Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
File: AS207852.roa (raw, json)
Hash identifier: O7bdlgtbEW8nG37w8j4bzcj9CoTQdYSInOxzqg3GWOI=
Subject key identifier: 48:5A:56:23:EA:A4:C0:8E:B2:5F:05:29:09:E6:5E:A2:B2:C8:B8:72
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 11E9579A2545E6BA27704CF5E52115911055DD51
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
Signing time: Thu 04 Jun 2026 15:58:49 +0000
ROA not before: Thu 04 Jun 2026 15:53:49 +0000
ROA not after: Thu 03 Jun 2027 15:58:49 +0000
asID: 207852
IP address blocks: 2a06:a005:4b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:e9:57:9a:25:45:e6:ba:27:70:4c:f5:e5:21:15:91:10:55:dd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:49 2026 GMT
Not After : Jun 3 15:58:49 2027 GMT
Subject: CN=485A5623EAA4C08EB25F052909E65EA2B2C8B872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:18:c9:c1:98:6d:b2:f5:3b:31:6d:e1:92:62:
fb:9d:75:91:4c:7d:f4:cb:4a:66:a4:8a:24:f6:4a:
e0:75:a2:da:2b:ae:96:34:6f:fd:90:40:dc:0c:2f:
74:45:0c:79:64:bc:50:d9:cd:d0:fe:6c:8b:46:ca:
21:e4:5e:91:1a:5d:c7:a6:d5:6e:53:e6:53:41:69:
2b:98:ea:72:8a:7c:d4:01:5c:fb:44:52:97:79:b0:
ce:04:85:58:86:49:9f:25:e2:e5:36:11:fa:84:a4:
f0:8d:3f:39:51:c7:db:8f:75:21:aa:92:7b:0f:57:
ca:bf:ad:86:5f:e8:0b:64:9f:50:9e:25:cd:dc:53:
21:d8:c4:bb:eb:c6:4d:13:42:35:c7:a9:ef:d5:b6:
89:41:e8:18:c9:63:08:c9:53:0d:2a:fe:44:65:a4:
23:bd:91:21:b7:47:57:d4:39:db:fb:e2:fc:10:7a:
0d:83:f2:cc:7f:5b:65:38:52:2c:ec:3c:08:f9:c1:
46:3d:f4:a4:f2:7c:23:9a:17:5c:bb:27:78:61:ab:
26:c2:d1:81:f3:d1:55:37:3c:c8:f8:e9:4d:8e:3d:
6f:2c:05:ef:fa:8f:0a:c6:17:2c:6f:32:16:41:87:
af:24:4e:76:d8:96:60:de:f8:31:93:e6:6f:4c:c6:
7b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5A:56:23:EA:A4:C0:8E:B2:5F:05:29:09:E6:5E:A2:B2:C8:B8:72
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207852.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4b0::/44
Signature Algorithm: sha256WithRSAEncryption
0d:7e:a0:25:68:73:71:74:24:4a:90:c9:48:0a:f5:1a:23:a3:
47:91:c1:a7:94:5d:8f:67:24:23:aa:74:79:8f:aa:43:f5:06:
7e:0e:a7:65:05:54:4d:88:f1:0a:fb:0d:72:c7:da:d3:3c:de:
8b:a2:c5:5a:be:bc:64:e4:40:bf:37:9b:a6:02:08:3f:b2:20:
6a:a3:13:ac:be:5a:72:6c:d1:cd:b5:13:52:75:22:82:21:24:
d4:be:e8:13:6c:09:b8:12:62:9e:cb:f7:aa:13:5a:0c:bd:70:
c0:7a:43:e2:4e:cc:d0:d7:11:85:68:02:70:bb:93:e8:13:dc:
2b:09:89:e7:fd:25:68:9f:65:77:e0:1d:03:b6:fa:4e:62:8d:
47:3e:a4:c8:de:5a:4d:ea:a8:d1:41:91:8f:68:41:0e:8b:ff:
71:24:87:7a:66:1d:38:ef:de:10:9b:66:56:a6:be:81:5f:c9:
76:6d:9e:ba:c3:e2:2b:8b:e4:fa:bf:c1:ce:ab:fe:96:e3:88:
53:33:02:fd:27:55:e1:26:c3:ca:09:74:21:be:21:96:53:d2:
93:51:a7:79:60:bf:24:84:c2:f0:ea:42:49:42:88:51:e7:e6:
6c:7d:01:36:0f:9e:ac:72:0a:5f:67:31:5d:69:f6:c0:e8:a5:
d8:d8:7d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:15:48 2026 by rpki-client