Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210667.roa
File: AS210667.roa (raw, json)
Hash identifier: WMIagGpakoRll+qK92M6l9aVSGfnVD7M1qvtcjAnmv8=
Subject key identifier: 36:99:D6:B7:CB:18:CF:75:AC:6A:6B:0B:4A:2E:42:A8:D3:1F:FD:FA
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1821520816BB25C8BFF8E0D383E5CFC9F754147B
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210667.roa
Signing time: Fri 05 Jun 2026 19:25:21 +0000
ROA not before: Fri 05 Jun 2026 19:20:21 +0000
ROA not after: Fri 04 Jun 2027 19:25:21 +0000
asID: 210667
IP address blocks: 89.39.211.0/24 maxlen: 24
2a06:a004:2000::/36 maxlen: 48
2a06:a004:3000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:21:52:08:16:bb:25:c8:bf:f8:e0:d3:83:e5:cf:c9:f7:54:14:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 5 19:20:21 2026 GMT
Not After : Jun 4 19:25:21 2027 GMT
Subject: CN=3699D6B7CB18CF75AC6A6B0B4A2E42A8D31FFDFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:11:78:bc:e1:d8:f1:e6:3c:6c:78:96:a8:
4c:f7:2f:1f:39:92:d7:34:c5:01:5b:ae:b6:4e:67:
75:3f:de:86:98:3b:d1:da:78:fa:81:7a:41:9b:d9:
08:cd:9a:b6:16:d2:01:5d:8f:34:3a:9f:1e:fa:0c:
f2:05:ac:52:61:5d:98:12:16:49:22:c8:1a:7d:2e:
fd:3d:a0:4c:81:26:01:7a:99:be:ee:fb:5b:f4:ef:
0c:96:ab:96:69:a5:7a:5a:f8:5d:a3:66:14:49:78:
a3:13:c0:04:a6:e3:0a:f5:fc:1c:77:86:c0:6b:48:
7f:d9:99:6f:90:b4:aa:3d:39:27:98:2c:07:84:fa:
84:f3:e9:19:80:e0:40:58:b3:b0:3f:da:f4:d5:e1:
49:3b:59:f0:55:5b:41:00:00:d6:90:2b:0d:dd:3f:
9a:33:0c:78:ac:88:ba:7b:f5:46:cf:51:97:92:8b:
ba:63:f4:81:5c:15:5d:1c:fe:26:dc:eb:a2:03:ba:
ff:9a:89:90:57:a1:ff:0d:a3:f1:d9:fb:6f:28:a5:
cc:0c:29:82:b2:ab:0c:50:fd:e7:6a:a5:5a:3d:a5:
f7:2e:63:7d:33:78:cc:27:46:7d:b7:94:5e:34:60:
dd:15:f1:86:a5:1f:0e:fb:c0:a4:d7:42:83:8c:28:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:99:D6:B7:CB:18:CF:75:AC:6A:6B:0B:4A:2E:42:A8:D3:1F:FD:FA
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.211.0/24
IPv6:
2a06:a004:2000::/35
Signature Algorithm: sha256WithRSAEncryption
4c:39:68:87:7a:bf:f8:e1:ea:e6:9e:ad:b9:45:13:c8:71:ff:
34:65:db:1f:b6:65:96:34:d6:58:3c:f1:b9:91:6c:b0:a6:4a:
fe:c8:83:b5:e4:1f:e9:c6:18:bd:0c:1f:5e:dd:3a:42:a8:1c:
6b:47:f2:23:d6:fe:03:4f:ec:07:07:82:90:88:aa:31:bb:0a:
16:8e:a5:db:3d:90:92:5d:dc:8e:c9:3e:46:30:87:be:90:57:
88:8a:cb:a9:e3:3f:fd:c6:ca:94:11:36:97:93:8b:08:8c:3d:
2a:b9:cf:e4:1d:52:ef:98:0c:3e:cb:91:15:50:52:d8:84:bc:
22:8e:ce:a0:ed:5a:32:27:8d:37:c8:b3:62:4a:48:e5:c2:55:
6d:8c:20:a4:02:aa:55:58:22:02:14:e8:2f:d1:ca:49:51:aa:
dd:31:61:d6:a5:05:8a:a4:6c:41:c6:d7:60:95:3c:f4:97:ab:
aa:17:41:ef:d9:55:02:02:7b:cb:c2:0b:27:2f:53:77:94:65:
84:da:28:52:19:f2:f1:97:bf:e3:3d:f5:0f:95:21:2f:f4:bd:
4b:2c:40:4f:3f:e8:5a:f3:b6:fa:12:06:01:25:3c:f9:ff:09:
28:17:a4:3f:34:64:9d:f1:e7:a6:6e:f1:48:36:0b:bc:0b:f5:
e8:e1:86:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 23:33:59 2026 by rpki-client