Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213386.roa
File: AS213386.roa (raw, json)
Hash identifier: zmLGj9Y1bv1kG11OSN3ZOCMz0L6xjM0kVZYYwqESDkA=
Subject key identifier: 5E:B7:EA:55:B9:5B:3F:EE:A4:0E:F2:44:44:4D:51:8D:3D:D1:76:AB
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 0F738931C6CCECFFA09544CA33C0A3F2493905E5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213386.roa
Signing time: Thu 03 Jul 2025 15:51:33 +0000
ROA not before: Thu 03 Jul 2025 15:46:33 +0000
ROA not after: Thu 02 Jul 2026 15:51:33 +0000
asID: 213386
IP address blocks: 2a06:a005:2d7::/48 maxlen: 48
2a06:a005:2da::/48 maxlen: 48
2a06:a005:fb0::/44 maxlen: 48
2a06:a005:1710::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:73:89:31:c6:cc:ec:ff:a0:95:44:ca:33:c0:a3:f2:49:39:05:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:33 2025 GMT
Not After : Jul 2 15:51:33 2026 GMT
Subject: CN=5EB7EA55B95B3FEEA40EF244444D518D3DD176AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:37:4e:0d:c9:a7:2f:7e:40:3f:1d:e6:e5:ce:
93:5a:1b:81:6e:af:5b:7a:5a:f1:d6:10:92:ce:57:
57:cc:21:b9:36:41:cb:6a:ac:63:c7:df:13:6a:28:
58:81:cb:16:27:6a:10:22:99:65:93:ad:be:72:3d:
c1:da:dc:c4:e3:38:34:6a:39:b4:eb:95:fc:d5:83:
2f:45:c7:d0:71:43:5e:40:96:e7:ef:90:a5:4d:35:
f9:71:85:e3:22:73:c0:1d:f7:5e:95:ec:5a:9d:12:
2d:ff:52:7e:a2:2a:b2:7e:88:9e:09:73:fd:19:65:
4b:39:0a:43:7b:f5:47:89:2f:be:7f:6f:56:6f:b7:
b7:99:3d:49:33:d8:1f:17:1a:5c:d4:ee:e3:ea:08:
95:06:51:a8:7e:c4:5f:6a:2a:ef:ca:04:0a:9e:b0:
47:6e:53:7d:4e:8f:79:8e:a3:03:88:2c:64:ae:40:
5f:ed:08:0d:4f:f6:4a:84:fc:94:fa:6e:e5:84:ee:
d1:c4:ad:30:ab:27:b6:34:6c:b4:c1:8c:67:8e:3e:
b4:f8:39:89:8d:99:b5:b1:dd:04:b9:a2:f7:87:eb:
59:4e:4b:1f:7e:e6:c0:d3:1e:70:cd:78:b9:35:43:
32:22:58:61:90:29:6b:30:17:24:2c:21:9c:2c:27:
b5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B7:EA:55:B9:5B:3F:EE:A4:0E:F2:44:44:4D:51:8D:3D:D1:76:AB
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213386.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2d7::/48
2a06:a005:2da::/48
2a06:a005:fb0::/44
2a06:a005:1710::/44
Signature Algorithm: sha256WithRSAEncryption
8d:dc:93:fd:c9:33:dd:03:03:6b:7e:bc:ee:0d:bd:8a:c5:02:
73:14:d2:3b:40:71:2c:45:5e:49:bd:37:80:0f:88:d6:12:20:
58:5e:52:dd:e3:e9:a0:57:b3:40:b6:73:58:98:ee:2e:50:e8:
39:d0:c2:08:f8:61:d3:47:43:1b:48:59:e5:5b:42:87:54:f6:
4b:26:fa:aa:fc:eb:f7:c4:d4:16:f3:53:29:a1:a6:7f:36:f4:
45:fd:5d:ca:7d:06:ea:bb:67:d7:19:40:d1:24:83:92:ad:7b:
29:84:d9:63:96:d9:7b:d9:7e:58:01:e0:35:a1:28:f5:9d:68:
0d:b1:4c:bb:b7:18:5e:37:d0:d6:58:c1:23:9d:07:88:85:46:
94:59:0f:d8:8a:c3:4f:2e:a6:31:2c:f3:5a:be:1a:c9:52:a6:
08:8d:c8:3c:2e:d7:63:f5:41:0b:9d:b1:23:4a:b9:e8:26:54:
c7:1c:d7:93:be:4e:fb:b1:ed:50:f4:7a:c1:2b:01:bc:a9:95:
c6:f5:93:60:c2:cc:9a:13:8b:10:b5:6b:4a:a0:da:fc:61:dd:
b7:26:6b:d1:f9:a4:fa:44:2b:1d:30:8f:48:81:9b:16:ee:d0:
4b:f0:44:35:9b:23:d7:4b:45:11:c5:29:f9:2f:99:d0:66:da:
d5:36:50:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:15:49 2025 by rpki-client