Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200879.roa
File: AS200879.roa (raw, json)
Hash identifier: NIcfwwGyqC/fE4yVWngIN0RmRD6JfF8VidU6jszEqoo=
Subject key identifier: 31:B9:09:88:A8:27:06:DC:58:81:34:59:E3:BB:97:A1:88:BE:9D:55
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 04A7C9A10DF40EF71D3CAE0000C8C0C82ED76E04
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200879.roa
Signing time: Thu 03 Jul 2025 15:52:14 +0000
ROA not before: Thu 03 Jul 2025 15:47:14 +0000
ROA not after: Thu 02 Jul 2026 15:52:14 +0000
asID: 200879
IP address blocks: 2a06:a005:1d51::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:a7:c9:a1:0d:f4:0e:f7:1d:3c:ae:00:00:c8:c0:c8:2e:d7:6e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:14 2025 GMT
Not After : Jul 2 15:52:14 2026 GMT
Subject: CN=31B90988A82706DC58813459E3BB97A188BE9D55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:d2:6b:61:85:a3:35:ae:da:56:8d:9e:a2:
d5:8f:0a:b6:c4:64:5d:a0:4a:0d:3a:4e:cd:14:fc:
49:be:50:98:24:85:dd:1b:0a:ad:49:25:aa:94:bd:
64:d9:ab:4d:e8:a4:7f:b9:7d:19:82:ad:2c:7d:55:
1e:c5:7c:32:3a:23:57:56:2c:8c:c5:66:13:33:1e:
f8:3a:a0:19:b5:74:d8:40:42:c7:39:7e:0b:3c:aa:
a3:c7:10:e4:84:af:9a:17:1b:44:92:c7:00:d4:ef:
3d:16:ba:8f:d7:a5:43:97:67:4a:cb:51:56:8c:8a:
1a:54:7c:14:26:d0:c2:be:09:79:bd:d0:a8:60:af:
ba:50:17:7f:f4:66:41:29:53:da:1a:df:e9:a8:3b:
3c:ff:38:63:44:dc:4c:95:5c:e9:a8:04:a3:70:8a:
29:c4:7a:5e:60:95:84:9f:54:07:81:a6:e9:18:ea:
c3:7a:7d:b1:05:f8:5b:21:71:4e:37:62:7f:56:35:
11:84:03:db:e2:96:ad:65:e6:0d:cc:17:0b:12:36:
c3:f9:85:1c:5e:1a:30:6c:10:df:8d:7d:d3:29:a5:
bc:41:18:27:03:34:15:a8:3e:ed:cb:a0:a4:3e:af:
94:c2:df:fb:4f:cb:48:78:84:50:b9:b8:7b:6d:df:
a4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B9:09:88:A8:27:06:DC:58:81:34:59:E3:BB:97:A1:88:BE:9D:55
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200879.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d51::/48
Signature Algorithm: sha256WithRSAEncryption
3c:9f:a9:0d:4b:d3:3d:cd:2b:30:29:a3:6d:53:ee:d9:b4:e9:
d8:ea:a4:6c:f0:e0:41:0b:e6:97:c7:f7:b2:17:7f:96:66:20:
b0:18:cc:54:19:af:75:02:69:8d:3a:21:52:5d:fb:36:0d:22:
58:f6:66:c9:2c:30:31:13:01:c8:31:bd:09:61:ff:45:c8:ff:
3c:0b:4b:59:d6:d4:42:18:7b:68:3b:76:bf:c4:79:7f:5f:01:
01:25:d2:1e:ef:81:bb:09:eb:1c:57:a3:8f:76:cf:df:5b:53:
4c:b0:b2:97:9d:91:e5:e4:86:e1:f4:63:21:26:40:08:ed:1c:
c5:b5:16:37:a1:42:23:da:0b:fa:31:46:30:31:6b:8a:88:27:
3d:bf:2e:6b:61:f5:f8:3c:0d:ff:09:09:83:56:83:17:8f:44:
97:34:3c:e3:9d:a8:86:ab:4d:ca:72:87:0e:ae:fe:a5:fa:7b:
06:c4:5e:ee:2c:75:ff:a6:b2:9f:53:98:5d:57:b4:19:b2:bf:
04:7e:db:79:31:34:34:a6:ac:b9:53:af:40:8b:23:d7:d8:c6:
8f:5a:ac:af:e6:01:7c:e6:ca:6e:78:b4:e2:58:bf:03:a2:01:
46:5b:5c:44:88:af:d7:df:02:3c:4e:68:99:b1:0b:03:b6:22:
a5:f0:16:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 21:59:47 2025 by rpki-client