Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS49981.roa
File: AS49981.roa (raw, json)
Hash identifier: 3EHR+/yBf6DSm3SpE/DdgrjPILVuyXMNttFF/yMsSF8=
Subject key identifier: 59:A7:B6:44:BE:E4:33:72:1A:AF:CA:25:B0:4C:3B:86:2E:C5:0E:70
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 07B6DF060FE213B0FA8665D4C3C9D88D3AC7B5E3
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS49981.roa
Signing time: Sun 11 May 2025 20:55:25 +0000
ROA not before: Sun 11 May 2025 20:50:25 +0000
ROA not after: Sun 10 May 2026 20:55:25 +0000
asID: 49981
IP address blocks: 185.99.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:b6:df:06:0f:e2:13:b0:fa:86:65:d4:c3:c9:d8:8d:3a:c7:b5:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: May 11 20:50:25 2025 GMT
Not After : May 10 20:55:25 2026 GMT
Subject: CN=59A7B644BEE433721AAFCA25B04C3B862EC50E70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e5:96:eb:ca:9a:a3:01:b7:66:4a:a6:9a:df:
8a:fc:5d:dc:d6:77:cf:c9:3d:64:8e:81:6a:a2:69:
14:61:a1:9a:e8:8c:e3:10:bc:03:48:11:fe:d6:e2:
35:9c:ef:2f:07:df:ca:82:6d:7c:43:c8:1b:ed:89:
80:fd:a2:e1:c2:20:b4:6c:eb:9b:d0:bc:a1:26:bd:
7d:14:98:ec:12:9a:6f:f1:48:1a:b6:a8:09:c9:b4:
fd:e7:a2:32:0f:ad:5b:38:3c:1b:bd:e6:4f:ad:b8:
dc:9b:fe:82:2e:e8:ae:47:7b:ad:39:d8:2a:e6:a5:
8e:b0:26:a0:1b:8f:c1:15:75:92:b7:71:22:e7:85:
4d:55:8e:78:a1:00:21:4b:b0:6a:2a:5e:a2:87:2b:
8e:30:fc:a5:d5:4d:0e:b5:97:b2:d0:f8:fd:cc:c2:
68:69:8d:66:a9:8c:dc:a2:28:1a:fa:bb:bf:62:24:
73:e5:7c:8d:d9:71:0d:0c:46:f0:ce:0a:90:5f:74:
54:2f:1f:50:22:88:e2:08:4c:33:09:7b:12:97:c1:
f6:0f:e1:1d:4f:b2:79:64:a2:af:c2:e6:8f:b1:0b:
0f:93:37:5e:1c:b0:34:be:50:b3:52:bc:ba:84:24:
03:1f:9e:fd:97:60:ba:b7:36:83:db:b4:5f:16:21:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A7:B6:44:BE:E4:33:72:1A:AF:CA:25:B0:4C:3B:86:2E:C5:0E:70
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS49981.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.135.0/24
Signature Algorithm: sha256WithRSAEncryption
00:91:b8:65:cf:ad:34:53:a1:c5:3b:b7:ae:cb:98:b4:7a:4c:
92:3a:e1:94:f2:88:df:1a:93:f5:94:f0:3d:8f:cf:3a:39:38:
69:56:a0:a0:61:6c:1f:a2:bc:51:44:17:8a:48:bb:81:99:da:
d5:df:62:f6:a1:59:a6:bc:74:30:58:97:c4:eb:ad:dd:89:2c:
66:9e:3e:3d:01:06:c6:77:1e:3a:88:61:b4:3d:57:48:cb:4a:
ad:5d:6c:61:5c:0d:a2:38:5b:fa:9c:05:8b:90:9e:7a:51:a9:
60:bd:63:08:07:cf:b5:16:a3:ba:65:e8:f8:f1:55:90:94:d4:
fa:5d:ff:bd:ae:e5:ab:f1:7b:f0:9d:58:04:a9:a7:c1:70:bb:
21:35:76:74:88:b6:21:fb:6e:09:1b:b3:78:ea:51:84:06:e3:
6d:d2:b6:f1:02:dc:a3:cf:94:3d:6f:2a:fc:9f:f6:a5:98:77:
e2:83:31:a0:37:81:f9:60:df:65:5c:8d:44:ee:b4:da:78:58:
0e:a8:09:d1:3f:8a:ee:73:4a:c7:bb:49:bf:e9:eb:34:05:40:
60:08:1d:33:ee:71:8b:ec:d1:d8:c5:22:a5:5e:ca:c5:59:24:
fd:b2:d5:01:bc:20:dd:14:83:15:fa:15:e4:9e:6a:c7:01:0c:
fb:1e:1f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 12:26:28 2025 by rpki-client