Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa
File: AS16276.roa (raw, json)
Hash identifier: zxcVKBrdYhVshws2+sr92ccQzS53obQjZkvUw/D0W6M=
Subject key identifier: D6:F9:55:DA:87:3B:BF:03:D0:FA:E6:11:62:4C:1B:82:16:95:B7:FE
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 6818A1930C2F01E3B00F4BCACDB3E86A05EC02B5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa
Signing time: Thu 03 Jul 2025 15:51:29 +0000
ROA not before: Thu 03 Jul 2025 15:46:29 +0000
ROA not after: Thu 02 Jul 2026 15:51:29 +0000
asID: 16276
IP address blocks: 104.167.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:18:a1:93:0c:2f:01:e3:b0:0f:4b:ca:cd:b3:e8:6a:05:ec:02:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:29 2025 GMT
Not After : Jul 2 15:51:29 2026 GMT
Subject: CN=D6F955DA873BBF03D0FAE611624C1B821695B7FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ce:c9:7c:06:0c:32:e2:f1:23:b3:9c:5a:a0:
fb:92:ea:4a:cf:85:49:ff:9b:0b:b2:f7:aa:84:ff:
d2:f1:b0:fb:ee:57:64:af:5d:73:81:40:fd:8c:80:
b2:7c:fc:4e:d8:cf:9b:e8:88:94:89:15:64:0b:d3:
ef:37:9e:7b:ff:5d:c1:98:60:cc:2d:bb:68:79:b5:
13:c2:97:69:b9:65:f6:ab:83:68:be:a9:15:3f:be:
0a:4b:1a:a7:c0:4b:36:01:97:a6:eb:c4:a5:9e:4e:
2b:a6:6b:8d:b1:c7:52:e1:f3:81:42:56:3b:c0:ee:
96:b6:1f:75:23:71:6d:c7:f6:74:17:69:93:98:56:
0d:5a:fa:f6:81:64:cb:dd:4f:70:3f:20:d0:42:f5:
73:07:2c:3c:67:f2:76:9f:45:85:ed:f9:e8:b8:e4:
e8:b9:26:07:7f:8b:0c:47:f9:1a:bc:a5:4a:bc:4c:
da:5c:9a:05:cd:dd:e0:f9:9a:81:07:ad:bd:06:87:
da:87:e6:2e:7c:cb:ee:64:e3:bd:da:28:bc:5b:d3:
26:4a:33:94:3c:d2:c6:ec:3e:1f:c8:78:b7:43:38:
2f:b8:fa:a8:ae:78:c6:6a:87:eb:41:fb:a7:67:0f:
35:0a:86:f4:d2:02:c1:9e:3f:c4:08:c3:6e:9c:08:
cd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F9:55:DA:87:3B:BF:03:D0:FA:E6:11:62:4C:1B:82:16:95:B7:FE
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS16276.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.167.16.0/24
Signature Algorithm: sha256WithRSAEncryption
49:38:05:36:fb:1e:77:99:ab:dd:4c:7f:6d:1e:06:46:a8:96:
8f:dd:51:d4:f7:12:f1:17:74:58:a4:cb:7c:f5:e1:ac:28:1a:
1c:7e:09:b4:a2:30:39:99:b0:f0:02:bb:3f:85:51:27:5d:5b:
f7:53:77:6f:35:7d:94:90:ab:59:9f:35:03:82:61:48:21:eb:
0f:80:3f:83:9c:62:95:15:b2:c5:86:4a:71:55:47:79:31:2a:
e1:5d:1f:9a:6c:9c:86:27:9e:8a:19:74:6d:5c:61:d6:76:81:
89:ea:a5:47:b5:5c:ba:89:ce:18:9e:e5:c3:f3:ed:f1:da:ad:
f7:55:20:87:08:8d:bf:e3:73:29:5b:23:80:db:b0:96:54:84:
98:b0:8e:fe:7b:9f:73:3d:1d:9a:bf:07:c3:cc:da:a7:a7:02:
35:db:d3:b6:d4:5f:5b:dc:0c:2a:c2:16:39:34:ab:0a:3c:be:
00:8c:6a:5e:d7:a3:34:3d:3a:e3:60:2d:9b:2d:09:38:66:0a:
49:99:4c:d2:48:c2:63:bc:15:8f:63:c1:4d:cd:20:11:ff:f7:
9c:41:37:d1:a9:1c:be:0d:94:31:8c:5d:a0:15:97:13:6d:f2:
9d:1c:ff:e2:17:cd:57:82:6b:2e:c3:59:96:e9:ae:50:2d:bc:
68:20:d7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 21:55:09 2025 by rpki-client