Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
File: AS207852.roa (raw, json)
Hash identifier: b6FIWML1TbDirMQIVFdtqhceW2faB5AXNYxQHUE/AJA=
Subject key identifier: 40:0B:81:84:AD:CF:D1:AF:1A:7B:74:4E:CC:D5:0C:C8:8B:88:EA:93
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2426017F97B763E028EE94610F44B20DA9FF8888
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
Signing time: Thu 03 Jul 2025 15:52:16 +0000
ROA not before: Thu 03 Jul 2025 15:47:16 +0000
ROA not after: Thu 02 Jul 2026 15:52:16 +0000
asID: 207852
IP address blocks: 2a06:a005:4b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:26:01:7f:97:b7:63:e0:28:ee:94:61:0f:44:b2:0d:a9:ff:88:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:16 2025 GMT
Not After : Jul 2 15:52:16 2026 GMT
Subject: CN=400B8184ADCFD1AF1A7B744ECCD50CC88B88EA93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:02:d2:8d:d8:8c:80:be:c3:10:40:4e:68:
5f:c4:1c:3d:8d:41:33:f4:df:f1:be:e6:9e:5b:55:
2a:b4:5c:3e:6f:25:b3:31:50:31:0a:db:3c:5a:c8:
6d:95:e7:7e:a6:65:74:83:fa:0e:dc:0f:24:e7:1e:
79:19:f9:71:4f:16:61:74:96:95:c6:be:fc:ea:b5:
42:b6:a0:e4:a6:73:83:3b:72:64:c1:31:d7:05:85:
ad:7e:7f:5d:18:09:fd:56:13:51:5c:20:d1:4e:40:
28:ae:fd:4b:76:49:b4:17:ca:f9:d7:4b:bd:67:b3:
e6:14:19:e0:3e:d6:ec:63:0c:26:83:89:c6:a3:73:
15:75:7d:c0:95:72:6b:d1:56:f6:b0:e8:cd:1f:ff:
f2:c2:5a:c0:4d:b4:50:4b:11:89:ee:30:37:ab:21:
97:a0:03:c3:a1:e1:7e:79:76:54:a9:e7:57:22:1d:
0b:91:cb:1f:5a:d5:8c:45:9c:ef:9b:16:c5:cf:31:
82:64:58:a3:d7:09:5f:97:fd:72:e5:16:20:c4:d2:
67:1a:61:25:30:7b:2e:88:ae:43:2a:05:89:13:fe:
d5:70:ac:64:8d:77:cf:b5:e0:7c:2a:f4:00:5c:50:
da:c0:da:e5:e7:c9:34:52:eb:29:35:78:06:1c:9d:
ba:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0B:81:84:AD:CF:D1:AF:1A:7B:74:4E:CC:D5:0C:C8:8B:88:EA:93
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4b0::/44
Signature Algorithm: sha256WithRSAEncryption
ad:2b:93:13:8c:39:43:ac:d8:13:f0:42:15:32:e8:8b:4a:e6:
84:c0:7f:70:02:e3:da:34:d7:d3:ef:ee:f2:40:e8:c5:d6:fe:
24:da:4c:26:f4:82:64:31:8f:d0:67:c5:d6:55:26:3d:8b:51:
40:59:cb:35:ba:55:c7:db:5e:b1:0e:cb:12:c6:29:39:e9:0e:
11:1c:06:bf:37:8f:57:d7:41:f9:26:49:85:9f:98:e0:57:19:
93:b9:b6:20:bd:4f:ae:3f:c6:a1:94:5f:74:7d:bc:c7:00:be:
a1:5f:6e:47:b4:98:8a:6b:f4:94:fc:f8:da:03:fb:7e:5b:df:
5a:c5:50:11:0f:40:c0:22:5a:4b:92:46:34:13:d3:9e:f2:51:
68:c0:35:f5:f2:a4:72:9a:d0:63:2c:29:6e:61:f3:e3:d1:0b:
54:af:70:98:12:47:76:e9:a8:9d:66:0e:a4:98:ab:91:f7:38:
31:f8:a7:54:1a:78:99:1b:a4:18:b7:d1:15:f4:4d:a6:33:a4:
9b:2b:10:de:f1:5d:5d:32:ea:ae:c3:94:22:1c:26:56:b7:28:
5f:9d:aa:72:5d:a7:97:af:25:7c:26:c6:e3:96:ba:1d:4b:c2:
48:08:ef:e5:14:60:32:f8:d4:eb:1f:c8:a3:0a:39:8a:69:27:
42:fc:03:10
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUJCYBf5e3Y+Ao7pRhD0SyDan/iIgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNTA3MDMxNTQ3MTZaFw0yNjA3MDIxNTUyMTZaMDMxMTAvBgNV
BAMTKDQwMEI4MTg0QURDRkQxQUYxQTdCNzQ0RUNDRDUwQ0M4OEI4OEVBOTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1qQLSjdiMgL7DEEBOaF/EHD2N
QTP03/G+5p5bVSq0XD5vJbMxUDEK2zxayG2V536mZXSD+g7cDyTnHnkZ+XFPFmF0
lpXGvvzqtUK2oOSmc4M7cmTBMdcFha1+f10YCf1WE1FcINFOQCiu/Ut2SbQXyvnX
S71ns+YUGeA+1uxjDCaDicajcxV1fcCVcmvRVvaw6M0f//LCWsBNtFBLEYnuMDer
IZegA8Oh4X55dlSp51ciHQuRyx9a1YxFnO+bFsXPMYJkWKPXCV+X/XLlFiDE0mca
YSUwey6IrkMqBYkT/tVwrGSNd8+14Hwq9ABcUNrA2uXnyTRS6yk1eAYcnbq9AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUQAuBhK3P0a8ae3ROzNUMyIuI6pMwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjA3ODUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBQSwMA0GCSqGSIb3DQEBCwUAA4IBAQCtK5MT
jDlDrNgT8EIVMuiLSuaEwH9wAuPaNNfT7+7yQOjF1v4k2kwm9IJkMY/QZ8XWVSY9
i1FAWcs1ulXH216xDssSxik56Q4RHAa/N49X10H5JkmFn5jgVxmTubYgvU+uP8ah
lF90fbzHAL6hX25HtJiKa/SU/PjaA/t+W99axVARD0DAIlpLkkY0E9Oe8lFowDX1
8qRymtBjLCluYfPj0QtUr3CYEkd26aidZg6kmKuR9zgx+KdUGniZG6QYt9EV9E2m
M6SbKxDe8V1dMuquw5QiHCZWtyhfnapyXaeXryV8JsbjlrodS8JICO/lFGAy+NTr
H8ijCjmKaSdC/AMQ
-----END CERTIFICATE-----
Generated at Fri Jul 4 22:04:19 2025 by rpki-client