Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210576.roa
File: AS210576.roa (raw, json)
Hash identifier: 6P+WsuQlWBCAR1h4vBMwxO8zDqR9zWd1NsBRXXfef2U=
Subject key identifier: EB:CE:7C:3C:BF:99:F4:C4:AB:6B:32:5E:73:D3:01:3F:C4:A2:8E:68
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1A774859EC8DBCBB1B88D035AAC05B7509DDB79E
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210576.roa
Signing time: Thu 04 Jun 2026 15:58:54 +0000
ROA not before: Thu 04 Jun 2026 15:53:54 +0000
ROA not after: Thu 03 Jun 2027 15:58:54 +0000
asID: 210576
IP address blocks: 2a06:a005:1110::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:77:48:59:ec:8d:bc:bb:1b:88:d0:35:aa:c0:5b:75:09:dd:b7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:54 2026 GMT
Not After : Jun 3 15:58:54 2027 GMT
Subject: CN=EBCE7C3CBF99F4C4AB6B325E73D3013FC4A28E68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:de:63:b7:79:5e:52:f6:69:22:a2:fc:8a:93:
9c:96:8a:13:b0:df:28:29:99:d4:c2:d9:2e:f0:2e:
ff:ae:07:70:f6:9d:2c:a6:e7:31:b8:55:e8:7c:e0:
f5:cf:df:9a:4d:77:75:92:39:f4:ca:da:6c:33:51:
e5:54:73:92:47:a7:e1:fb:84:3d:13:b8:7c:87:99:
96:d5:6c:44:c1:44:c6:53:30:7c:bc:83:4f:52:d6:
cb:87:45:7f:30:8a:ed:a6:5f:06:88:69:c4:3a:c5:
d3:dd:c3:59:97:18:2a:2f:39:0a:e7:eb:c4:22:20:
ae:04:ac:30:cc:f3:4d:7c:6e:12:a8:f2:2a:5b:f2:
e7:c9:d6:bc:a7:09:a9:51:f9:6d:c8:53:82:7a:38:
ad:ef:36:ba:81:00:d4:ab:87:0a:d9:b7:3f:99:5c:
f4:67:c1:f1:b9:4b:b9:cb:48:06:6b:89:13:a5:38:
03:9c:8c:68:40:9c:8c:2b:37:ce:49:de:c2:10:39:
f3:ef:a3:86:a6:19:c8:74:17:73:4e:c4:30:7c:26:
7f:ad:b5:e7:47:a0:e6:2b:03:d0:1c:ee:a9:98:fc:
60:30:b7:9e:fd:17:ec:e6:df:57:09:dd:28:97:39:
cb:42:74:3e:ac:09:23:b4:93:09:29:64:34:78:43:
8c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CE:7C:3C:BF:99:F4:C4:AB:6B:32:5E:73:D3:01:3F:C4:A2:8E:68
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210576.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1110::/44
Signature Algorithm: sha256WithRSAEncryption
6f:56:ad:91:1d:4d:be:a6:c6:0c:46:c8:ae:7b:b0:2d:0d:15:
22:db:09:cb:d9:cf:4f:0c:55:ca:09:cb:3c:98:32:97:b1:eb:
88:1b:af:d5:a1:bb:d8:bc:0d:87:8c:92:a6:32:15:61:dc:a1:
ac:3a:52:ad:a4:a3:85:4e:bb:4b:73:ab:c9:3e:fc:78:96:30:
1c:4d:3a:52:c5:b6:27:8b:6d:0d:99:79:76:85:e1:eb:f1:39:
93:8d:65:b5:0c:b6:d4:2c:55:a3:4e:cf:53:f1:3b:61:c0:82:
2e:ce:f3:0a:4f:61:15:1a:eb:05:6d:d1:13:63:c0:12:a8:49:
fd:55:76:da:53:19:eb:b2:85:38:4d:63:85:00:03:63:ad:ce:
77:d1:4f:46:4e:d0:ce:34:54:9c:e7:54:53:5b:c6:48:95:5f:
a3:c4:20:c2:33:68:14:8c:b3:4b:97:d3:a8:8a:ca:10:c9:e2:
6e:2a:f6:2a:e1:55:7e:fc:ff:c8:92:33:0b:60:a9:62:13:75:
ef:62:d6:24:0a:85:49:1b:63:e7:8a:8b:6a:75:68:7b:02:74:
cd:f7:02:65:df:88:7c:69:82:da:7b:fe:32:b3:3b:27:27:c1:
b6:18:55:1a:2c:cc:22:60:a5:82:51:d9:e4:66:4b:97:fa:03:
47:39:83:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:41:32 2026 by rpki-client