Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS139989.roa
File: AS139989.roa (raw, json)
Hash identifier: oXilrUpD1whHisneWrK0npwn79uuSW4gW+HGXcdh768=
Subject key identifier: 36:19:E8:D2:09:BE:DB:29:75:37:56:D7:6C:BB:3F:0E:E4:A6:6C:31
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 55B9DD2FD7CC117790FCCA3D6BB72F46C4F40E35
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS139989.roa
Signing time: Thu 03 Jul 2025 15:52:14 +0000
ROA not before: Thu 03 Jul 2025 15:47:14 +0000
ROA not after: Thu 02 Jul 2026 15:52:14 +0000
asID: 139989
IP address blocks: 2a06:a005:a10::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:b9:dd:2f:d7:cc:11:77:90:fc:ca:3d:6b:b7:2f:46:c4:f4:0e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:14 2025 GMT
Not After : Jul 2 15:52:14 2026 GMT
Subject: CN=3619E8D209BEDB29753756D76CBB3F0EE4A66C31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7f:18:87:9a:a4:8d:a5:e2:fd:51:27:41:14:
81:11:35:8f:5d:0b:bf:14:ef:87:4b:f4:0f:ed:3d:
f6:45:6b:94:69:e8:0a:24:b8:36:2e:12:90:37:4d:
b8:ad:ac:98:02:65:6a:4c:ae:21:6c:e0:f5:a9:1e:
b2:c9:1c:e1:bc:84:f5:66:18:93:ca:23:2e:1d:3f:
8a:01:99:b8:b6:79:e2:c4:cf:20:cd:0b:c3:36:01:
63:25:88:ba:a7:58:02:b0:53:c3:17:5f:74:a8:9f:
b3:90:13:43:72:f9:42:09:06:3d:4e:08:99:b6:3a:
0e:12:0b:9a:dc:e9:7e:78:ba:7d:63:b7:28:76:fd:
27:b9:0c:4a:d1:ee:a4:ea:d6:19:72:16:19:18:36:
07:ef:29:0a:01:81:ae:62:8c:21:58:69:9d:f6:b1:
cb:65:7e:f1:07:65:2c:42:25:a3:cb:78:3a:dd:f4:
09:d1:b1:85:5c:76:36:37:5e:93:03:40:81:5b:d4:
13:ce:19:25:49:5a:42:2d:3a:e7:3d:10:02:55:61:
65:ba:49:c2:66:1c:ba:b5:ef:81:58:d6:16:65:c6:
12:5d:a9:7a:77:a4:74:01:3a:50:91:69:10:70:0d:
b1:b2:18:d2:c7:f1:3f:b7:02:24:27:9f:81:ce:3b:
db:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:19:E8:D2:09:BE:DB:29:75:37:56:D7:6C:BB:3F:0E:E4:A6:6C:31
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS139989.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a10::/48
Signature Algorithm: sha256WithRSAEncryption
c4:92:c4:5f:7c:ae:0e:75:5c:d5:8d:36:ce:7e:cf:21:2f:0c:
d6:6a:4a:43:27:bd:6a:d2:3b:4d:3e:9d:ef:3e:46:ca:ad:4f:
81:5f:32:2c:b2:73:eb:76:2f:d9:4b:8a:78:86:fc:c7:4d:35:
cc:3b:07:c7:1c:d1:ca:5e:a3:b7:b9:3b:cf:e0:a6:37:8f:6b:
91:7e:97:d6:e2:a8:a6:b9:06:1e:85:bb:e8:b9:20:da:a7:1b:
1a:10:a0:69:53:07:2f:7a:5d:9b:d5:0a:b0:7d:ae:06:66:7f:
03:21:87:5d:7f:24:54:92:31:ad:4d:3b:03:ad:f1:c3:99:79:
dd:1e:39:d5:99:0b:2b:64:21:4c:5c:ef:7c:ab:ff:e9:25:5d:
a6:60:11:48:5c:08:d9:e8:24:dd:b3:cb:db:61:a2:81:ac:95:
6a:a6:47:fa:7e:8a:d2:90:40:ef:bc:ec:aa:13:3a:37:3a:fe:
b8:ca:80:ff:5f:be:ef:3f:10:eb:ed:08:ef:ed:6d:0d:ef:ee:
33:5a:a4:c6:e3:bd:74:cb:b6:22:2c:cc:60:54:7a:16:3e:14:
26:ff:37:08:ed:ef:94:b2:3b:e2:79:0f:4b:d0:34:b7:0b:ef:
5f:c8:9b:af:85:d8:e5:5e:46:6c:b8:5e:cc:7f:19:aa:7a:0d:
5e:30:58:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:18:07 2025 by rpki-client