Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204375.roa
File: AS204375.roa (raw, json)
Hash identifier: f/UWGpiMz3TjYswdPNcc8CWzfdfE1+s7jX4aMYKP1Ns=
Subject key identifier: BC:E7:7D:67:40:A5:5E:AA:34:0A:05:44:31:18:02:36:AA:DA:BF:FF
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 294B67F98B6791DF4F0F3C9F1F0F290948984FC1
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204375.roa
Signing time: Thu 03 Jul 2025 15:51:53 +0000
ROA not before: Thu 03 Jul 2025 15:46:53 +0000
ROA not after: Thu 02 Jul 2026 15:51:53 +0000
asID: 204375
IP address blocks: 2a06:a005:ad0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:4b:67:f9:8b:67:91:df:4f:0f:3c:9f:1f:0f:29:09:48:98:4f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:53 2025 GMT
Not After : Jul 2 15:51:53 2026 GMT
Subject: CN=BCE77D6740A55EAA340A054431180236AADABFFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:ec:0a:c5:b7:ac:d0:c9:7a:d9:8c:2a:fa:
01:c9:5b:d7:be:64:6b:b2:a0:eb:88:46:47:50:e5:
ac:02:7e:bb:8b:da:8f:77:5a:37:1a:be:18:a2:d2:
cb:2b:9c:af:84:ce:7d:a0:f2:31:f9:ce:4e:15:38:
47:12:d1:3f:3e:fc:72:b4:97:0f:0b:7b:ed:d2:4c:
74:e6:64:ce:31:76:27:3b:5c:87:68:0b:a4:77:1c:
42:89:4f:15:fd:46:ca:3a:7c:9c:d8:49:95:ec:a3:
a3:83:4f:ee:f7:cf:e2:a4:bd:a9:ab:e5:b2:c0:d7:
46:60:4a:c9:c8:78:57:b8:b7:ff:d1:8c:b2:3c:39:
ea:04:45:2a:1b:19:00:96:64:8d:90:fe:90:38:e6:
e3:8a:29:e7:d7:fc:c3:8e:b7:bb:99:13:e2:4e:24:
62:de:20:67:6a:08:65:a6:46:70:7b:7d:05:8e:1b:
a6:7f:5f:5d:92:e9:17:94:2d:ab:17:45:f4:0e:76:
e2:60:34:a6:c6:aa:5a:db:4b:c5:54:22:de:5c:1e:
18:75:88:93:e7:e3:70:2c:9e:48:55:78:d0:fb:da:
62:56:b8:c9:7b:b2:00:c7:38:f4:01:99:3e:9a:48:
03:41:8d:78:e4:c7:3a:39:fd:94:79:2e:4d:24:91:
a7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E7:7D:67:40:A5:5E:AA:34:0A:05:44:31:18:02:36:AA:DA:BF:FF
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204375.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ad0::/44
Signature Algorithm: sha256WithRSAEncryption
5c:47:f6:c8:4e:89:5b:f2:07:d5:8d:bf:85:75:40:19:1d:ac:
2a:f2:20:63:45:fc:4a:3f:2f:55:fb:00:55:f2:11:cf:d7:4f:
67:db:37:f9:45:9f:78:34:4a:99:28:80:e2:82:07:77:fc:a8:
d0:db:48:b8:98:e2:72:77:4c:d0:8a:c5:2f:46:04:0d:fa:33:
0d:77:8a:e5:9c:f8:96:0b:8c:7e:52:ef:83:20:af:10:6a:97:
6a:a9:a2:88:9a:00:2f:71:20:3d:f5:ed:0d:39:ae:e4:26:61:
f1:87:39:db:b9:dd:f4:59:eb:6a:34:0d:7d:83:c5:39:60:ed:
79:e0:f2:24:ac:6b:99:cf:f1:71:b7:1c:18:f1:f6:b6:23:df:
97:ef:a5:b5:a3:5c:93:c9:08:19:a2:6c:f5:2f:06:94:96:0a:
2e:62:a6:35:7b:4f:b4:90:96:b1:09:7b:cf:6f:3c:b4:18:c4:
0c:e6:cb:1a:b8:06:68:98:2a:59:00:98:86:ff:41:03:14:ec:
59:46:76:7e:53:fb:57:38:4d:50:41:3d:fe:a8:d2:14:dd:8c:
f8:a0:df:79:d8:7c:f0:24:55:ad:06:90:8b:65:5d:d0:36:91:
f0:e0:be:a7:e1:c4:bd:62:66:a4:f2:ce:3c:42:20:9c:a8:64:
d3:f7:66:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:17:39 2025 by rpki-client