Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207487.roa
File: AS207487.roa (raw, json)
Hash identifier: 37kkX/W+QwPRUKtfOpPyVWzH92ecrDYPfqHQo9SOZzs=
Subject key identifier: 25:36:D0:94:87:39:BF:5A:55:0E:8C:4A:89:C2:AE:E1:67:2B:CD:0F
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 3D2C680FE560E12DE0C9D52857AA2D12CD034E6F
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207487.roa
Signing time: Thu 03 Jul 2025 15:52:31 +0000
ROA not before: Thu 03 Jul 2025 15:47:31 +0000
ROA not after: Thu 02 Jul 2026 15:52:31 +0000
asID: 207487
IP address blocks: 94.26.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:2c:68:0f:e5:60:e1:2d:e0:c9:d5:28:57:aa:2d:12:cd:03:4e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:31 2025 GMT
Not After : Jul 2 15:52:31 2026 GMT
Subject: CN=2536D0948739BF5A550E8C4A89C2AEE1672BCD0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9c:8e:8e:e0:21:c6:4e:7a:61:a6:9c:0d:1a:
1a:8c:aa:78:8a:c4:30:de:75:0d:a2:4e:82:8e:40:
41:96:61:bb:6c:97:ab:12:f8:c4:a9:44:2b:77:08:
26:34:71:a9:5f:16:d6:86:1f:59:d5:e8:66:9a:9c:
16:0e:be:40:c4:dc:54:fe:78:1d:86:2f:a3:99:83:
d3:fb:00:78:6a:45:ad:43:04:6d:f6:29:5e:95:30:
cb:04:41:5b:12:92:67:ee:9d:ad:fa:9a:39:c7:d4:
4a:e5:b6:7c:18:bf:a5:ac:03:91:75:bf:10:b4:c5:
77:83:5e:a1:ba:24:85:04:95:08:68:0d:ce:20:c1:
74:35:0c:e8:2c:30:bb:f5:d9:2e:46:d8:14:52:eb:
ce:c2:ec:03:a4:39:e1:0b:a7:6e:fb:38:2e:4c:93:
74:16:91:48:4f:87:d4:72:45:b7:57:a3:a6:f3:ba:
5b:95:77:20:fc:7d:12:ed:e7:31:e9:30:7e:ea:bc:
f7:bc:d6:33:0d:e1:bd:64:c2:67:9b:6f:57:38:1c:
d9:d5:5f:5d:82:35:e9:86:58:1d:e8:5c:8a:41:dc:
8f:46:94:b0:1c:a2:23:b0:6f:b2:d9:f5:56:ca:d6:
31:e9:da:93:27:42:d7:90:dc:1d:2c:f5:d2:aa:2a:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:36:D0:94:87:39:BF:5A:55:0E:8C:4A:89:C2:AE:E1:67:2B:CD:0F
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207487.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.24.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:bf:63:18:2b:87:3d:4e:28:24:48:75:b4:c5:c9:f8:5e:2b:
1c:7c:cf:52:0b:37:18:1a:a2:5d:90:bd:5b:7f:4a:bd:c0:10:
db:8e:df:6d:14:46:d7:d6:23:96:bb:41:40:c8:30:d8:34:9e:
93:4d:fb:0c:b2:2d:90:2b:20:bf:29:e0:a2:29:f9:61:78:cf:
3a:f2:6b:42:63:5b:a8:37:68:71:93:08:80:d9:46:e6:86:2b:
b7:6d:b0:83:44:a4:09:fa:dd:b3:da:ad:3d:73:e8:f0:46:1c:
18:8f:62:f9:26:22:a7:d7:90:ee:80:b0:4d:1e:c7:98:23:b0:
3d:0e:1b:aa:26:35:0a:f9:87:8b:1c:c2:c3:73:09:7c:37:f7:
d3:47:9e:d5:d8:ec:26:ce:e0:55:7e:b1:dd:f5:94:69:a8:a4:
b5:33:ac:63:42:08:db:5b:de:48:cb:1d:52:cd:0f:4b:b4:c5:
3d:5b:46:4d:06:0c:ba:dd:4b:fb:8b:30:a6:f9:02:49:bb:e3:
ea:0d:46:8d:bc:1a:d8:a6:7d:4f:13:29:34:e7:5c:01:76:58:
9c:de:ee:04:2f:ef:10:b7:86:be:ee:7b:9c:3a:29:db:82:a3:
de:2c:ea:9f:31:25:b6:7b:58:65:ed:39:b6:8e:18:32:c6:22:
0d:1f:ec:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:01:40 2025 by rpki-client