Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
File: AS34927.roa (raw, json)
Hash identifier: zJq3VCy2r1bU8jFor5FL2COK+VW5nbyjANk8Rp77IE8=
Subject key identifier: B4:BB:23:1C:46:E1:3C:70:3D:34:75:42:74:06:25:3C:A5:D6:B0:43
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 792B502DFA9F0FA24EA090B0F4F1E2306B1E114C
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
Signing time: Thu 03 Jul 2025 15:52:44 +0000
ROA not before: Thu 03 Jul 2025 15:47:44 +0000
ROA not after: Thu 02 Jul 2026 15:52:44 +0000
asID: 34927
IP address blocks: 118.91.186.0/23 maxlen: 24
144.48.81.0/24 maxlen: 24
185.121.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:2b:50:2d:fa:9f:0f:a2:4e:a0:90:b0:f4:f1:e2:30:6b:1e:11:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:44 2025 GMT
Not After : Jul 2 15:52:44 2026 GMT
Subject: CN=B4BB231C46E13C703D3475427406253CA5D6B043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:4e:f4:07:e9:40:59:03:fc:aa:ba:5a:cb:
eb:4a:2c:f6:de:a3:2c:85:cf:99:ed:7b:3a:e8:fc:
3c:ae:cf:bc:ee:2f:96:34:1f:62:21:11:65:da:c7:
85:18:66:f8:c3:2d:f3:b9:03:86:46:65:b0:e3:d0:
87:fb:58:48:db:40:85:54:7a:0a:f4:25:cd:af:10:
b1:b4:c2:3f:94:cd:ce:cc:f4:49:28:f3:c5:07:28:
18:1a:fa:69:26:06:d8:73:a9:bb:e2:bb:39:2f:9d:
9f:24:c9:ed:20:fb:40:fd:2e:92:62:c9:99:ce:f5:
97:fb:f9:c1:27:6c:af:af:7c:16:8f:bc:d1:4b:91:
fb:91:5c:fa:06:c6:43:a9:9a:ea:11:2d:d1:dc:67:
2b:b3:8f:2f:55:6d:a4:44:b1:fb:b7:30:6b:41:29:
56:70:c8:4d:04:ff:52:36:f8:b9:72:e4:1e:81:31:
f8:f6:c2:0e:3b:83:74:a7:06:f3:4f:59:b4:d4:ca:
e4:37:a6:6c:9a:70:a5:fc:13:e5:58:14:c8:4e:c0:
98:19:6b:6d:f1:e2:b4:37:c8:ab:fe:05:8c:1c:19:
f5:b0:5e:37:82:12:b7:fb:d8:9e:e6:70:42:76:a4:
c1:8f:96:34:63:dd:70:24:e3:0a:31:eb:bc:59:bf:
1c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BB:23:1C:46:E1:3C:70:3D:34:75:42:74:06:25:3C:A5:D6:B0:43
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.91.186.0/23
144.48.81.0/24
185.121.169.0/24
Signature Algorithm: sha256WithRSAEncryption
35:b6:9d:f8:5a:2a:a0:ae:68:c3:c6:29:3c:02:4f:70:83:a1:
cf:73:0e:d5:cc:e3:6e:51:d0:23:04:7a:00:77:e3:44:54:53:
1d:06:49:79:ba:e3:17:15:07:67:90:d0:4a:7a:2c:d9:3f:0e:
9f:f8:dc:c7:82:2b:e3:02:7b:35:fe:93:fd:b9:29:b0:5d:56:
87:4d:18:5f:40:5d:88:de:14:af:c2:80:df:0f:2f:15:24:f3:
2e:27:65:dc:57:99:72:7c:b5:57:39:49:eb:45:68:03:99:94:
c5:8a:32:a9:c6:ed:28:48:14:b3:1c:bd:1e:c4:9a:7b:ec:e7:
fc:a2:da:e2:de:63:aa:73:69:dd:d7:a5:50:9e:95:13:8c:bc:
c0:ce:c8:84:94:87:a2:38:31:a1:27:43:1c:36:70:8a:e7:1a:
71:02:21:7e:81:82:61:57:6d:63:bb:60:cc:f3:08:1b:93:7b:
d1:5c:f3:99:c5:63:c7:bb:c6:a8:2e:16:ba:02:ab:cc:b4:fa:
48:14:99:c7:70:96:d7:03:3c:89:8b:05:b6:63:e0:c5:a7:d8:
a4:c0:cf:36:7c:f6:81:e0:c2:78:a6:ed:ac:fe:ed:fd:d1:66:
50:c2:0b:12:24:cc:f5:88:a4:be:d2:fd:a0:70:42:07:4d:a5:
e7:24:02:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:05:02 2025 by rpki-client