Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53742.roa
File: AS53742.roa (raw, json)
Hash identifier: xsO5FpPADYaf1EzBLzhUz43Th3t/MDf8252uTLo9NwE=
Subject key identifier: 58:20:E2:BA:21:BD:39:C2:72:20:89:11:1B:91:A1:A3:B5:72:F2:EB
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 13076D12857FF044504F4A1191CE4670E734189C
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53742.roa
Signing time: Fri 29 Aug 2025 11:13:25 +0000
ROA not before: Fri 29 Aug 2025 11:08:25 +0000
ROA not after: Fri 28 Aug 2026 11:13:25 +0000
asID: 53742
IP address blocks: 103.214.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:07:6d:12:85:7f:f0:44:50:4f:4a:11:91:ce:46:70:e7:34:18:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Aug 29 11:08:25 2025 GMT
Not After : Aug 28 11:13:25 2026 GMT
Subject: CN=5820E2BA21BD39C2722089111B91A1A3B572F2EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2d:ac:fd:b6:0b:06:f1:7c:dc:b2:50:d4:e2:
5c:1d:f8:f8:74:73:87:50:0a:0c:f6:c2:eb:c1:ff:
ac:12:93:53:01:55:c8:89:3b:0e:f2:da:0d:25:c0:
a1:1a:68:cb:7e:cc:2f:0e:69:ae:a1:51:9d:76:d0:
5c:93:07:0d:b5:a1:cc:32:f3:05:d9:90:a6:c7:fd:
eb:19:9e:25:08:d8:3a:73:00:be:3f:41:45:f5:6a:
c4:d6:e9:63:e6:2c:73:90:42:ff:5c:c0:36:17:08:
83:00:0f:b4:02:8e:3e:e3:e4:0c:ca:67:43:a9:04:
a1:e2:57:59:19:82:ec:20:65:d3:d8:e9:98:82:43:
ba:35:1d:07:85:fa:85:4b:72:d2:6f:d6:6e:f3:a8:
55:e1:34:7c:72:40:3c:51:d6:0a:4e:0b:99:be:cb:
bc:24:e0:7a:fd:13:56:56:97:e3:a9:4b:fe:55:b3:
96:1f:4a:08:54:37:06:66:c9:98:e0:fe:19:a6:f6:
eb:20:84:3f:64:ff:cb:8c:38:1b:1c:8c:08:47:10:
ee:79:b5:47:89:cf:1e:5f:3b:ef:54:ef:09:2a:19:
fc:c4:3c:4c:02:26:08:3d:47:e6:fa:78:d6:6c:bc:
37:59:03:a5:94:99:3e:26:13:a5:52:26:be:82:9f:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:20:E2:BA:21:BD:39:C2:72:20:89:11:1B:91:A1:A3:B5:72:F2:EB
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53742.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.68.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:21:95:0e:0f:f7:15:8d:d5:d4:e9:f5:f2:6d:c3:3f:e1:d5:
66:bf:3b:6d:6c:08:c9:0e:e5:76:42:90:b4:1f:f7:81:58:38:
fc:6b:f5:42:e9:89:88:3b:5d:69:e8:6b:b6:19:ea:57:a2:00:
ae:23:63:87:96:c2:2c:fc:c2:2f:e7:68:4f:1b:52:7e:d3:14:
80:7c:8a:d5:44:bf:ea:a7:1b:ad:04:65:51:ec:af:78:7e:b6:
5e:6e:06:22:f8:b2:03:5c:7b:28:1d:f2:22:af:89:9f:5c:7f:
58:b7:1f:89:2a:73:3e:ab:02:e0:aa:d2:80:00:0c:fb:9a:c2:
39:23:79:80:70:8a:1a:9e:5a:98:29:fc:b8:0d:f6:73:cd:e8:
28:0f:7f:2a:1b:db:71:45:48:12:b3:b6:2a:08:4d:7b:ac:fa:
dc:ba:7b:f5:7b:ae:e8:cc:fb:b8:66:95:d4:c0:ed:e0:73:58:
a3:ba:0f:72:52:ee:aa:b8:b4:a3:c3:ee:7c:2e:95:38:e4:f3:
71:d9:40:aa:21:ba:f6:e6:8c:de:42:b6:0c:bb:3b:b2:4c:57:
82:44:22:93:1e:7e:ae:33:13:22:20:41:0e:9c:08:70:2c:aa:
a8:5f:d5:42:5f:77:66:a7:e9:fd:ef:9a:fb:01:f3:09:ed:d4:
dc:84:86:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 17:19:34 2025 by rpki-client