Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204693.roa
File: AS204693.roa (raw, json)
Hash identifier: mlK5eRT5CmjTsxMLgaHcM1nFZlQFmwivboRmTO/e3/A=
Subject key identifier: A2:61:64:77:55:62:2A:09:0D:71:02:B4:E8:3C:B3:26:0A:6B:36:9C
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 56555F7A3C104CF1CD97A7D97AAC1A7BDD28A6F7
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204693.roa
Signing time: Thu 04 Jun 2026 15:58:51 +0000
ROA not before: Thu 04 Jun 2026 15:53:51 +0000
ROA not after: Thu 03 Jun 2027 15:58:51 +0000
asID: 204693
IP address blocks: 2a06:a005:ce0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:55:5f:7a:3c:10:4c:f1:cd:97:a7:d9:7a:ac:1a:7b:dd:28:a6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:51 2026 GMT
Not After : Jun 3 15:58:51 2027 GMT
Subject: CN=A261647755622A090D7102B4E83CB3260A6B369C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:be:60:63:b1:21:c7:15:36:ec:f4:2a:0e:dd:
59:4d:0a:54:29:de:d5:ad:59:21:db:b8:d9:35:3f:
4d:fb:50:87:96:78:f4:40:3b:f8:d5:9b:b7:33:9f:
af:cd:d8:af:6a:b2:93:b1:4e:a7:ef:e9:0b:d7:8b:
ea:23:64:ca:f4:b8:26:c0:71:b9:5f:67:63:93:9e:
e5:d2:74:03:b1:b7:9d:c5:28:b7:c9:f7:9c:97:db:
b0:08:0b:00:f5:f3:22:33:4b:da:a1:6e:66:90:87:
12:db:b9:c6:7b:f0:9f:e1:7a:bc:8a:6d:96:90:16:
a0:10:a5:4b:8e:96:66:bf:48:56:55:4c:84:93:42:
70:97:7d:33:da:59:84:37:1c:2a:c0:06:b5:af:eb:
88:fc:3d:68:42:a5:5a:22:01:ad:7a:c1:ed:15:e2:
d6:d9:f3:52:52:2f:69:62:e6:8c:d8:69:7d:f2:b5:
40:0c:51:18:0c:00:b0:90:e4:49:ae:11:15:45:27:
de:f0:97:36:1e:c1:ac:60:50:2e:c5:01:5c:12:82:
db:fe:87:c5:fe:5c:41:fe:cb:ed:66:6b:74:b8:44:
b6:f7:dc:8e:fd:21:37:4c:cd:b8:c2:81:1a:a5:d3:
f0:3b:df:39:df:3c:d8:23:4b:df:c1:b8:78:da:22:
c0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:61:64:77:55:62:2A:09:0D:71:02:B4:E8:3C:B3:26:0A:6B:36:9C
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204693.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ce0::/44
Signature Algorithm: sha256WithRSAEncryption
33:db:76:fb:06:98:9e:e8:28:49:8e:b4:08:bd:70:25:ce:5b:
c1:c6:ae:2e:81:a8:24:c7:de:19:9e:df:dc:00:ca:12:d1:5d:
a9:77:16:69:64:59:81:11:98:42:af:7a:53:1d:04:5f:3c:32:
6b:33:a8:98:01:6a:2c:f3:9b:63:cf:a5:05:b1:4b:2a:96:54:
f3:fc:54:b7:2d:a2:fc:25:cd:40:96:fc:ca:ed:dc:28:42:b7:
f7:a5:1b:d7:5d:4f:04:c7:a8:3b:2c:a9:c7:20:e0:17:9f:0a:
06:81:6b:49:b7:3e:68:2a:d1:6d:a7:1b:80:8f:f2:36:b5:44:
98:ab:6a:35:fd:4e:77:05:ec:cb:a2:a3:c3:ff:f6:87:3b:09:
97:40:ef:06:95:11:cc:90:da:25:6f:bb:1f:2f:04:fb:06:4b:
0b:7a:43:19:e0:7a:7d:2b:2e:f3:59:a4:d3:61:e3:7f:8c:b3:
cb:9d:03:f8:df:3e:ff:73:cd:f9:75:ac:f6:49:d0:b9:e0:aa:
8d:2b:35:c2:01:9f:31:b4:21:b9:31:a9:34:31:99:36:93:66:
60:b8:00:6a:12:28:ec:e4:56:80:e1:57:b8:8c:31:dc:ff:36:
05:bf:2c:5d:32:4c:c2:df:de:2e:6a:41:a0:ed:1b:20:26:1b:
d0:49:e2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:07:30 2026 by rpki-client