Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205088.roa
File: AS205088.roa (raw, json)
Hash identifier: RfsPREEcmoBod1Mgq+0lKELUTy6PQK7el3gJhs1dpPQ=
Subject key identifier: 68:D5:D3:37:CC:A1:29:AF:A3:B8:E4:96:30:91:29:E1:82:69:6D:B3
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 3C0254715FF45ADEB6A235110DD8FB39631643F5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205088.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 205088
IP address blocks: 2a06:a005:bc0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:02:54:71:5f:f4:5a:de:b6:a2:35:11:0d:d8:fb:39:63:16:43:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=68D5D337CCA129AFA3B8E496309129E182696DB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:98:fb:1b:c1:8f:1b:24:c8:9d:7a:66:e4:e4:
68:e6:db:53:08:69:b8:e0:02:29:56:62:14:31:82:
8a:39:75:bc:bd:bc:66:1e:d3:e2:c9:a6:a0:25:28:
4b:98:e5:4a:45:cf:62:58:9d:f7:08:cb:8d:0e:82:
07:0d:a1:7a:ff:17:2d:68:6c:ab:2b:2d:f7:92:ec:
f9:e5:61:ad:56:be:73:90:f3:08:0f:e1:8d:71:f4:
e8:41:9f:1b:b6:0e:b2:07:ed:83:c4:e7:18:4f:90:
40:85:08:0a:92:0c:5b:8d:0f:81:55:67:b0:4a:ad:
d2:ef:a9:49:fd:2b:96:eb:60:dc:44:e5:73:1c:20:
74:d0:fe:97:b4:63:ff:56:b6:ef:1d:3c:00:e9:cd:
38:66:f3:09:4b:0e:c3:79:46:79:e3:23:5c:ef:14:
dd:88:d0:c6:a8:cd:7b:c1:6b:ab:45:92:a5:f9:50:
70:a8:21:1a:11:ed:25:5b:30:d9:4a:e4:35:f5:26:
f3:1e:03:30:10:a9:d4:d4:9d:fe:ea:cb:ff:8d:7a:
f5:34:4e:4b:04:9f:34:a5:ac:ce:cc:1f:4c:43:5c:
d4:cc:cb:36:a4:49:87:39:66:06:e0:9a:97:b6:d6:
67:a7:20:60:de:d0:61:ef:39:6f:7c:db:2b:4c:9f:
d7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D5:D3:37:CC:A1:29:AF:A3:B8:E4:96:30:91:29:E1:82:69:6D:B3
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205088.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:bc0::/44
Signature Algorithm: sha256WithRSAEncryption
77:43:fd:a8:1f:b6:e6:b3:a9:c7:cc:14:94:96:04:d2:bd:84:
39:ac:ad:8f:4b:f8:32:ce:75:6b:4e:3c:ac:64:5d:d0:20:4b:
5d:65:2f:77:53:c6:96:cb:d2:5c:e4:c2:3e:12:06:6c:55:2f:
c5:0c:e6:b7:bd:76:04:c8:a2:16:bd:93:f0:26:13:63:e3:f9:
d7:44:24:41:ee:16:5a:fb:dc:cc:90:12:67:7a:8d:77:9d:92:
0b:eb:2a:68:17:da:62:a3:22:9c:5b:e0:00:2a:7a:ed:8a:9a:
3e:bb:09:aa:32:a3:41:2a:03:69:82:5c:d9:4e:58:7b:76:a2:
29:ad:96:15:a1:d2:00:d5:42:e2:c3:27:ed:1e:b5:9e:0f:a0:
27:3f:78:a2:2d:45:31:17:82:65:07:55:3b:84:d4:87:0f:cd:
84:73:d7:94:71:24:78:5c:ce:b7:88:f9:f1:27:2e:97:9a:3e:
29:7c:f2:e9:01:97:1f:05:0a:d2:2e:96:fa:eb:b1:9a:4b:5f:
5c:d9:c3:ca:4c:95:94:12:8e:80:1b:4a:f4:9c:cb:5e:d1:0c:
21:ad:2a:fa:4d:c3:1d:12:e6:56:ef:0c:cf:8c:a7:6c:ea:00:
2d:0e:70:71:9a:ad:2c:d3:77:ae:87:a6:a4:b6:10:2c:d3:c1:
ee:af:49:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:41:41 2026 by rpki-client