Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
File: AS203061.roa (raw, json)
Hash identifier: 03GuyWuh+kJcZVc2VFLxyIvhYvfyNiQY+QwQIwb+DBc=
Subject key identifier: FC:8F:88:DB:46:AA:0F:7D:A2:40:56:FD:56:25:A8:8C:76:52:90:49
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 20AFF123B801138E603001DF980FFBA71463E176
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
Signing time: Thu 04 Jun 2026 15:58:51 +0000
ROA not before: Thu 04 Jun 2026 15:53:51 +0000
ROA not after: Thu 03 Jun 2027 15:58:51 +0000
asID: 203061
IP address blocks: 144.48.82.0/24 maxlen: 24
185.121.171.0/24 maxlen: 24
185.147.32.0/24 maxlen: 24
185.147.33.0/24 maxlen: 24
185.214.172.0/24 maxlen: 24
185.214.173.0/24 maxlen: 24
185.214.174.0/24 maxlen: 24
185.214.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:af:f1:23:b8:01:13:8e:60:30:01:df:98:0f:fb:a7:14:63:e1:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:51 2026 GMT
Not After : Jun 3 15:58:51 2027 GMT
Subject: CN=FC8F88DB46AA0F7DA24056FD5625A88C76529049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1d:a7:3a:cb:9c:f0:08:a8:bd:fd:3c:f4:73:
b1:17:5c:04:24:1d:b4:37:7e:34:8b:0d:06:5a:f3:
2f:b0:e0:c9:d0:54:2e:9a:62:de:d4:43:31:cf:bf:
6a:25:ca:5a:4f:d8:19:40:52:79:94:85:53:57:47:
ce:2f:f6:15:f7:e9:5f:97:9e:fe:f3:ea:75:3a:a2:
0a:7a:d4:da:da:b9:aa:0b:04:47:23:e7:5f:04:aa:
05:b4:e3:3e:93:e4:9a:92:9b:90:d5:15:3d:ff:e5:
f7:d2:c5:10:c7:cf:62:6e:d1:01:b3:5c:0d:b2:43:
4b:22:8f:ea:f9:4d:d7:a1:6c:9e:53:4b:55:8a:bd:
bd:43:d8:0c:55:16:63:bc:77:7a:0e:3c:12:5f:05:
3a:f8:ef:0c:9b:af:ec:4b:73:fe:cd:26:96:58:2d:
6c:66:14:90:9c:c0:6b:3a:7c:6b:9c:f9:b8:16:82:
7c:aa:f7:67:24:ba:65:d3:1a:82:cc:04:24:e6:6c:
72:af:54:21:3d:68:e7:7e:70:e9:5a:b0:d7:f9:71:
9f:3d:f0:a6:35:19:de:e8:11:23:7a:1f:35:97:d2:
a4:c7:35:10:ff:e6:db:9c:0c:82:c9:d5:7b:e5:5a:
34:2e:5b:02:96:0a:e9:5e:2e:b4:66:d7:aa:26:b8:
4a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8F:88:DB:46:AA:0F:7D:A2:40:56:FD:56:25:A8:8C:76:52:90:49
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.82.0/24
185.121.171.0/24
185.147.32.0/23
185.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:c6:75:74:04:92:4a:84:2b:8d:4a:b7:ec:64:41:ab:14:ae:
6c:c9:b1:70:3b:93:f4:86:fc:b3:d6:59:7e:b4:4c:20:66:3c:
ee:b7:ed:0b:1f:b5:04:d1:8f:7a:cd:b1:3b:ab:e2:7d:61:22:
13:0f:e1:9d:d2:6e:3a:8f:6d:f0:bf:a0:97:54:e7:5b:dd:45:
9d:ac:69:5b:04:7e:00:5e:96:d4:8a:2c:3b:2a:33:81:fc:19:
4e:65:83:b7:22:48:95:a8:d1:a7:a8:9f:1a:53:ff:56:53:f9:
63:27:96:c0:a6:b8:eb:96:31:47:03:83:3f:8d:0a:2a:e5:df:
72:d9:8c:6d:2f:4b:2a:b4:73:4e:8e:9e:5e:27:d8:fe:42:e4:
01:2e:8f:d9:53:ba:3f:37:94:4a:15:cd:70:34:14:a5:e4:63:
57:50:9f:55:a5:84:c6:92:cc:bc:0d:9d:95:42:3a:b8:6f:92:
73:fd:b6:ac:52:93:33:be:b0:d4:89:df:c5:58:10:cc:95:79:
d7:a3:ef:94:8d:32:b4:67:48:46:94:3d:e1:13:12:56:1d:8d:
7b:ec:db:cf:ff:8f:cb:08:bb:7d:ac:22:47:c1:47:3b:5a:c0:
1f:dc:4c:4d:e7:75:35:c0:19:e9:91:e1:47:de:81:47:63:a1:
cc:53:01:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 16:47:00 2026 by rpki-client