Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200766.roa
File: AS200766.roa (raw, json)
Hash identifier: nhmNq0sQwBHeqivCGDAHTFkvByCuh8fsCsd5MSvEEak=
Subject key identifier: 26:EA:F1:4D:59:AB:6E:F9:26:33:C4:57:2B:28:34:C3:C4:E2:AB:29
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 68B46728915CD13E51DC807D0EBA520944B19383
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200766.roa
Signing time: Thu 03 Jul 2025 15:52:10 +0000
ROA not before: Thu 03 Jul 2025 15:47:10 +0000
ROA not after: Thu 02 Jul 2026 15:52:10 +0000
asID: 200766
IP address blocks: 2a06:a005:116b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:b4:67:28:91:5c:d1:3e:51:dc:80:7d:0e:ba:52:09:44:b1:93:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:10 2025 GMT
Not After : Jul 2 15:52:10 2026 GMT
Subject: CN=26EAF14D59AB6EF92633C4572B2834C3C4E2AB29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:eb:b5:8b:1f:db:c3:a0:ae:94:32:e0:47:e5:
9b:f6:c9:1d:76:8c:28:e5:0a:e0:63:d0:83:bb:89:
61:21:2d:04:b5:93:60:09:cf:d4:a5:96:47:ad:08:
1d:15:31:d3:1e:6e:97:4a:07:5d:78:df:10:71:8e:
e3:87:4c:54:ad:8d:87:51:20:8c:d4:3d:95:dd:0e:
45:40:12:69:5e:43:04:91:dd:51:52:14:35:b8:71:
dd:8f:0c:f5:bb:45:a2:05:3a:1e:25:5c:b4:c0:55:
8c:01:20:30:e3:6e:7a:f0:75:87:91:01:97:88:5b:
08:ef:c8:a8:9b:6f:b2:2e:6c:f0:bf:64:58:e7:8c:
30:9e:29:f8:54:ee:be:fa:18:2d:85:a0:6d:93:08:
e9:21:a5:55:72:cc:ab:54:74:2b:4e:e1:9f:66:b9:
47:bf:16:c8:cc:79:74:bd:b2:68:bb:24:04:16:9a:
03:6a:2e:14:74:59:d9:78:b1:e9:b0:1e:a5:1e:bf:
68:92:45:f8:0f:d6:0b:74:31:5e:49:c2:28:a2:e2:
f9:4f:f2:aa:cf:25:96:9d:dd:15:c8:65:4f:99:c1:
36:9e:c8:5b:1e:af:c7:d9:02:8f:fc:7f:15:22:70:
e2:2e:44:5d:b6:8a:6f:2b:3a:6e:b0:6c:9f:2f:1a:
c0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:EA:F1:4D:59:AB:6E:F9:26:33:C4:57:2B:28:34:C3:C4:E2:AB:29
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:116b::/48
Signature Algorithm: sha256WithRSAEncryption
1f:b6:fb:04:e2:7c:f7:b1:29:82:1b:bc:99:30:93:14:44:f8:
59:4b:d7:a4:de:ff:da:1e:a9:68:af:20:81:a8:89:db:8f:ae:
0e:ef:92:2a:bc:60:ca:23:ca:79:77:84:b7:3c:2e:7a:2c:79:
c6:fa:23:d3:75:97:30:5e:4e:bd:60:c9:7a:84:67:e8:f1:32:
4f:dd:b7:32:14:fb:82:d8:ad:23:e6:27:eb:2e:25:eb:51:6d:
30:00:3d:e6:4e:b8:2b:fd:c6:42:ce:9d:a4:25:26:0b:de:db:
47:75:a3:97:b3:20:a8:fe:7f:fe:60:0b:f5:4a:39:bb:8d:81:
34:f1:2b:01:27:f7:0f:50:d5:e2:c4:b9:60:de:07:27:1d:f4:
4d:35:56:35:b9:a2:59:e3:96:dc:a2:c1:69:98:c4:c8:92:91:
fd:76:a1:2f:0f:09:83:d9:08:ad:2b:c7:05:ab:7a:a1:3f:cb:
6c:37:a9:53:af:d7:4f:54:e0:dc:3c:aa:b9:15:60:87:a5:1a:
3f:37:36:de:96:d1:8b:0e:8f:b5:a3:e0:50:3f:49:11:b7:24:
0a:a6:93:bc:b6:16:d4:d0:80:85:d7:8c:7f:a9:a3:03:25:8b:
59:e3:c7:5a:e1:fa:74:13:91:b6:98:8c:29:e2:2e:5d:4b:ea:
c7:bd:38:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 21:58:59 2025 by rpki-client