Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
File: AS203061.roa (raw, json)
Hash identifier: UsiiTlQdBHQh3yY0ob00kxn7YL+Jc+sEDq2duHcr/eY=
Subject key identifier: 0F:41:B9:88:1F:06:89:AD:93:63:14:91:04:E8:82:D0:D9:B2:FC:5C
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1D7640A6C9CFEEFDC21F93DA4D83D68E3DF1EA2B
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
Signing time: Thu 03 Jul 2025 15:51:55 +0000
ROA not before: Thu 03 Jul 2025 15:46:55 +0000
ROA not after: Thu 02 Jul 2026 15:51:55 +0000
asID: 203061
IP address blocks: 144.48.82.0/24 maxlen: 24
185.121.171.0/24 maxlen: 24
185.147.32.0/24 maxlen: 24
185.147.33.0/24 maxlen: 24
185.214.172.0/24 maxlen: 24
185.214.173.0/24 maxlen: 24
185.214.174.0/24 maxlen: 24
185.214.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:76:40:a6:c9:cf:ee:fd:c2:1f:93:da:4d:83:d6:8e:3d:f1:ea:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:55 2025 GMT
Not After : Jul 2 15:51:55 2026 GMT
Subject: CN=0F41B9881F0689AD9363149104E882D0D9B2FC5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:c6:48:2a:f0:9a:ae:67:87:17:e0:50:b4:
92:71:37:8e:fe:87:2d:50:e9:ea:2e:1b:08:9e:47:
ea:2a:e5:8a:31:72:75:f0:5f:f3:88:9e:0c:50:23:
00:67:6f:db:84:3c:c4:17:07:18:10:d2:b8:0e:32:
61:41:90:85:a3:5e:a8:6d:ff:87:97:a0:ac:d7:90:
61:35:1a:b7:af:9b:3a:5a:5c:eb:1d:33:01:97:04:
9d:0e:5a:be:0d:0a:d0:26:12:34:be:9f:74:bd:5b:
cf:c5:f0:cc:81:8b:ba:29:84:a1:c3:f0:9e:86:a3:
d9:6d:d3:db:cc:75:f9:00:da:f3:68:36:99:21:71:
6d:84:2d:91:df:27:7b:73:4f:21:90:eb:18:65:d3:
f9:aa:71:70:e2:13:33:49:9f:e2:47:a8:85:05:6d:
21:01:38:45:3b:29:3d:be:be:a3:03:a5:15:11:57:
01:f1:30:05:55:1f:e2:69:eb:25:4e:1c:86:f2:00:
e9:42:ed:6a:9d:bf:e3:66:47:e3:91:4c:cb:01:de:
45:48:44:a5:ff:1d:0e:de:ab:93:fd:cb:01:e3:93:
88:d5:62:e9:5c:22:e1:69:b5:96:68:13:6c:c9:2d:
b6:2e:7a:d6:5d:2e:d4:4b:ae:00:80:fd:b0:25:f1:
7f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:41:B9:88:1F:06:89:AD:93:63:14:91:04:E8:82:D0:D9:B2:FC:5C
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.82.0/24
185.121.171.0/24
185.147.32.0/23
185.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:c4:54:5a:db:7f:a8:b2:82:9f:a7:10:d9:d2:40:ef:02:4b:
e2:23:55:23:e7:0e:2f:bf:fb:40:2f:e2:83:12:f4:ae:cd:39:
a1:29:56:ee:20:91:36:42:7f:46:bb:4e:f0:d9:ee:40:5e:cd:
9c:44:22:91:66:b6:8b:f0:09:00:a5:2c:f4:53:a6:33:f1:40:
b2:51:72:9f:b8:dd:03:b1:ff:1e:c2:43:ec:e6:00:73:7d:7a:
49:01:85:71:6f:79:20:14:55:62:1d:a6:cc:17:c7:95:3c:58:
b8:73:4b:d4:71:aa:78:d3:d5:d8:16:d3:49:be:5d:23:b3:78:
c9:ec:3b:d0:a6:bf:f7:62:b1:f9:15:11:b5:a3:12:f4:66:bb:
f2:60:27:5a:16:79:ce:b3:b3:e3:ac:3a:64:b8:21:d3:31:d2:
dc:00:d3:32:7c:b8:42:09:b1:3a:4d:06:03:cc:a2:ad:f0:52:
5e:2e:09:27:82:20:98:fd:55:15:0a:c7:0f:49:6e:10:b8:ff:
60:41:21:fa:4a:80:13:33:b6:b8:09:4e:40:5b:69:01:d8:a8:
96:ca:ea:bc:9b:72:8c:51:a7:c3:ce:b2:85:de:36:21:4e:1d:
a8:b3:9f:a6:6b:be:30:3c:52:fe:2d:c8:7c:82:7c:98:17:e8:
97:77:1d:f0
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIUHXZApsnP7v3CH5PaTYPWjj3x6iswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNTA3MDMxNTQ2NTVaFw0yNjA3MDIxNTUxNTVaMDMxMTAvBgNV
BAMTKDBGNDFCOTg4MUYwNjg5QUQ5MzYzMTQ5MTA0RTg4MkQwRDlCMkZDNUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18cZIKvCarmeHF+BQtJJxN47+
hy1Q6eouGwieR+oq5YoxcnXwX/OIngxQIwBnb9uEPMQXBxgQ0rgOMmFBkIWjXqht
/4eXoKzXkGE1GrevmzpaXOsdMwGXBJ0OWr4NCtAmEjS+n3S9W8/F8MyBi7ophKHD
8J6Go9lt09vMdfkA2vNoNpkhcW2ELZHfJ3tzTyGQ6xhl0/mqcXDiEzNJn+JHqIUF
bSEBOEU7KT2+vqMDpRURVwHxMAVVH+Jp6yVOHIbyAOlC7Wqdv+NmR+ORTMsB3kVI
RKX/HQ7eq5P9ywHjk4jVYulcIuFptZZoE2zJLbYuetZdLtRLrgCA/bAl8X+DAgMB
AAGjggIBMIIB/TAdBgNVHQ4EFgQUD0G5iB8Gia2TYxSRBOiC0Nmy/FwwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjAzMDYxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEH
AQH/BCIwIDAeBAIAATAYAwQAkDBSAwQAuXmrAwQBuZMgAwQCudasMA0GCSqGSIb3
DQEBCwUAA4IBAQAvxFRa23+osoKfpxDZ0kDvAkviI1Uj5w4vv/tAL+KDEvSuzTmh
KVbuIJE2Qn9Gu07w2e5AXs2cRCKRZraL8AkApSz0U6Yz8UCyUXKfuN0Dsf8ewkPs
5gBzfXpJAYVxb3kgFFViHabMF8eVPFi4c0vUcap409XYFtNJvl0js3jJ7DvQpr/3
YrH5FRG1oxL0ZrvyYCdaFnnOs7PjrDpkuCHTMdLcANMyfLhCCbE6TQYDzKKt8FJe
LgkngiCY/VUVCscPSW4QuP9gQSH6SoATM7a4CU5AW2kB2KiWyuq8m3KMUafDzrKF
3jYhTh2os5+ma74wPFL+Lch8gnyYF+iXdx3w
-----END CERTIFICATE-----
Generated at Fri Jul 4 22:17:40 2025 by rpki-client