Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS47311.roa
File: AS47311.roa (raw, json)
Hash identifier: uMZDr/togXlQxF+nsIy6qsBJSAnu0ygZyAfnMxNsvI8=
Subject key identifier: D0:BF:B6:A4:EE:DA:47:5D:32:5F:ED:E1:56:69:C2:25:E2:7F:86:12
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 0681BDA7648B39F7EB0228C6B046EF07BBED8486
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS47311.roa
Signing time: Thu 03 Jul 2025 15:51:41 +0000
ROA not before: Thu 03 Jul 2025 15:46:41 +0000
ROA not after: Thu 02 Jul 2026 15:51:41 +0000
asID: 47311
IP address blocks: 2a06:9f44:f170::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:81:bd:a7:64:8b:39:f7:eb:02:28:c6:b0:46:ef:07:bb:ed:84:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:41 2025 GMT
Not After : Jul 2 15:51:41 2026 GMT
Subject: CN=D0BFB6A4EEDA475D325FEDE15669C225E27F8612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:5b:42:c0:28:3f:f8:47:84:af:f3:1d:59:
03:5d:f6:93:bb:a8:4b:c6:c2:94:1f:60:c3:08:b7:
6d:c1:16:d7:26:17:53:88:5d:c3:bc:7b:b2:55:e9:
9b:e4:c5:3d:56:96:5e:5c:68:72:9a:c1:8c:85:48:
67:9f:65:34:60:de:5a:9e:c5:39:7e:9d:4a:ed:38:
72:dd:d3:9b:b3:09:ec:55:f6:27:52:ee:5b:c7:8d:
de:74:62:42:90:c6:e8:4c:fc:5d:4a:a4:8b:83:13:
0e:16:87:38:ad:2a:73:69:6b:29:e5:01:38:61:f9:
bf:a8:a9:40:5e:cb:a7:78:7b:b8:41:a6:ec:68:e9:
03:8f:a5:7f:d8:f7:a3:89:be:9a:c5:9a:7f:75:a5:
52:42:6e:e9:da:6a:7d:6b:1c:67:f0:29:df:50:01:
57:d6:23:e2:a1:fc:e6:39:d8:1d:fb:27:f9:bc:fe:
3c:12:47:05:e6:3f:46:c6:8c:59:a5:ad:5d:b6:1c:
c2:4d:26:71:05:33:0e:cd:7f:4e:5d:f1:fc:dc:0d:
04:29:23:20:b4:63:00:d2:89:e0:05:4a:40:d3:0f:
61:5a:4b:1a:e4:95:3b:a9:ab:ad:33:04:f4:2f:e7:
fc:fc:8d:e5:40:53:e7:b2:4d:19:21:66:2e:4e:38:
b7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BF:B6:A4:EE:DA:47:5D:32:5F:ED:E1:56:69:C2:25:E2:7F:86:12
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS47311.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f44:f170::/44
Signature Algorithm: sha256WithRSAEncryption
88:4a:13:23:9a:26:76:5f:ee:36:96:3f:85:b7:5c:97:b1:b6:
b7:e7:2f:eb:d9:69:db:37:99:1f:1a:8d:75:22:e1:f1:45:e0:
91:0d:41:67:de:6b:fb:11:e3:60:da:2c:aa:44:47:e0:59:a7:
de:b9:05:49:ef:ef:63:fb:a7:2d:e0:9a:01:80:31:a6:3e:e6:
f5:11:47:24:8a:97:cf:1b:3b:a7:0d:70:2f:f0:51:dc:b5:c0:
f2:22:82:a3:c5:57:4f:d3:34:48:ee:df:dc:be:9f:97:75:cf:
22:d0:1a:d9:b0:8b:ef:b5:b9:ab:a5:52:f9:94:54:52:31:28:
b6:8c:2f:8b:8b:eb:d7:9a:97:cf:a1:c6:77:15:c4:c2:aa:ed:
d3:1d:4b:56:c8:66:1c:fb:6a:e4:3e:ca:1d:79:7e:89:3d:36:
a9:f2:58:16:f3:1d:a9:6d:0f:01:97:44:39:75:90:e4:0f:1b:
18:38:bc:ec:39:6b:3f:e9:bd:f7:0b:10:68:27:0b:6b:a9:5c:
dc:66:22:de:56:62:96:9c:b1:18:e2:1d:e6:b5:be:f8:e7:e0:
74:70:14:67:4d:5f:80:15:81:1a:2a:b3:5e:a3:8e:f1:05:f8:
89:b1:1d:93:cf:3f:31:65:a1:49:84:3f:d1:b0:38:7e:c2:ba:
cc:25:95:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:18:41 2025 by rpki-client