Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
File: AS34927.roa (raw, json)
Hash identifier: jk2ugQoaAc2W6wWMs4M6s3nogD0QeDOyxqDwAfkNyXw=
Subject key identifier: 6A:21:EE:00:68:5B:EC:C4:3A:2B:B4:97:7C:0B:03:69:0C:FA:8C:26
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 64DB38632147F0D9B01D24BBA52A7132E6EAACF5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
Signing time: Tue 09 Sep 2025 08:00:17 +0000
ROA not before: Tue 09 Sep 2025 07:55:17 +0000
ROA not after: Tue 08 Sep 2026 08:00:17 +0000
asID: 34927
IP address blocks: 103.254.61.0/24 maxlen: 24
118.91.186.0/23 maxlen: 24
144.48.81.0/24 maxlen: 24
185.121.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:db:38:63:21:47:f0:d9:b0:1d:24:bb:a5:2a:71:32:e6:ea:ac:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Sep 9 07:55:17 2025 GMT
Not After : Sep 8 08:00:17 2026 GMT
Subject: CN=6A21EE00685BECC43A2BB4977C0B03690CFA8C26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:19:4b:8e:d0:ff:78:99:2a:1f:3b:d8:de:
e6:ff:60:e0:c5:26:40:5a:e8:e7:49:a0:a8:4c:79:
f0:2b:06:0d:4e:65:26:cc:ef:c1:c2:5a:93:e8:5c:
25:4e:f1:71:c2:25:40:ef:e1:b6:45:2e:87:2c:9c:
c1:94:0d:c0:46:5e:c1:9c:6c:6a:a5:02:27:28:2c:
bc:9b:93:26:be:2f:1e:32:89:6a:07:d0:7e:33:52:
cc:d8:20:eb:27:ac:fa:71:46:1d:82:af:98:31:f4:
2c:7f:ce:16:f8:82:dc:8f:25:56:de:d6:3c:d2:a1:
ec:35:4b:3e:79:40:dc:ef:a6:42:22:af:7f:4a:4e:
fd:3e:8a:18:cd:79:51:47:34:e4:f1:20:8f:8c:24:
f7:d7:d8:34:f4:88:3f:3a:36:9d:9e:a3:3e:d6:e3:
ff:3b:9d:b4:4d:a1:62:71:eb:fc:82:ea:1a:e3:da:
63:31:7b:11:f2:7f:d3:1b:dc:ca:e9:3f:0b:6b:11:
8a:f7:e5:06:f3:7b:e1:77:ce:87:6c:69:fc:ab:36:
86:38:11:e2:47:44:51:8e:b8:a1:34:cb:e5:d8:54:
26:45:95:9e:b6:5e:47:24:b5:a2:d0:a8:eb:4b:33:
8f:51:9f:92:c5:cf:26:08:07:8a:d3:b9:05:8f:77:
c2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:21:EE:00:68:5B:EC:C4:3A:2B:B4:97:7C:0B:03:69:0C:FA:8C:26
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.254.61.0/24
118.91.186.0/23
144.48.81.0/24
185.121.169.0/24
Signature Algorithm: sha256WithRSAEncryption
58:a8:ff:c3:b0:da:17:0a:ae:28:48:0a:d2:d5:63:cc:79:03:
1f:47:bb:7a:12:92:9f:64:25:d6:07:b2:2d:63:63:6e:72:4e:
5f:ca:a2:ee:d2:d2:8b:ee:fa:31:cf:4e:93:ce:68:83:01:2b:
62:ac:0e:0b:93:c4:d5:59:ad:c8:62:6c:eb:8b:b0:44:94:7d:
e6:8e:c8:b1:d8:b4:e7:f8:7f:19:39:55:86:c0:5a:09:71:9b:
15:b8:8f:cb:03:3b:c2:31:7a:76:be:46:3c:e9:f4:fd:22:ec:
31:4a:69:41:0a:9d:e4:62:61:4b:37:3f:63:92:7e:0d:6c:a9:
d4:72:ab:22:d7:2a:cc:c6:a1:f0:5e:11:0d:2d:9f:a6:0a:6a:
5b:98:2b:7c:97:2a:5d:e0:3b:f3:62:8f:e6:81:24:a7:9c:fc:
46:f8:ed:d5:97:1e:e2:3c:fb:84:3d:e3:9d:6e:65:d9:e6:13:
3c:58:a6:ac:d0:9f:94:3f:c7:70:fa:ad:00:46:50:dd:7f:c9:
f2:56:7e:d1:b6:02:d5:fe:5d:91:d8:98:0a:46:2e:73:6d:91:
d8:34:9a:ce:28:c9:5f:b7:16:0d:d2:0f:64:5a:ee:4c:df:70:
df:08:8f:59:f5:c5:10:ef:00:33:bd:1a:b5:5d:7c:e2:9e:69:
be:d1:14:6d
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIUZNs4YyFH8NmwHSS7pSpxMubqrPUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNTA5MDkwNzU1MTdaFw0yNjA5MDgwODAwMTdaMDMxMTAvBgNV
BAMTKDZBMjFFRTAwNjg1QkVDQzQzQTJCQjQ5NzdDMEIwMzY5MENGQThDMjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5NBlLjtD/eJkqHzvY3ub/YODF
JkBa6OdJoKhMefArBg1OZSbM78HCWpPoXCVO8XHCJUDv4bZFLocsnMGUDcBGXsGc
bGqlAicoLLybkya+Lx4yiWoH0H4zUszYIOsnrPpxRh2Cr5gx9Cx/zhb4gtyPJVbe
1jzSoew1Sz55QNzvpkIir39KTv0+ihjNeVFHNOTxII+MJPfX2DT0iD86Np2eoz7W
4/87nbRNoWJx6/yC6hrj2mMxexHyf9Mb3MrpPwtrEYr35Qbze+F3zodsafyrNoY4
EeJHRFGOuKE0y+XYVCZFlZ62XkcktaLQqOtLM49Rn5LFzyYIB4rTuQWPd8KbAgMB
AAGjggIAMIIB/DAdBgNVHQ4EFgQUaiHuAGhb7MQ6K7SXfAsDaQz6jCYwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MzQ5Mjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcB
Af8EIjAgMB4EAgABMBgDBABn/j0DBAF2W7oDBACQMFEDBAC5eakwDQYJKoZIhvcN
AQELBQADggEBAFio/8Ow2hcKrihICtLVY8x5Ax9Hu3oSkp9kJdYHsi1jY25yTl/K
ou7S0ovu+jHPTpPOaIMBK2KsDguTxNVZrchibOuLsESUfeaOyLHYtOf4fxk5VYbA
WglxmxW4j8sDO8Ixena+Rjzp9P0i7DFKaUEKneRiYUs3P2OSfg1sqdRyqyLXKszG
ofBeEQ0tn6YKaluYK3yXKl3gO/Nij+aBJKec/Eb47dWXHuI8+4Q9451uZdnmEzxY
pqzQn5Q/x3D6rQBGUN1/yfJWftG2AtX+XZHYmApGLnNtkdg0ms4oyV+3Fg3SD2Ra
7kzfcN8Ij1n1xRDvADO9GrVdfOKeab7RFG0=
-----END CERTIFICATE-----
Generated at Wed Oct 8 17:25:15 2025 by rpki-client