Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211514.roa
File: AS211514.roa (raw, json)
Hash identifier: mq44TC5Pl3Uf8kYsLzQvL6bTYZUpAyp8erNhwCZE0dY=
Subject key identifier: BF:F0:2B:BE:E0:CF:52:5A:61:53:68:08:6E:59:7D:F1:6C:EC:C5:C4
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 55FA83D686681ABB3B3E699E4206F5D9FCFC4ED7
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211514.roa
Signing time: Thu 03 Jul 2025 15:52:39 +0000
ROA not before: Thu 03 Jul 2025 15:47:39 +0000
ROA not after: Thu 02 Jul 2026 15:52:39 +0000
asID: 211514
IP address blocks: 2a06:a005:484::/48 maxlen: 48
2a06:a005:5ae::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:fa:83:d6:86:68:1a:bb:3b:3e:69:9e:42:06:f5:d9:fc:fc:4e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:39 2025 GMT
Not After : Jul 2 15:52:39 2026 GMT
Subject: CN=BFF02BBEE0CF525A615368086E597DF16CECC5C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e7:85:84:a9:bb:74:5f:a2:e9:97:42:30:f0:
9d:7c:37:f3:b1:00:86:f4:fe:18:96:60:01:38:39:
14:88:25:c5:9b:e3:2a:b2:ea:90:64:60:0f:12:94:
f3:89:ad:0c:96:27:1b:c7:3d:89:0b:41:56:14:54:
3b:86:91:75:a5:af:c5:f8:0c:13:b1:a0:5a:e5:d7:
65:7e:80:92:41:a6:bb:2e:a6:b4:19:2d:da:37:33:
4e:24:ee:ef:09:0c:c6:ab:75:46:5f:9c:84:82:d0:
a7:fb:bb:85:25:24:ac:7a:12:09:ea:16:de:07:65:
ec:a4:59:3c:8a:1b:92:7b:f8:b4:eb:ee:82:4f:43:
39:a7:9a:44:3e:8d:dd:97:ea:47:e1:2d:08:4f:f2:
4e:8d:d9:1b:f0:69:b1:f5:98:4a:74:03:eb:2c:55:
3e:4a:2a:d7:f6:b3:b2:d8:a2:09:ea:d3:ee:35:e9:
dc:2b:aa:66:8a:5c:48:88:29:d6:fa:c1:b1:ed:55:
06:39:ef:5f:c9:a4:6f:0a:07:5a:0d:b6:ca:19:42:
9d:c2:85:68:f9:97:03:45:8c:f8:ce:79:4a:67:a2:
5c:cd:94:5a:fa:b8:9f:e3:b9:15:cd:55:9a:3f:99:
25:8e:e3:6d:16:95:26:eb:b4:15:a3:55:49:93:5d:
b0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F0:2B:BE:E0:CF:52:5A:61:53:68:08:6E:59:7D:F1:6C:EC:C5:C4
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211514.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:484::/48
2a06:a005:5ae::/48
Signature Algorithm: sha256WithRSAEncryption
51:80:56:a8:e7:99:d3:aa:d7:de:45:7c:05:4b:ce:73:e1:2e:
05:ca:1c:b5:27:be:47:93:99:3f:b8:95:5c:de:9e:69:92:df:
16:c6:16:2a:ea:91:b7:6d:2f:6a:41:4f:43:6e:db:bb:b7:cd:
69:86:16:0c:93:1d:3f:26:bd:71:d4:57:7a:27:55:9e:0c:dc:
29:14:69:d3:53:25:9d:06:3c:d2:cb:43:aa:7a:3f:4b:23:d7:
17:30:0a:6a:66:83:86:c2:38:b7:00:f1:ae:51:c9:f0:1c:66:
3e:56:36:01:3a:07:cc:92:81:98:cc:db:bc:24:bd:35:ee:11:
49:d3:92:ef:64:42:16:c6:25:fc:9d:90:7d:5b:81:27:ab:18:
00:48:23:5e:f7:85:b3:26:1c:da:95:58:39:d0:02:86:1e:f7:
21:9b:4b:cf:e3:62:42:64:74:53:54:31:f5:28:01:64:b6:07:
9c:59:5a:ef:f7:60:10:fb:38:60:a8:9e:32:00:a1:7c:d7:ad:
e2:54:d6:f7:15:b6:bc:65:5d:8b:13:9f:89:83:3a:8d:a4:05:
81:ee:83:1a:d1:96:e1:e9:69:05:5f:26:45:1f:e0:2d:40:9c:
82:d4:4d:ac:55:58:95:d9:a1:2f:69:1a:4b:62:86:32:38:0a:
e5:20:12:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:15:14 2025 by rpki-client