Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204901.roa
File: AS204901.roa (raw, json)
Hash identifier: Casxh4zyH0lzVo4sDr/Ghh9Y05IaLJWQFBn5rfOhPq0=
Subject key identifier: 42:62:87:4A:81:7E:3C:7D:C8:68:69:A7:4B:56:E4:B6:A0:B9:E8:87
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 427679BEB1FBBC0B2DA587631351DFADECE81B08
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204901.roa
Signing time: Thu 04 Jun 2026 15:58:53 +0000
ROA not before: Thu 04 Jun 2026 15:53:53 +0000
ROA not after: Thu 03 Jun 2027 15:58:53 +0000
asID: 204901
IP address blocks: 2a06:a005:1690::/44 maxlen: 48
2a06:a005:1c20::/44 maxlen: 48
2a06:a005:2600::/44 maxlen: 48
2a06:a005:2830::/44 maxlen: 48
2a06:a005:2840::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:76:79:be:b1:fb:bc:0b:2d:a5:87:63:13:51:df:ad:ec:e8:1b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:53 2026 GMT
Not After : Jun 3 15:58:53 2027 GMT
Subject: CN=4262874A817E3C7DC86869A74B56E4B6A0B9E887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c2:3c:68:13:9e:02:26:69:59:25:ba:ab:04:
7f:22:5c:b2:d8:de:d2:92:84:c2:18:07:17:f1:a5:
0c:cc:b4:e7:8c:fc:fa:ff:5c:ff:6c:c9:f7:fd:86:
c5:d1:a4:3a:43:17:3f:ff:61:90:27:dd:10:7b:21:
44:37:8f:81:4f:78:dd:e5:6b:c2:d5:34:5e:25:2a:
c0:e1:e9:b3:45:63:b8:0d:90:e9:28:ed:7a:8a:04:
58:2b:f2:c8:28:7e:69:3f:f8:d3:bc:cc:df:75:bb:
b7:b0:b7:d0:b1:cf:3b:07:97:c9:41:80:c7:37:ff:
03:51:0c:11:eb:c9:e6:16:72:a9:55:58:3a:6f:d8:
bc:4a:8b:f1:9b:12:49:c2:09:0d:4b:0f:81:8d:9a:
8a:00:c1:4e:37:44:f9:07:0e:27:e1:2d:27:16:b7:
a0:ed:4e:1a:42:67:30:26:91:9b:07:1e:eb:b6:a4:
35:b5:91:b0:4c:ea:63:88:3e:41:c0:68:af:d4:02:
7f:ba:7d:e3:6f:90:78:d7:a7:aa:0c:45:b9:ff:75:
8c:80:fe:db:e5:ac:cb:23:ca:8d:ab:58:fa:31:c5:
0d:17:0e:59:11:6e:28:1d:7a:9f:7c:f3:98:4e:90:
d6:e4:fc:c3:d6:e1:c1:29:bc:56:c4:6b:f2:b1:0b:
0c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:62:87:4A:81:7E:3C:7D:C8:68:69:A7:4B:56:E4:B6:A0:B9:E8:87
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS204901.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1690::/44
2a06:a005:1c20::/44
2a06:a005:2600::/44
2a06:a005:2830::-2a06:a005:284f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
38:fa:f1:91:a3:a3:51:5a:9b:ae:d4:3a:68:ab:6d:80:89:ed:
c3:20:33:ff:e8:d1:ce:90:86:fb:7a:59:12:1f:83:ce:aa:b2:
5d:63:16:9a:c1:a1:3e:95:00:e3:c1:95:f4:53:61:90:08:f2:
38:a1:f8:f7:21:4b:a2:19:86:90:08:4f:3c:66:0c:12:2e:c6:
f1:2b:a9:ec:7f:52:da:e4:a5:f8:6f:63:6a:e4:a9:50:9e:07:
11:6c:e0:9e:71:ed:e4:88:12:19:ed:19:d5:ba:20:5f:0d:6c:
5e:28:7a:2c:c0:68:8b:72:9e:f6:c2:c1:08:a2:4f:68:c4:7e:
9c:a3:1a:a4:c6:88:b2:49:01:15:f6:04:89:82:5b:0a:0a:05:
f6:ca:ca:f1:09:a1:9d:c0:39:00:5b:2e:99:22:59:85:03:b4:
c5:d9:76:9e:dc:8c:66:2c:50:79:4f:3e:81:21:e5:fd:5d:21:
99:df:1a:07:ff:fc:02:07:61:98:02:0e:41:e0:41:37:4a:f4:
1e:fc:04:69:dc:59:22:29:62:1e:07:af:12:fa:af:3b:cf:52:
28:4f:23:df:a6:9c:b6:06:56:cd:8d:24:fb:6f:b0:f6:61:0a:
9d:69:02:99:7d:04:59:21:f3:7e:7c:8a:c1:ab:50:27:e2:8d:
9f:9c:96:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:41:16 2026 by rpki-client