Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211843.roa
File: AS211843.roa (raw, json)
Hash identifier: A86Mu9xbvJqfyHMf7GZj19wesq/uCzxHlQ1C5M9V+MI=
Subject key identifier: 34:FE:DA:F1:5A:95:B5:29:B8:1F:54:ED:82:61:3A:DD:CD:0E:54:38
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1D5CD8D545CF4F3E7428B08ADD488D72953EEC14
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211843.roa
Signing time: Thu 03 Jul 2025 15:52:36 +0000
ROA not before: Thu 03 Jul 2025 15:47:36 +0000
ROA not after: Thu 02 Jul 2026 15:52:36 +0000
asID: 211843
IP address blocks: 2a06:a005:a13::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:5c:d8:d5:45:cf:4f:3e:74:28:b0:8a:dd:48:8d:72:95:3e:ec:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:36 2025 GMT
Not After : Jul 2 15:52:36 2026 GMT
Subject: CN=34FEDAF15A95B529B81F54ED82613ADDCD0E5438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:21:2f:a3:cd:dd:3a:aa:92:b5:91:6a:28:b9:
ce:02:d4:2c:b1:a4:18:59:96:8e:33:4b:19:2f:47:
ea:88:be:49:1a:ed:9e:e2:df:bd:a2:e1:e5:a1:5d:
c6:aa:ca:85:8e:dd:93:c5:82:12:2a:5a:bd:7c:01:
88:23:ac:4f:2a:66:b5:23:3e:bb:8e:d3:9f:79:b6:
12:18:75:e8:e3:1e:f5:9e:a8:e0:9c:a1:4e:4c:3e:
2d:ec:02:68:d1:d5:55:97:9a:3c:63:ca:28:4b:07:
ea:84:f6:48:b8:78:63:e0:e7:85:e2:e8:a6:84:00:
1a:3b:b9:d3:d7:73:97:f5:eb:7f:c4:8c:1c:b2:73:
d8:0c:4e:70:34:5a:1d:49:9a:ff:65:98:0e:4f:18:
b1:cf:54:5e:56:0b:b5:f8:e5:16:d0:a3:cd:17:d5:
70:5f:99:c3:02:30:30:3a:cb:5e:b3:a2:d0:e9:09:
6b:d3:42:4f:b4:4c:2b:22:c2:24:32:ee:7f:de:f3:
5e:6a:6f:cc:f8:ca:ab:ba:c3:28:93:f4:a7:f7:14:
04:5a:07:13:cd:21:bb:8f:9d:c8:13:6a:cf:52:bb:
da:5e:f7:be:1d:ec:d7:75:df:07:a6:5a:9d:a3:a4:
92:62:f5:e7:09:dd:af:fb:c4:32:0f:5f:72:68:d1:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FE:DA:F1:5A:95:B5:29:B8:1F:54:ED:82:61:3A:DD:CD:0E:54:38
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211843.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a13::/48
Signature Algorithm: sha256WithRSAEncryption
8a:7f:0c:4b:43:e4:7d:38:f3:c3:6f:78:7d:23:1f:3f:04:62:
bc:c9:ce:d0:35:55:33:98:16:86:c3:5f:36:29:ea:57:4e:c4:
ab:f0:df:02:30:4c:d9:83:53:7c:40:b5:0a:c9:3c:2c:20:8f:
5c:44:fe:b2:9d:3d:56:af:94:2d:2a:32:78:03:c7:90:73:84:
87:67:27:b6:6f:a3:95:c6:8c:55:73:47:7b:27:49:1d:c2:0c:
9a:11:73:25:02:0a:4f:47:9f:33:df:cf:29:41:9c:84:d0:87:
0e:20:97:c2:b1:eb:69:9c:4c:e5:4a:9b:57:08:b2:e5:db:17:
68:12:71:e6:d9:e0:34:e7:87:8f:e8:91:7c:2d:85:26:3a:2f:
b7:2d:5e:1e:f5:67:8a:82:98:1a:dd:80:83:eb:a0:79:70:ac:
2e:b4:bd:cf:45:24:ff:30:0c:75:81:59:12:4d:fa:a7:96:e6:
61:68:c1:2c:14:0a:1a:7c:89:11:1c:70:74:e4:16:c3:0f:91:
74:42:0b:11:3e:8f:f2:33:87:ba:1a:b6:42:8c:e2:18:f6:3b:
39:b3:06:2a:7a:d3:d2:49:75:58:ab:62:58:27:9a:7a:5d:37:
bc:df:fa:cd:1e:fa:c0:e3:f1:b8:80:7f:4a:75:e3:81:2f:b1:
23:82:d3:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:18:41 2025 by rpki-client