Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212149.roa
File: AS212149.roa (raw, json)
Hash identifier: AO+Q+8pqzzuISkYhF9CxembJlcpjf+sihxt8i6jszo0=
Subject key identifier: F9:33:3D:1E:2C:3E:DC:6B:37:65:FE:F9:0A:F3:23:84:A5:DD:EB:85
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 58392ADEDADBCFCFB3BD9B73ED32BB3701DBFA82
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212149.roa
Signing time: Thu 03 Jul 2025 15:52:30 +0000
ROA not before: Thu 03 Jul 2025 15:47:30 +0000
ROA not after: Thu 02 Jul 2026 15:52:30 +0000
asID: 212149
IP address blocks: 2a05:dfc1:b00b::/48 maxlen: 48
2a06:1280:b00b::/48 maxlen: 48
2a06:1285:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:39:2a:de:da:db:cf:cf:b3:bd:9b:73:ed:32:bb:37:01:db:fa:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:30 2025 GMT
Not After : Jul 2 15:52:30 2026 GMT
Subject: CN=F9333D1E2C3EDC6B3765FEF90AF32384A5DDEB85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6d:7e:d4:33:64:7d:73:59:70:5b:a3:37:39:
47:7b:f1:f4:d0:0c:25:a5:2a:a4:6a:f3:c1:61:72:
31:70:16:ce:7e:49:c5:08:29:e4:42:cf:4c:f3:36:
56:cb:3d:9f:e3:a3:22:c1:0f:b8:c9:d8:8d:82:3a:
d0:ed:4f:28:6d:1b:73:26:5c:8b:31:07:3d:b0:4f:
99:b8:f0:01:62:30:6c:51:5b:8f:e5:f5:da:50:1b:
55:ca:b6:ca:17:73:42:5a:6d:f8:39:32:8a:f5:ef:
ea:1f:0d:15:ba:ea:53:ee:2c:81:af:3c:e4:30:7d:
c6:0e:c8:ae:aa:17:a2:55:88:cb:e2:55:17:7f:83:
0e:de:c6:13:67:41:b6:ae:42:fb:c8:9a:3c:a5:8b:
af:27:90:ef:d7:96:82:54:1b:e3:0c:a3:9c:df:47:
b7:9c:38:ad:b0:f3:6e:7c:2c:5f:50:b0:c0:df:1b:
bc:e6:cd:22:c9:99:e6:c5:88:e8:f9:b4:5f:63:b1:
0d:7f:9a:67:f0:79:61:95:89:a2:b8:07:43:f7:17:
f1:10:83:b2:5e:de:44:35:38:47:a6:da:e1:7b:4e:
75:f6:e8:65:79:f6:b1:76:a8:3b:06:c9:93:80:82:
4b:5d:1e:41:d5:bb:da:10:93:8f:3b:69:5c:97:ff:
4c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:33:3D:1E:2C:3E:DC:6B:37:65:FE:F9:0A:F3:23:84:A5:DD:EB:85
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212149.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:b00b::/48
2a06:1280:b00b::/48
2a06:1285:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
a5:79:7b:7d:88:e2:5b:41:ba:44:8f:ce:e0:72:f3:c9:85:d5:
ad:9b:67:d2:2c:68:e2:c1:a1:d1:2d:79:a5:ad:03:a9:4d:0d:
7c:e0:3d:ea:7a:83:54:68:63:3c:32:fe:a8:ae:69:a7:f5:e6:
e3:b0:65:4e:ed:51:54:ae:04:0b:37:71:1a:16:76:fa:51:82:
f9:34:5c:d5:ea:af:43:a7:65:12:7b:4f:fe:17:99:80:6c:0d:
42:28:11:32:72:85:aa:80:05:b1:f9:94:aa:ef:b0:e9:d2:85:
78:1c:9a:2f:71:77:f3:cb:2f:a9:6a:f4:56:b4:18:36:d3:32:
08:4e:36:58:9e:c0:17:11:8d:f8:b6:e4:76:64:1c:c4:2f:b5:
23:e0:86:08:b7:da:b4:c0:43:51:69:ae:d0:64:d4:5f:7f:df:
43:a0:87:71:0a:fd:97:46:fa:32:54:5d:fd:d8:fc:be:d2:12:
fa:f5:f5:16:51:ff:46:1c:75:6c:7f:ae:0b:cc:c9:f6:8c:03:
3e:00:1f:30:b1:7f:6c:01:8c:d6:96:05:13:58:96:ce:24:27:
44:62:57:9c:70:61:b5:0a:2d:5f:45:05:cf:18:d2:92:a2:1f:
44:7c:b6:c8:7f:24:2f:8c:34:9d:d9:c0:34:0e:ee:08:bb:0d:
ef:b8:09:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:18:07 2025 by rpki-client