Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
File: AS213535.roa (raw, json)
Hash identifier: M/v0Wg9ngLKG25XMTiAeg2LB/4jgO+OxPH7TT9aHaYE=
Subject key identifier: 40:79:23:4A:BC:80:DA:10:2D:39:9B:D0:42:82:8B:C3:97:F5:AF:47
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 6D4752FA1161B737B5D29FE0F1D013EFBB69E1D4
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
Signing time: Tue 19 May 2026 08:17:43 +0000
ROA not before: Tue 19 May 2026 08:12:43 +0000
ROA not after: Tue 18 May 2027 08:17:43 +0000
asID: 213535
IP address blocks: 111.235.151.0/24 maxlen: 24
153.76.112.0/24 maxlen: 24
167.104.216.0/24 maxlen: 24
167.104.219.0/24 maxlen: 24
206.245.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:47:52:fa:11:61:b7:37:b5:d2:9f:e0:f1:d0:13:ef:bb:69:e1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: May 19 08:12:43 2026 GMT
Not After : May 18 08:17:43 2027 GMT
Subject: CN=4079234ABC80DA102D399BD042828BC397F5AF47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:bc:93:60:09:3d:e4:eb:30:0b:ee:db:3b:de:
09:00:65:a7:f9:ee:5c:e2:1c:f6:ca:5c:7b:32:a2:
37:e8:8c:d3:89:93:12:3f:c9:4b:5c:1b:86:05:48:
f6:78:50:03:87:08:22:a2:d5:e4:a7:6d:2c:27:34:
cb:d7:1d:f0:35:db:c7:e4:f0:f6:91:c4:16:6c:06:
0f:4c:b9:08:72:bb:82:f8:ba:34:77:97:6f:64:3b:
05:dc:90:a2:a1:f0:e1:67:87:d7:d5:de:d8:52:9c:
08:ce:55:5b:8a:21:0a:3b:8b:8f:59:12:fd:1d:f1:
13:63:9f:1a:15:dd:19:2c:16:c6:9c:b5:5e:0a:50:
c3:da:96:2f:fd:b2:9a:1e:9a:54:4d:79:64:e8:ea:
a6:c6:ee:ac:5d:fe:43:c5:88:da:08:84:48:0c:0c:
7d:6c:a4:40:a5:7d:d1:65:03:df:c5:64:71:03:bb:
a8:b8:c7:2e:4b:ce:cc:fa:af:b2:f6:5d:59:85:6b:
9a:0f:76:16:24:da:4e:ef:30:69:47:57:91:4b:82:
22:a5:f8:1c:7a:75:2b:f8:45:54:ba:6f:af:5c:61:
33:ad:ee:1d:e7:fb:55:3e:a5:d3:73:4e:aa:6c:54:
3d:19:4d:13:44:32:0d:67:ed:88:3c:74:31:e0:10:
e0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:79:23:4A:BC:80:DA:10:2D:39:9B:D0:42:82:8B:C3:97:F5:AF:47
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
111.235.151.0/24
153.76.112.0/24
167.104.216.0/24
167.104.219.0/24
206.245.166.0/24
Signature Algorithm: sha256WithRSAEncryption
78:51:4e:c5:8d:d6:c8:de:b8:a0:cd:42:68:50:c5:ac:80:61:
c1:95:87:0f:35:49:88:c5:19:e7:18:a4:52:da:96:72:2f:a1:
62:dc:7d:30:8f:a9:fb:b4:fc:4c:03:64:20:cc:c8:b0:0a:b0:
84:7a:70:2c:7c:6e:92:ad:e7:a6:ee:9e:d8:17:60:30:51:e9:
7b:1a:33:31:7f:32:f1:93:98:92:43:07:b1:e7:70:9e:57:6a:
34:68:07:87:42:6d:5a:71:9d:b5:8e:47:75:08:63:17:65:dc:
af:e9:7c:bc:3d:e5:d4:97:52:bb:46:55:9e:b6:e3:eb:05:1e:
1a:f2:72:c2:64:c6:6e:6c:0b:9b:52:f7:a0:0d:31:32:fa:f3:
19:14:14:fd:2e:8e:f7:db:55:ac:56:ea:46:8f:46:25:4b:34:
ed:31:b0:c6:b6:9e:13:24:a8:34:60:f0:9b:2d:62:6a:75:a8:
ec:0a:92:ce:32:6f:02:3f:37:1f:ab:98:71:45:0f:5a:36:27:
05:14:6a:b2:ec:10:da:c4:90:0e:1b:7a:8a:6b:bc:9c:0d:68:
5b:11:cf:05:ab:88:15:5a:ed:2c:8f:fb:76:db:12:3b:de:a7:
6e:18:c7:a1:d0:40:47:af:84:b1:6f:b0:57:9d:fc:43:5e:e5:
aa:1a:62:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 14:47:07 2026 by rpki-client