Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214188.roa
File: AS214188.roa (raw, json)
Hash identifier: 6xbz5amFbe7XCHKVg7orlXrMdtcEuqz8AspCT1p0P/U=
Subject key identifier: 4B:75:2E:92:53:F0:BE:C0:AA:56:0F:2F:A2:AF:F2:F4:0A:D0:85:6A
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 25CD02122E03E011BD2061A0CA499D8908EC2BB2
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214188.roa
Signing time: Thu 04 Jun 2026 15:58:48 +0000
ROA not before: Thu 04 Jun 2026 15:53:48 +0000
ROA not after: Thu 03 Jun 2027 15:58:48 +0000
asID: 214188
IP address blocks: 185.195.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:cd:02:12:2e:03:e0:11:bd:20:61:a0:ca:49:9d:89:08:ec:2b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:48 2026 GMT
Not After : Jun 3 15:58:48 2027 GMT
Subject: CN=4B752E9253F0BEC0AA560F2FA2AFF2F40AD0856A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3e:0f:31:95:52:51:ea:13:33:05:9d:74:95:
93:d5:c6:40:dc:a4:57:15:e6:cd:17:c5:83:fd:e2:
b0:a5:99:78:45:c3:ff:38:f6:73:23:7e:11:87:84:
de:14:cf:bf:41:08:f8:61:35:84:16:9b:21:6d:9f:
9b:fa:fd:4a:ea:d8:c9:8c:2f:8a:21:d7:95:9e:11:
a5:7e:12:a1:07:b5:2c:3b:78:1b:03:8b:b5:f1:f3:
8a:b7:ae:e0:c9:50:dc:3c:44:2e:1c:91:ea:c2:5e:
39:f4:cc:81:52:4c:56:df:16:7d:87:a4:f7:58:ab:
6d:67:3a:b4:8b:b2:1a:dc:b5:09:c6:ce:95:9b:37:
61:86:a7:d6:53:50:c9:67:0e:c4:9c:69:a1:6a:b1:
e4:92:25:cb:5d:aa:bc:8d:63:c5:b7:cf:04:4b:be:
14:9a:55:dc:fa:f3:6a:2c:af:c9:dc:e4:69:24:14:
4e:ac:85:28:67:91:7f:45:d9:39:62:bf:20:32:5d:
47:be:6b:f0:dc:44:93:9f:bd:71:ee:04:da:4f:d7:
95:64:69:51:3f:23:a9:be:83:28:28:a0:f3:e1:e3:
bb:b4:47:20:59:c0:eb:49:3c:a4:be:b6:c0:33:dd:
ba:d4:f3:08:f2:98:50:ed:0c:cd:18:76:68:07:86:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:2E:92:53:F0:BE:C0:AA:56:0F:2F:A2:AF:F2:F4:0A:D0:85:6A
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214188.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.238.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c4:06:dc:77:70:24:dc:91:c6:d6:19:1a:69:b6:53:06:be:
cb:a6:c6:e1:23:eb:4b:cb:2f:c3:5a:40:b3:8d:77:8b:bc:75:
d8:52:77:73:90:33:c9:84:50:5f:56:b3:e6:12:77:60:4d:95:
eb:65:5e:f3:59:75:99:9c:dc:3b:92:ba:36:03:e8:95:58:5b:
8f:a8:62:1d:da:ca:7f:fb:80:81:f2:e9:1a:47:d7:34:d8:92:
18:8a:11:ae:25:74:c7:05:f7:32:16:32:8a:3e:76:4b:df:89:
59:70:81:14:1a:41:e0:fe:d1:9b:e9:77:5d:41:67:c4:26:41:
46:1e:16:94:8f:ad:97:1c:f8:00:43:5b:92:13:b4:f0:ed:ef:
b7:da:e8:59:d5:e5:38:f1:95:7f:21:46:80:fa:cb:7f:85:92:
81:bb:93:b4:fb:52:7c:27:3c:a5:ae:98:b2:d5:b7:c9:87:e0:
e8:ca:84:b0:df:b3:6c:66:e5:84:20:fb:be:89:8c:45:53:68:
ab:5e:ee:1f:9c:f3:24:25:27:b3:e6:09:7a:ca:1a:db:7c:49:
e8:46:c0:ad:67:57:49:7c:64:f2:c4:10:ac:32:7c:25:f7:f4:
57:29:9d:8d:01:f1:a8:59:75:d8:b1:2c:66:2d:3f:3a:5a:cb:
a2:d1:1d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 05:41:44 2026 by rpki-client