Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS199232.roa
File: AS199232.roa (raw, json)
Hash identifier: SPCBV28c40TCrmKAbvkCxrSZv8U1ekFy515gZap2e9g=
Subject key identifier: 1D:54:35:AD:D4:95:3F:FB:CA:92:41:05:50:C1:FF:C0:88:17:32:CA
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 79A1D0F7D1C7538CA8ABF3161447AE684059E5E6
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS199232.roa
Signing time: Sat 18 Apr 2026 20:19:18 +0000
ROA not before: Sat 18 Apr 2026 20:14:18 +0000
ROA not after: Sat 17 Apr 2027 20:19:18 +0000
asID: 199232
IP address blocks: 144.48.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:a1:d0:f7:d1:c7:53:8c:a8:ab:f3:16:14:47:ae:68:40:59:e5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 18 20:14:18 2026 GMT
Not After : Apr 17 20:19:18 2027 GMT
Subject: CN=1D5435ADD4953FFBCA92410550C1FFC0881732CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6c:81:fb:35:e6:33:2e:e9:23:eb:9c:bd:4e:
95:61:0b:19:fe:c7:f6:ac:d7:3f:55:0d:ae:9d:1c:
fe:52:b4:df:c8:f9:8f:e8:59:10:37:92:62:77:5e:
e8:99:31:66:b4:c4:76:8c:fa:dc:78:a2:b6:ad:ad:
57:77:6b:7d:67:83:dd:96:0e:68:1f:e3:b7:06:a8:
b1:91:ae:fc:23:a4:8a:53:cb:2b:97:b0:78:3b:1f:
ad:fa:10:c1:60:d5:f2:15:49:0f:fa:e3:bb:e9:f9:
66:66:e3:77:2f:71:6b:b1:1d:d8:35:40:cc:86:62:
c5:cb:d2:12:76:11:93:c0:3f:5a:14:17:0a:90:45:
6d:a5:f2:57:04:2c:10:16:8f:d6:af:01:58:ec:8e:
4a:28:dd:77:ac:3b:77:57:5c:ab:89:af:3c:92:1c:
90:28:8e:99:74:d7:6c:fc:97:23:83:f1:d6:21:cd:
5e:0b:54:70:fa:8c:34:7e:0f:ee:bb:73:7d:6d:0c:
18:20:58:27:c7:4a:08:c4:90:e5:9a:c9:d9:17:9a:
16:ed:1f:f0:f2:35:2b:66:f3:c2:de:40:23:31:72:
5c:17:7b:70:5e:4a:b5:f0:49:6b:d9:e2:79:b1:b2:
08:2a:3d:48:d4:ca:d3:91:02:75:28:03:a5:35:07:
ba:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:54:35:AD:D4:95:3F:FB:CA:92:41:05:50:C1:FF:C0:88:17:32:CA
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS199232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.81.0/24
Signature Algorithm: sha256WithRSAEncryption
06:88:11:0a:5f:13:f3:e0:c7:24:be:0e:2f:81:38:fc:2f:6f:
83:e7:82:19:d8:ac:50:ec:25:45:72:2b:9b:24:d6:1b:32:06:
84:c2:92:b7:44:72:5c:31:bb:55:e9:33:5d:8f:95:dd:d5:a8:
43:bf:17:e0:a4:69:35:e7:c4:34:c6:25:60:76:15:bd:94:a9:
0c:32:e5:1d:36:58:c2:2b:99:e9:aa:7c:3c:a4:bc:02:43:ec:
dc:ae:2c:2d:37:3a:24:18:79:29:a4:11:82:b4:65:a7:58:e0:
15:2e:63:8a:6a:1e:20:b9:6b:d3:8b:44:d0:3e:4a:0c:a8:c1:
ca:63:c4:35:c3:c6:7c:18:c3:e4:60:1c:70:05:bb:32:68:be:
15:40:bc:0d:67:3a:44:1b:16:02:50:27:f8:69:11:ba:a7:2e:
00:24:79:84:49:98:03:d8:de:7c:8a:e0:d4:6c:f8:31:ab:fb:
cb:c5:0b:a5:ee:85:60:b6:a6:f3:24:ec:04:50:d4:0e:1e:fa:
df:2c:d1:44:5f:cf:2c:eb:79:17:b1:78:99:86:ab:a2:a8:1f:
84:2f:13:70:91:ba:6b:04:60:79:32:52:85:8c:bd:b3:93:1e:
3a:aa:fb:50:97:54:ab:76:a6:c9:49:d4:6e:0c:b4:40:53:14:
e7:f1:87:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 09:14:47 2026 by rpki-client