Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214441.roa
File: AS214441.roa (raw, json)
Hash identifier: F68rHFj6JO/FvcBaIR11gtfDBi6B2QbFj8iSnZqRzA4=
Subject key identifier: 8F:A9:DA:4C:54:C2:4D:96:00:3E:AF:CF:C7:31:9E:28:D0:F9:7E:C2
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 36C8DD530116B6E2F0FD4D9F464FD5763EAD80A5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214441.roa
Signing time: Thu 03 Jul 2025 15:51:52 +0000
ROA not before: Thu 03 Jul 2025 15:46:52 +0000
ROA not after: Thu 02 Jul 2026 15:51:52 +0000
asID: 214441
IP address blocks: 81.31.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:c8:dd:53:01:16:b6:e2:f0:fd:4d:9f:46:4f:d5:76:3e:ad:80:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:52 2025 GMT
Not After : Jul 2 15:51:52 2026 GMT
Subject: CN=8FA9DA4C54C24D96003EAFCFC7319E28D0F97EC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ef:04:23:e2:ce:d3:e8:89:54:70:ba:70:ea:
d6:59:c5:0c:3d:d1:1e:fe:ce:8d:f9:14:d3:f7:68:
88:38:a3:4c:98:55:8d:8d:db:22:56:e3:02:11:9a:
6b:82:7b:d1:80:cf:da:64:21:b8:cc:7c:f4:58:e9:
43:58:01:3c:ef:ad:c5:d9:03:db:60:df:65:13:72:
7f:2c:47:93:56:61:28:18:50:ca:d0:96:4d:6a:74:
fc:37:08:1c:dd:c3:29:21:30:b8:9f:96:e6:bb:9a:
8b:06:23:4f:c2:bb:d9:84:7c:86:87:57:6e:4a:8e:
f0:65:f1:62:c5:72:c6:e1:31:18:fb:9c:10:63:9e:
61:14:95:f0:0a:d6:29:73:f3:84:e0:1c:5a:18:57:
87:bf:a7:1c:7a:27:9e:50:83:d1:9d:4d:91:a2:bb:
f6:93:51:b3:c9:50:f4:68:8f:cd:45:25:dd:cd:b9:
21:71:98:50:fe:2f:1f:41:d2:69:bd:5a:41:38:0f:
36:a1:d2:26:fb:9a:20:fa:de:9e:90:f2:06:80:17:
14:10:d2:98:95:37:57:59:71:04:58:3c:2f:74:5e:
22:c3:ba:18:a6:12:16:88:a4:b4:e2:0f:1a:63:ce:
a3:58:5a:28:f3:bf:d2:09:5a:1a:44:6c:01:66:d5:
55:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A9:DA:4C:54:C2:4D:96:00:3E:AF:CF:C7:31:9E:28:D0:F9:7E:C2
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214441.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.209.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:20:1d:94:56:50:95:bb:fb:9b:e5:72:a8:6f:e6:b0:6e:3c:
f4:0b:3d:c9:2b:6d:42:aa:fb:5b:26:e4:24:5d:90:de:7b:6c:
eb:05:fb:26:0c:61:9e:57:d8:dd:d0:90:de:3c:3a:7e:b9:36:
e6:d7:fd:35:d0:3e:2a:93:1b:0c:26:9d:64:2a:15:16:9a:04:
b7:42:4d:a2:26:2a:1c:9a:da:ec:aa:5a:39:47:b8:b9:89:8c:
1d:cb:38:d1:b1:3d:63:d5:d5:f8:cf:9e:79:b2:93:3f:ff:fa:
28:72:a6:fb:29:de:e2:a1:ef:6f:ae:b4:08:b4:b4:69:e5:f8:
d2:86:c8:52:e7:15:4d:7f:37:42:25:ec:55:54:e8:8a:09:58:
ef:5f:ac:61:8c:65:1e:fb:8b:a8:68:82:4a:83:ac:e7:49:82:
94:a5:b0:04:89:64:6b:3f:27:30:f3:08:5f:35:a8:ed:b6:99:
ab:ff:c9:17:d4:8b:9e:2e:07:55:e1:c8:2c:19:3c:29:56:65:
3d:6f:96:62:7c:bb:73:b2:f5:85:1a:57:78:31:84:c8:b8:31:
2a:0d:bd:8d:c1:19:dd:b6:8a:32:d5:83:e7:3f:4e:31:2b:11:
19:0a:2b:dd:52:90:92:df:4d:64:1f:58:7d:9e:0e:b1:90:2c:
0d:bd:30:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:12:56 2025 by rpki-client