Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200455.roa
File: AS200455.roa (raw, json)
Hash identifier: OI7wzZiuSIYRq7kMuMfajpblWckr/Lfv+g/EQCNKFtU=
Subject key identifier: 2E:84:19:11:2D:4E:AF:32:17:AC:73:FB:7B:75:FA:59:86:4C:98:E1
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 0E71911771737E6930D495BCE342DA9F35CA6EE9
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200455.roa
Signing time: Thu 03 Jul 2025 15:52:42 +0000
ROA not before: Thu 03 Jul 2025 15:47:42 +0000
ROA not after: Thu 02 Jul 2026 15:52:42 +0000
asID: 200455
IP address blocks: 2a06:a005:2b80::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:71:91:17:71:73:7e:69:30:d4:95:bc:e3:42:da:9f:35:ca:6e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:42 2025 GMT
Not After : Jul 2 15:52:42 2026 GMT
Subject: CN=2E8419112D4EAF3217AC73FB7B75FA59864C98E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:7e:a0:22:d6:15:3c:48:21:c8:a0:31:b4:
bd:06:d9:3d:63:ce:1e:2c:c3:74:f7:e4:2f:53:99:
7f:c5:f8:58:6f:b1:50:33:49:31:30:65:29:05:19:
60:ba:01:39:0b:15:c9:f2:61:e8:b4:a0:88:05:d1:
a1:5c:5a:ba:1d:63:23:05:ae:61:03:80:6d:d2:a8:
37:a1:f1:02:81:4c:1e:9e:bf:6c:a0:a8:da:01:dd:
6a:d1:fd:ce:a9:42:ac:e6:f6:63:7a:9d:44:10:dc:
e2:72:dc:4f:4e:8d:6e:01:2d:c3:6a:b5:da:1c:83:
8f:aa:ee:53:b5:51:11:b3:59:ae:16:78:89:95:a6:
f8:5b:43:cf:83:ac:07:82:c8:32:2f:0b:44:e7:79:
d6:f3:26:31:80:65:6b:f5:9c:9d:16:fd:8c:6b:e0:
e1:b9:44:54:fd:fe:91:93:45:77:da:be:bc:9c:e4:
a3:ba:1f:cb:f5:83:1f:84:71:f2:6a:d6:62:d3:12:
ac:b8:75:ad:d3:fb:fd:3e:2b:fd:70:5f:86:90:e4:
3c:d7:52:fd:96:6f:50:e4:65:65:1d:03:ce:f0:d5:
53:b1:7b:05:58:cf:33:0b:4f:f2:dc:7b:87:44:7a:
e2:a4:91:8f:cf:41:81:2a:b6:f6:10:39:5c:e8:b3:
a2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:84:19:11:2D:4E:AF:32:17:AC:73:FB:7B:75:FA:59:86:4C:98:E1
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200455.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2b80::/44
Signature Algorithm: sha256WithRSAEncryption
50:96:36:ed:76:a1:6d:34:50:2e:cb:65:c8:bf:b7:05:86:aa:
f7:30:6f:b7:54:ba:d8:e3:8d:fe:16:e8:3c:a5:24:32:da:a1:
72:87:35:94:d2:f7:24:1f:fd:9f:d4:5a:6b:c9:0d:9b:5c:57:
a2:1d:cf:42:d6:8c:0a:9d:cf:75:90:c8:69:1e:b7:e1:80:95:
5d:92:38:f5:f6:00:a3:3c:f7:7f:cd:e2:8b:3c:b0:86:17:34:
ee:a5:fd:a6:2e:03:b3:e6:db:76:e2:c6:13:cf:5b:6e:ee:dc:
71:d1:48:81:52:a9:e9:ae:d2:bb:14:e9:eb:6c:8b:52:51:0c:
ca:96:ce:2d:3c:22:3e:0c:af:be:b8:8e:99:97:df:05:9d:47:
a4:3e:8e:f9:77:56:84:0d:3f:be:7b:41:34:01:52:64:a7:9b:
49:b4:4c:ad:96:82:c1:da:68:86:fa:06:55:4f:66:b5:49:71:
75:fb:e7:cd:ee:72:37:71:28:ed:39:bd:48:b2:f6:40:bc:82:
8c:b7:55:f6:74:d5:4b:bf:1b:9a:0c:f1:2a:65:10:19:67:35:
e0:9e:3b:44:eb:4e:b5:00:e3:23:36:a2:7e:3b:17:b9:7f:a3:
cf:70:c1:3b:a0:ac:a1:83:be:f1:3e:50:01:d9:44:99:5c:6f:
da:b5:3e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 21:58:19 2025 by rpki-client