Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS401665.roa
File: AS401665.roa (raw, json)
Hash identifier: deLvS0AcWkKs9B2BypZ9mRPAOBMgQ1LEMtfgVq5Uq7I=
Subject key identifier: E7:C5:66:9C:38:E5:C5:2B:47:FB:FB:41:D7:D3:2C:E1:CC:E1:17:40
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 0DFA86B365FBA0200F7EEE7A7956D1B779040BB6
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS401665.roa
Signing time: Wed 10 Sep 2025 20:14:48 +0000
ROA not before: Wed 10 Sep 2025 20:09:48 +0000
ROA not after: Wed 09 Sep 2026 20:14:48 +0000
asID: 401665
IP address blocks: 103.254.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:fa:86:b3:65:fb:a0:20:0f:7e:ee:7a:79:56:d1:b7:79:04:0b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Sep 10 20:09:48 2025 GMT
Not After : Sep 9 20:14:48 2026 GMT
Subject: CN=E7C5669C38E5C52B47FBFB41D7D32CE1CCE11740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:fb:d0:88:cb:c8:12:da:48:f3:02:d9:0d:
58:64:13:c8:ab:09:4f:84:1c:20:35:ae:03:f5:77:
7a:b9:c8:b9:9e:de:48:01:ae:1b:4e:a7:17:cc:bf:
e5:a7:fb:51:5f:44:55:9b:49:76:9a:00:0a:c4:02:
fb:b4:0d:18:be:01:ea:7c:dc:ac:90:fb:b9:1d:48:
e6:d0:e9:89:a3:d6:3b:78:68:62:80:79:d5:a2:6b:
aa:0e:34:21:1c:e9:39:36:17:5b:18:3c:d1:4f:c7:
72:05:67:33:97:95:87:f5:7a:b7:67:8a:b1:47:db:
0f:15:22:2b:ea:2a:2e:e4:24:1b:11:17:21:bc:42:
e5:dc:94:d5:7d:c4:44:be:9f:02:48:bd:72:3c:dd:
da:09:d7:f2:ff:15:fa:d0:bc:f1:ec:05:21:78:68:
b0:85:14:57:15:3e:6c:f9:20:a9:d9:21:66:87:05:
47:74:ff:23:03:9a:a7:6a:68:79:83:e2:b7:47:ea:
a2:36:aa:65:31:d4:6d:37:82:01:55:97:86:4a:64:
ce:09:11:7b:21:45:a4:89:17:26:69:58:3f:3d:62:
e8:58:6f:5d:78:29:e9:a4:af:4e:b8:b8:fc:59:ec:
ca:d3:c1:1b:a4:5c:e3:80:65:f7:f5:fe:99:98:7f:
0b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C5:66:9C:38:E5:C5:2B:47:FB:FB:41:D7:D3:2C:E1:CC:E1:17:40
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS401665.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.254.63.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ce:d7:5b:3c:b2:26:e9:07:1e:26:35:9e:48:82:b3:3c:70:
f6:d8:79:41:57:a1:93:b1:11:58:5b:90:38:48:09:a6:6c:11:
df:d9:06:11:31:31:35:2f:19:56:1a:4d:5c:51:30:61:d1:36:
31:9d:92:e4:6d:d6:92:da:2a:dc:73:f9:ff:00:4d:6a:32:3a:
95:23:68:99:dc:b7:89:5a:a5:11:18:d2:c7:12:a1:f9:04:94:
c2:0a:b7:15:e4:9c:17:c3:41:40:60:6c:44:7e:3e:31:21:7b:
7c:84:31:13:06:23:2d:24:0b:e5:e9:6c:81:2a:fe:06:de:31:
d1:7b:1f:59:a0:55:33:5c:ca:2a:68:b8:d5:58:0f:d4:5f:dc:
58:c9:da:3a:25:d0:b1:7a:77:86:65:1a:ad:a5:03:a1:2d:40:
94:7d:04:62:6f:2c:99:7c:4b:a1:67:fe:ed:3c:27:87:9c:d7:
b4:c4:a5:34:e1:fc:f0:f0:15:ad:ab:a6:50:6e:28:de:ba:24:
29:ca:02:96:11:52:53:b1:23:8f:7d:6c:c2:25:c9:50:cc:41:
ab:51:37:ac:c8:8a:3c:7b:6e:3b:22:c6:97:90:b7:75:31:0c:
b8:cc:8f:64:3e:39:5c:ba:fe:6f:52:a9:92:fb:52:e5:17:78:
54:06:0f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 17:19:34 2025 by rpki-client