Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211151.roa
File: AS211151.roa (raw, json)
Hash identifier: 7yOFmpm8sJXNo3DOYW+lwto82VM5fkwdA42t6xaIX7M=
Subject key identifier: 25:3C:FA:B0:81:BC:4B:44:6A:46:AA:3A:24:AF:F4:A7:34:AF:BF:3B
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 27ED90312537A3F3446429E6AF4C3A4DB51F80F7
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211151.roa
Signing time: Thu 03 Jul 2025 15:52:15 +0000
ROA not before: Thu 03 Jul 2025 15:47:15 +0000
ROA not after: Thu 02 Jul 2026 15:52:15 +0000
asID: 211151
IP address blocks: 2a06:a005:1d53::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:ed:90:31:25:37:a3:f3:44:64:29:e6:af:4c:3a:4d:b5:1f:80:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:15 2025 GMT
Not After : Jul 2 15:52:15 2026 GMT
Subject: CN=253CFAB081BC4B446A46AA3A24AFF4A734AFBF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:86:2f:56:aa:b4:1b:74:3d:4a:79:29:da:
c9:e1:64:91:94:38:b6:b5:97:dd:38:c3:53:2a:04:
f4:36:0e:e5:8d:8d:a3:85:af:bb:93:c3:34:f7:82:
7e:62:5e:55:53:46:96:e3:1b:02:ae:06:30:2a:ea:
8b:44:c5:ef:ce:15:5f:b1:e7:22:9c:52:2c:79:2d:
63:01:96:9a:c0:ef:9c:d4:b6:48:ce:f7:78:c5:bd:
63:38:f8:8b:60:1b:84:5d:4a:dd:48:52:15:8e:92:
21:8e:5a:47:96:65:7c:af:9e:38:16:cc:24:f5:24:
14:ae:a6:95:70:f9:cd:ab:26:fd:c8:d1:f4:ea:b9:
f8:ba:f3:d4:87:b0:27:50:22:85:09:31:f4:53:0c:
cd:35:1c:ed:68:bf:1d:3c:d6:49:ee:d0:e8:48:9e:
5b:6f:fa:f5:33:0a:d3:07:c6:6c:f9:dc:39:5d:84:
da:95:73:4a:7d:dd:92:7c:cb:2e:de:56:91:46:3b:
b6:e6:63:6d:9c:c3:5c:d7:99:e2:7f:52:e7:c5:74:
fc:32:ab:7f:cb:a8:35:e8:dd:40:82:84:e3:c4:6f:
86:26:f2:a9:19:7c:02:95:96:ed:8e:1f:4a:2e:17:
7e:74:24:ea:cc:a5:de:53:12:7d:0c:1f:7d:9a:45:
07:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3C:FA:B0:81:BC:4B:44:6A:46:AA:3A:24:AF:F4:A7:34:AF:BF:3B
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211151.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d53::/48
Signature Algorithm: sha256WithRSAEncryption
7d:c7:78:fe:e3:89:42:97:2c:63:40:6c:c7:7a:50:fa:d5:74:
65:92:20:31:54:57:9b:c0:6d:71:46:3c:69:cc:dd:cf:2c:97:
d7:62:02:62:8b:d4:5c:b5:79:de:92:05:aa:8c:87:a3:98:8b:
44:79:52:c3:34:29:30:6f:70:bc:b7:63:ea:b0:4e:f6:60:71:
68:45:9d:b6:81:a7:2f:bd:3a:27:21:d1:99:cc:80:85:79:92:
8f:34:e1:77:e8:70:fc:fc:4e:01:c9:0c:b5:78:6f:75:05:8b:
86:af:0f:4b:2a:bb:d2:8c:31:51:c1:07:ac:b3:e8:ab:a6:2a:
11:27:71:31:b3:4c:d0:13:2c:a3:34:90:8e:23:a0:8d:b1:79:
a7:3b:c9:74:58:4a:0b:ec:4c:2e:3f:66:d1:c5:b7:93:8d:94:
1f:fd:d6:bf:c4:1d:ce:ef:7e:44:d5:fc:0f:ba:37:7b:f0:ac:
a0:43:45:18:df:a8:78:00:39:81:c4:41:60:99:c1:7d:5e:0a:
26:ce:d1:00:71:7e:90:f8:d1:e5:ad:da:19:4b:3a:8b:55:d5:
d4:ef:4e:82:f1:48:2c:5d:32:cc:bc:5f:17:36:e8:51:85:d2:
75:ee:0c:14:18:9a:8d:c3:98:51:f7:bf:97:47:81:37:50:f5:
e4:74:2c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:05:28 2025 by rpki-client