Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215081.roa
File: AS215081.roa (raw, json)
Hash identifier: FBIbNKqyRILxug0/P8r2VZiTBcBLbTvzAzNXcI/dn8g=
Subject key identifier: 9B:78:F2:7B:B0:2F:83:B4:F5:33:EF:68:9A:B2:6B:8F:E0:BD:BB:35
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 44E3E7CFDB85CF01CD3D838AE996E01BD647B87A
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215081.roa
Signing time: Thu 03 Jul 2025 15:52:23 +0000
ROA not before: Thu 03 Jul 2025 15:47:23 +0000
ROA not after: Thu 02 Jul 2026 15:52:23 +0000
asID: 215081
IP address blocks: 5.253.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:e3:e7:cf:db:85:cf:01:cd:3d:83:8a:e9:96:e0:1b:d6:47:b8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:23 2025 GMT
Not After : Jul 2 15:52:23 2026 GMT
Subject: CN=9B78F27BB02F83B4F533EF689AB26B8FE0BDBB35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:33:29:09:4d:36:95:f1:ec:68:d9:44:44:bd:
dc:1b:a6:55:61:d4:88:ab:8d:08:ce:c3:f2:6a:42:
1b:a4:b1:a8:c3:e8:e8:fd:13:19:ff:bc:ac:ff:75:
a0:2b:41:5d:34:c1:7d:52:83:c0:0e:9e:3d:0c:5d:
6b:10:14:09:7b:cb:99:47:53:69:1c:0d:bd:b9:05:
d5:9d:6d:c5:fb:dd:f5:22:a6:9f:2e:b1:2c:44:f8:
93:47:a3:ed:74:d7:9c:c4:2d:cf:00:eb:36:26:90:
6d:ea:15:b6:26:5f:13:19:99:e0:9f:6e:64:6c:e1:
19:e6:d1:95:df:d6:2d:c7:7b:31:53:d6:69:4c:40:
cb:bb:50:ce:73:21:9e:0c:49:2d:37:2b:3f:a2:22:
28:4f:90:f1:65:2a:76:f3:63:ad:c2:c4:57:b5:c6:
6d:1c:3b:61:e5:24:9a:9f:2b:87:28:da:c1:cb:1e:
51:e8:b3:93:48:7d:b6:3f:b9:02:ea:fd:d9:93:f3:
63:40:6d:2c:ca:4e:f0:e8:ba:d1:f3:37:03:15:62:
c1:02:54:8a:4d:29:b2:5b:8e:85:f8:e6:10:f5:47:
7e:d9:1b:3c:94:f4:a1:b8:52:e0:be:6a:d5:70:ea:
4e:fe:01:10:6e:5e:e9:aa:63:85:07:60:26:9d:1f:
85:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:78:F2:7B:B0:2F:83:B4:F5:33:EF:68:9A:B2:6B:8F:E0:BD:BB:35
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215081.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.87.0/24
Signature Algorithm: sha256WithRSAEncryption
77:62:5e:ea:da:52:4d:06:8c:fe:d5:5b:c1:b0:d5:3c:db:e1:
2a:f4:46:c9:e2:d0:1c:ff:5d:3a:68:bd:3a:29:6c:94:5c:7a:
d4:87:21:f8:7c:96:c5:63:99:e5:91:bd:49:e8:da:cc:50:23:
55:a8:a7:5e:1f:42:74:78:e5:ec:dd:b3:cf:ba:63:33:e1:8e:
45:da:fd:76:66:be:7f:4c:23:49:7d:17:22:ba:35:27:52:87:
2e:99:c1:ee:f0:fe:a5:38:9b:26:7d:85:17:6d:53:3e:12:48:
68:df:6e:d7:f3:f7:a7:44:ed:e6:14:ad:63:5e:3e:92:b7:e2:
cd:02:2c:1f:c3:94:e6:9f:4f:5f:9e:4b:01:1e:7e:d0:51:b9:
b6:ac:62:17:44:57:d5:db:21:9d:62:be:37:95:e8:b7:97:96:
42:5a:1c:56:68:55:23:cc:94:ab:29:68:b9:8a:ef:e3:63:63:
ae:9e:08:b0:d2:20:ab:31:89:55:89:e6:fc:7d:68:51:3a:c5:
36:12:e0:3b:13:1c:de:ea:c1:c5:b5:9e:c3:00:4c:ca:a0:fb:
a6:2c:f2:1c:cb:e2:a0:32:61:ad:70:d9:4c:f1:38:6d:7a:e8:
3f:83:75:fa:d1:75:5e:63:55:75:d9:44:db:06:59:e0:da:63:
52:f8:55:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:23:36 2025 by rpki-client