Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS399765.roa
File: AS399765.roa (raw, json)
Hash identifier: 8nLjLFFG76oyMtm18f/Z+9mZdizngYNB+kPzt/TY9mw=
Subject key identifier: 6C:4E:91:B9:CC:90:E1:B4:ED:E0:78:2B:62:03:77:E8:10:C8:94:97
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 558AE0589DDF1ED0FCC7D13115D7E5814F76AA4E
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS399765.roa
Signing time: Thu 03 Jul 2025 15:51:19 +0000
ROA not before: Thu 03 Jul 2025 15:46:19 +0000
ROA not after: Thu 02 Jul 2026 15:51:19 +0000
asID: 399765
IP address blocks: 194.58.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:8a:e0:58:9d:df:1e:d0:fc:c7:d1:31:15:d7:e5:81:4f:76:aa:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:19 2025 GMT
Not After : Jul 2 15:51:19 2026 GMT
Subject: CN=6C4E91B9CC90E1B4EDE0782B620377E810C89497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6e:50:1a:ea:cc:2c:a6:09:7a:eb:c7:6b:48:
2b:55:c3:f4:87:e0:b4:19:27:f8:5f:c2:69:b2:5d:
3c:94:1f:21:f2:f0:e5:dd:78:89:d3:20:da:98:24:
be:4a:0a:cf:c6:74:ca:46:5e:60:be:82:1f:f5:55:
87:e0:f8:d0:7f:0e:48:4c:01:5a:a6:1e:b1:34:b2:
8a:0d:e5:b9:87:5d:0c:85:c9:4a:34:42:56:28:9b:
90:2f:bd:5d:0b:cb:a2:cb:0e:a4:2d:c3:15:78:20:
83:57:ca:6a:de:1d:ee:8e:67:aa:15:49:39:71:c5:
e6:67:ed:2d:a5:cf:a9:08:db:c5:9e:dc:20:c4:16:
34:06:b4:98:ae:7f:34:6f:2e:fe:4b:5a:6f:65:e6:
a2:10:bd:d7:01:73:c8:ac:76:47:e8:3d:46:67:d0:
b3:8a:33:97:e9:e8:6c:4f:76:23:24:52:4c:b0:d3:
92:60:c1:67:40:a4:1d:3e:e8:6c:e7:2e:1e:b6:6f:
36:50:d7:c4:77:44:a7:8b:e8:37:33:c7:bc:0a:7e:
09:07:35:21:99:f6:ad:7c:6f:07:47:d5:0a:bb:4c:
11:8e:1b:94:a8:2e:5f:e1:5d:42:46:29:f8:6f:13:
17:7b:77:86:16:85:a6:f9:37:eb:11:02:cc:f3:10:
19:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:4E:91:B9:CC:90:E1:B4:ED:E0:78:2B:62:03:77:E8:10:C8:94:97
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS399765.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.65.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:41:76:c0:e1:31:db:29:26:d2:84:4a:42:89:49:30:9b:ae:
a7:db:c6:3b:8e:4c:53:f4:b2:74:54:15:c6:bc:fd:be:f2:44:
32:a6:10:8c:ba:93:40:ec:45:e1:1f:d2:f5:7f:c9:40:cb:28:
49:c3:ae:6c:bd:2c:1f:79:b8:2c:ed:01:cf:32:ec:33:60:09:
78:d2:95:99:93:c2:f5:5d:9c:b8:6b:f3:03:5e:db:51:22:3e:
76:23:c2:b9:50:d4:fc:3d:e2:cd:af:bc:2b:78:17:24:0f:ed:
e4:cb:3a:5b:23:3c:88:18:5d:86:a0:b4:ff:db:58:50:4a:be:
b8:bf:42:d2:78:21:76:d8:4a:7c:ea:7a:e5:18:5e:af:30:7d:
a7:80:26:3d:e2:2b:84:2d:13:11:b4:ff:5a:c8:8e:c1:5c:ad:
aa:dd:b5:5b:81:27:30:9d:23:5f:d3:79:68:f2:d2:68:aa:c3:
2f:25:46:e7:64:1a:97:1b:98:29:0a:32:11:4d:ee:0c:27:82:
0c:58:94:d9:d5:55:73:f9:09:13:ec:5a:82:e1:6f:c3:b5:93:
a1:c7:5a:65:55:01:ce:dc:65:d3:54:3d:b7:0a:37:7d:69:04:
85:1e:cd:18:02:82:54:57:07:f2:34:1b:4e:f8:37:ee:dc:2d:
f2:15:7b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:09:17 2025 by rpki-client