d:83:73:0e:13:eb:
85:dc:df:4f:55:f7:61:7f:ab:f6:bc:8f:ce:ec:d6:
36:db:da:39:14:4f:69:4c:4c:1c:6d:2a:1a:06:5d:
09:b4:8b:46:4d:3f:9c:bd:b4:32:e6:25:55:f0:5e:
5e:45:fc:f1:cf:6d:88:1a:d8:cb:c0:b1:51:07:da:
55:1b:1d:ac:7e:7d:d6:7f:28:b8:ef:1c:90:57:81:
d2:45:18:a5:42:65:f6:8b:63:78:79:8e:a0:9b:42:
f2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3F:04:59:F2:F3:02:48:5C:2A:68:A2:12:AF:4B:2F:77:24:21:52
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.212.0/24
IPv6:
2a06:a005:1720::/44
2a06:a005:1790::/44
2a06:a005:17b0::-2a06:a005:17df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
50:a3:f4:89:1b:a1:c2:e4:4b:64:81:f1:b0:4f:b6:31:29:ec:
36:87:06:31:5c:59:ff:06:d2:6d:af:d7:76:d2:61:59:3b:f6:
f2:7c:ad:78:e3:a8:af:f9:1d:21:a2:59:07:95:79:ac:af:df:
6e:1d:c0:01:f9:39:5f:3e:a4:a9:4f:8d:51:67:45:fc:cf:c8:
b3:b3:22:53:5e:bb:8c:14:63:6f:2a:ec:ad:e6:d4:8a:76:c1:
09:a5:e0:4f:0c:31:00:05:cd:fa:a0:0e:dd:91:d5:33:52:0d:
e2:e7:90:3a:9a:32:97:82:1c:b1:55:0f:76:93:21:fa:8c:ce:
af:e5:21:ac:77:b6:1c:fa:0e:54:3d:2f:d6:42:be:c3:23:ea:
e1:f0:7e:e0:1a:e5:a9:36:ac:6c:73:4b:c2:40:5a:73:17:2b:
ea:f8:c9:6a:9e:65:c1:56:28:6d:95:2c:c1:af:2b:1b:04:b3:
f8:2a:55:bd:7f:78:bf:c6:85:41:b8:bc:28:51:34:8f:a4:54:
fe:f1:02:bb:b7:cf:9c:f1:4d:cb:cd:9b:0b:92:8e:ca:f8:c2:
27:52:25:ff:f1:3c:8d:7c:a5:a7:1f:8c:eb:a6:f4:98:ad:90:
05:29:ef:7b:0a:b0:18:f7:3c:1b:a3:00:ee:42:ba:c3:e9:d3:
0a:8e:19:f8
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIUZ+rocZLpo8bJm9HCkX0EKvHFixwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNTAzMDUwNjM1MThaFw0yNjAzMDQwNjQwMThaMDMxMTAvBgNV
BAMTKDUxM0YwNDU5RjJGMzAyNDg1QzJBNjhBMjEyQUY0QjJGNzcyNDIxNTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBCrBq8PQvFNJydXmhoPHQXswS
xwE85UN/YJjpR0PxTkmLCtVdbp335gaLB/EbnsiQ5GLC4HtanVND5WF5VvCGGNFN
74cO8uIUdjRwWIKnTWfK2UD5sCZC9WNQHLm0zxcji88jqbjY34gJQ966O9KP09kh
ECVP5argDstipEHUCzNI1YWCP1e8hQZfaVOE6Q/yyGY2zquruwMcMKLxNg2Dcw4T
64Xc309V92F/q/a8j87s1jbb2jkUT2lMTBxtKhoGXQm0i0ZNP5y9tDLmJVXwXl5F
/PHPbYga2MvAsVEH2lUbHax+fdZ/KLjvHJBXgdJFGKVCZfaLY3h5jqCbQvIlAgMB
AAGjggIdMIICGTAdBgNVHQ4EFgQUUT8EWfLzAkhcKmiiEq9LL3ckIVIwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjExNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME0GCCsGAQUFBwEH
AQH/BD4wPDAMBAIAATAGAwQAUR/UMCwEAgACMCYDBwQqBqAFFyADBwQqBqAFF5Aw
EgMHBCoGoAUXsAMHBSoGoAUXwDANBgkqhkiG9w0BAQsFAAOCAQEAUKP0iRuhwuRL
ZIHxsE+2MSnsNocGMVxZ/wbSba/XdtJhWTv28nyteOOor/kdIaJZB5V5rK/fbh3A
Afk5Xz6kqU+NUWdF/M/Is7MiU167jBRjbyrsrebUinbBCaXgTwwxAAXN+qAO3ZHV
M1IN4ueQOpoyl4IcsVUPdpMh+ozOr+UhrHe2HPoOVD0v1kK+wyPq4fB+4BrlqTas
bHNLwkBacxcr6vjJap5lwVYobZUswa8rGwSz+CpVvX94v8aFQbi8KFE0j6RU/vEC
u7fPnPFNy82bC5KOyvjCJ1Il//E8jXylpx+M66b0mK2QBSnvewqwGPc8G6MA7kK6
w+nTCo4Z+A==
-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:23 2025 by rpki-client