Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS198550.roa
File: AS198550.roa (raw, json)
Hash identifier: UtU2RgQY4UHoeA8ZswEivtM1UeDMaJbo2oFsfQJBUfU=
Subject key identifier: FC:7A:FA:88:A0:B3:0E:4A:52:DF:B1:68:21:04:83:D1:56:B3:25:EE
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1A2DAF10690A3163E05882AA3EA31E58A6013A4D
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS198550.roa
Signing time: Wed 22 Apr 2026 19:26:40 +0000
ROA not before: Wed 22 Apr 2026 19:21:40 +0000
ROA not after: Wed 21 Apr 2027 19:26:40 +0000
asID: 198550
IP address blocks: 103.214.69.0/24 maxlen: 24
153.76.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 21:42:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:2d:af:10:69:0a:31:63:e0:58:82:aa:3e:a3:1e:58:a6:01:3a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 22 19:21:40 2026 GMT
Not After : Apr 21 19:26:40 2027 GMT
Subject: CN=FC7AFA88A0B30E4A52DFB168210483D156B325EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:35:09:12:60:bc:84:45:08:4e:93:3a:73:
2f:c6:64:18:aa:5f:96:c1:a2:23:67:22:9a:af:4f:
dc:a4:c1:2b:e4:b1:7c:f4:1b:bb:24:89:87:69:dd:
c1:08:d9:26:f7:6c:27:70:92:8f:ec:2b:a6:93:81:
3f:3b:8b:20:59:78:87:d7:f7:42:4d:02:8d:19:4d:
69:0e:c6:43:a8:15:e3:3a:d5:08:f9:85:50:2e:6d:
92:1e:6e:8d:57:b2:c5:72:d4:9d:3f:82:42:c5:56:
a0:52:a7:e7:32:d7:bd:b2:99:80:19:06:0e:0c:fc:
c3:cc:1b:93:b0:99:cd:a1:ef:7f:cc:34:3d:d4:56:
c8:80:f4:5d:9c:64:f9:1e:13:50:ed:c5:ff:db:a0:
c5:b4:83:69:8f:53:da:4a:bc:ad:b3:53:b1:c2:b2:
36:53:81:f7:fb:48:6a:e0:b6:c5:8e:6a:19:f0:27:
ff:09:63:a6:4a:c9:de:4d:7a:0d:45:af:f5:a6:e0:
37:56:49:dc:b5:97:5c:f4:8a:46:14:be:ee:da:7e:
73:69:7a:73:b2:11:6c:1e:e2:b4:f1:ae:3c:d6:9c:
cd:de:01:e5:35:8b:f6:59:a7:d3:7a:d4:a4:39:d6:
22:43:ec:ae:27:74:ec:55:f0:3a:c7:a4:42:36:5e:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7A:FA:88:A0:B3:0E:4A:52:DF:B1:68:21:04:83:D1:56:B3:25:EE
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS198550.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.69.0/24
153.76.122.0/24
Signature Algorithm: sha256WithRSAEncryption
44:2f:36:f3:48:1d:03:aa:b3:d7:2f:44:7d:a0:9f:ca:a4:75:
50:fe:e3:51:e2:e1:18:79:60:ee:bc:6b:e0:07:2c:e6:b9:0a:
e3:23:8b:cc:2c:e2:81:d8:d1:ba:61:b9:cc:48:d4:b5:85:17:
df:f3:c1:d6:ec:40:e7:19:03:4a:e5:7d:1b:15:c2:1e:79:44:
5f:3a:2c:af:1b:7d:e0:c7:58:31:40:f1:3d:21:61:c3:b5:20:
2c:30:54:88:8e:fa:5a:a1:c6:50:2e:74:d7:2a:d1:e0:0c:f3:
44:de:a6:07:bf:5f:aa:4c:e0:13:81:b9:68:57:ea:4e:36:66:
0e:00:e6:f8:ab:d9:b4:ff:89:f2:57:e2:ca:6d:fe:7a:26:cf:
2f:36:be:18:5d:3c:90:f3:90:fb:07:92:58:05:54:72:99:37:
46:4d:7b:57:8e:2d:88:5b:81:e9:c4:09:f9:86:78:37:f0:91:
55:e3:42:e7:3f:e1:c6:43:01:a7:56:bb:10:97:be:d1:9a:ca:
77:ef:9d:c8:41:08:9c:bd:91:e3:d1:b5:20:e6:66:bb:28:8b:
3a:fc:56:87:25:b2:12:84:f3:30:65:a3:5d:1b:d1:9b:b6:f5:
54:d9:9d:0b:19:4d:cb:eb:e3:4b:01:9f:5c:43:3d:ae:fd:5e:
2d:46:6d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 23 10:25:02 2026 by rpki-client