Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203915.roa
File: AS203915.roa (raw, json)
Hash identifier: 8xyG/BZRud1mFbWfrHYCqGbFVcvsimX4APdnqT/f+nM=
Subject key identifier: 57:44:F4:74:31:B0:81:63:D6:1A:9D:F3:5A:36:0E:0E:59:E2:2E:38
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 53F09AD96C6B4DD29400F8936258E9B414040722
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203915.roa
Signing time: Thu 03 Jul 2025 15:52:28 +0000
ROA not before: Thu 03 Jul 2025 15:47:28 +0000
ROA not after: Thu 02 Jul 2026 15:52:28 +0000
asID: 203915
IP address blocks: 2a06:a005:ba8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:f0:9a:d9:6c:6b:4d:d2:94:00:f8:93:62:58:e9:b4:14:04:07:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:28 2025 GMT
Not After : Jul 2 15:52:28 2026 GMT
Subject: CN=5744F47431B08163D61A9DF35A360E0E59E22E38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:f1:de:9e:cd:77:11:86:61:d6:d9:bb:f8:
57:b5:db:61:eb:77:02:86:cb:c1:95:d6:df:3e:31:
3d:c8:81:d2:17:91:99:e7:eb:28:41:3d:c1:38:69:
bd:69:ed:8c:44:96:ef:47:bc:5a:5c:a0:a4:85:d9:
be:a8:31:0b:1b:81:e8:ea:2b:ec:ad:1b:31:b0:08:
d4:16:49:b8:f8:04:c2:f8:43:ba:7e:87:c0:7d:7c:
89:3c:d4:fd:2d:ac:3c:58:63:61:ae:7d:75:ca:d8:
4c:a6:5d:40:f2:e5:f1:99:77:d7:0c:e3:08:b1:bf:
c7:8c:e8:83:e0:f8:b7:35:fc:ec:b5:d2:06:da:18:
04:0d:b7:e2:05:7e:da:cb:2f:38:bb:30:43:bb:d7:
08:72:55:75:25:87:ba:4e:1d:97:b3:c9:c3:62:2f:
42:65:0c:6c:f8:dd:8f:e1:b1:54:d2:5f:bf:7d:6c:
8c:81:b6:51:f6:01:67:49:6b:f3:ad:da:f4:3b:1c:
a0:d4:c4:c1:ce:0c:59:aa:e9:59:66:59:86:ad:be:
d6:2c:98:64:dc:6f:71:3e:42:e8:f7:68:6c:c5:6b:
20:f9:75:fd:de:ee:b5:ef:48:45:f1:80:12:c4:9c:
f5:12:45:17:72:0a:75:5f:fe:dd:b6:ca:42:f0:05:
68:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:44:F4:74:31:B0:81:63:D6:1A:9D:F3:5A:36:0E:0E:59:E2:2E:38
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS203915.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ba8::/48
Signature Algorithm: sha256WithRSAEncryption
1e:4e:3a:58:74:d2:13:f8:5d:70:a6:1c:f3:3f:2e:0f:31:51:
e5:e0:0f:3e:b1:ad:a5:5e:23:ed:ad:ff:28:1e:aa:a5:d8:5f:
52:c6:29:96:39:88:03:d5:16:41:5f:44:66:32:e7:1e:54:98:
e4:8b:81:00:ef:20:dd:c5:8b:3a:54:19:43:d6:f2:65:32:22:
8b:04:aa:75:47:12:77:0b:f0:3c:dc:38:d8:6b:c0:94:ad:77:
fe:74:5a:5b:af:ce:30:c9:b5:cc:6b:16:fb:e4:7e:a0:ae:fd:
e1:bf:63:23:f5:a0:e9:bd:9c:14:04:cf:b3:3b:ef:14:82:db:
3b:c4:27:70:5d:f5:0a:5f:1a:96:2a:6f:e6:dc:88:a9:44:1c:
76:81:70:de:11:62:70:15:c4:4b:e0:a0:a9:88:24:86:a1:31:
46:c4:78:b2:89:31:12:27:6e:60:44:82:d9:2b:df:ae:bd:b1:
6f:0b:35:16:90:38:61:ea:8f:ea:0b:c4:7a:cc:f9:4e:10:f3:
24:0f:1a:8f:b7:ad:d1:48:b1:eb:70:76:eb:8b:16:e8:49:6e:
e8:75:5b:bd:f7:f1:5c:4e:e1:1c:64:73:1b:e9:7a:3c:cd:0d:
2c:7a:29:3c:e8:b2:55:07:e3:9f:ea:31:1c:b5:9a:3d:09:13:
67:f3:58:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:06:09 2025 by rpki-client