Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
File: AS52025.roa (raw, json)
Hash identifier: FUEEcKxBOqt9cH79X0BZQPD9qIWSKbYPgiP1w3gzxq4=
Subject key identifier: 1B:CE:06:6E:BE:97:1A:FD:D8:98:8A:60:A5:09:2C:B9:AA:AB:13:BF
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 4A58355276C8BAE73FA19EACF6D20A43E0EA4FA9
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
Signing time: Thu 03 Jul 2025 15:51:23 +0000
ROA not before: Thu 03 Jul 2025 15:46:23 +0000
ROA not after: Thu 02 Jul 2026 15:51:23 +0000
asID: 52025
IP address blocks: 2a06:a005:5b8::/48 maxlen: 48
2a06:a005:1da0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:58:35:52:76:c8:ba:e7:3f:a1:9e:ac:f6:d2:0a:43:e0:ea:4f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:23 2025 GMT
Not After : Jul 2 15:51:23 2026 GMT
Subject: CN=1BCE066EBE971AFDD8988A60A5092CB9AAAB13BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:80:84:b2:76:10:8c:71:02:0f:fb:05:5a:eb:
46:fa:8a:1f:ed:8d:6d:e5:17:e3:af:86:19:85:cb:
4c:49:ba:1c:62:45:13:fb:20:ab:90:6b:95:25:95:
7c:cc:6a:08:0e:c5:92:da:1e:93:6b:4d:51:ba:8c:
06:a9:ec:5b:0e:71:4a:41:0d:34:8d:8d:f3:54:74:
49:fc:61:7d:af:d9:64:cb:29:10:84:b6:8c:63:e4:
98:27:fe:f5:44:e6:d0:0c:05:26:a1:34:4f:c4:8e:
c2:fd:1c:25:54:c2:cc:8b:2b:8e:79:9e:6e:c0:ff:
17:b5:46:dc:c6:e8:ef:c4:f6:42:f0:aa:f5:96:61:
52:f4:3f:f0:e7:74:d8:1a:f6:ef:c2:d9:67:22:e0:
f5:39:42:25:9f:f2:79:1d:15:31:e8:45:dd:5e:5e:
81:02:23:80:6d:e0:40:19:d0:02:95:4d:15:65:4e:
fd:e9:31:a1:b0:48:9a:99:42:3c:59:31:c2:a5:59:
9f:60:98:d3:f4:5b:7d:b2:7a:53:4f:13:0e:fb:59:
be:db:3f:a2:f9:5f:86:ac:d0:73:2a:62:f5:a1:42:
f3:7b:57:f3:c8:7b:53:58:5b:26:81:23:55:e3:98:
40:44:37:19:d3:63:3a:ab:f7:3b:f1:64:1f:49:43:
e3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CE:06:6E:BE:97:1A:FD:D8:98:8A:60:A5:09:2C:B9:AA:AB:13:BF
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5b8::/48
2a06:a005:1da0::/44
Signature Algorithm: sha256WithRSAEncryption
a1:01:c8:9f:5a:f6:9d:08:76:38:bf:a5:68:54:b0:ac:36:c2:
0b:be:53:aa:4d:86:79:85:bc:7c:cf:41:b3:43:9d:73:75:b7:
e9:2b:92:00:a9:cb:b2:79:18:6d:e4:a3:97:a0:72:04:1e:97:
4c:19:5a:0b:ae:22:9e:1b:bf:b3:9e:14:6a:40:0c:07:d4:68:
ad:bb:17:19:f8:d4:b0:10:1c:3f:e5:08:fc:87:23:5e:03:d9:
2e:77:7d:b8:35:14:eb:d6:82:eb:f4:7a:4e:b7:cd:3e:7a:c6:
e8:d4:83:85:05:67:63:00:db:5c:fe:4e:0c:3e:f9:53:fe:63:
92:eb:72:02:46:da:aa:93:64:02:b5:45:a5:19:c1:16:21:15:
93:8c:78:78:d1:4a:70:a5:de:a8:46:de:de:c7:1e:ef:08:bc:
db:c1:44:1b:33:f1:c5:f7:ec:d3:fb:2c:27:52:6f:8f:1b:47:
87:15:b4:e9:5b:a7:46:1a:ae:d8:5f:cb:21:f2:34:d6:1e:4f:
1f:1d:24:77:16:cd:94:34:86:45:b9:e8:dd:87:7a:a0:85:67:
85:3f:87:e3:75:4b:1e:41:db:0a:98:05:1a:3a:d1:fa:47:36:
21:5a:54:a4:6c:7d:54:53:a8:e2:9d:00:45:4a:48:85:40:47:
54:f8:c3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:06:54 2025 by rpki-client