Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS56655.roa
File: AS56655.roa (raw, json)
Hash identifier: n8SZlmwtn2qGQzqMQO+TfJN9tbTxCXBl7yCLooQZh3M=
Subject key identifier: F1:A9:50:A5:66:93:E2:EF:DA:34:1D:6B:FE:72:48:BD:48:82:B2:BE
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2AFA84C25977628AA4159596CDC167EED31E94A1
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS56655.roa
Signing time: Thu 03 Jul 2025 15:52:34 +0000
ROA not before: Thu 03 Jul 2025 15:47:34 +0000
ROA not after: Thu 02 Jul 2026 15:52:34 +0000
asID: 56655
IP address blocks: 202.50.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:fa:84:c2:59:77:62:8a:a4:15:95:96:cd:c1:67:ee:d3:1e:94:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:47:34 2025 GMT
Not After : Jul 2 15:52:34 2026 GMT
Subject: CN=F1A950A56693E2EFDA341D6BFE7248BD4882B2BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:d6:82:2b:59:d9:ec:63:fe:dc:fc:d3:13:
f3:88:77:98:6d:f3:e5:1b:53:18:c3:9e:ac:50:8b:
4e:f1:e2:76:0d:0c:47:1f:68:ee:00:ab:af:09:d9:
78:e6:a1:d4:69:ce:99:63:65:cb:b4:f3:e5:00:e7:
68:45:fa:f3:9e:bf:5d:be:41:14:72:57:68:4f:52:
ca:80:4a:bd:9f:e5:90:73:e2:10:42:00:10:95:0f:
25:61:e6:3d:44:35:a6:0d:13:03:94:60:48:f8:c7:
c1:f0:b1:b6:ee:9c:a5:ed:b7:32:ab:4d:b6:df:61:
be:c7:67:50:14:7f:b1:9c:cf:c7:e5:a8:fd:bd:59:
f3:4f:d3:91:26:b4:54:5f:43:ee:4d:30:51:fa:ea:
e3:9a:96:e6:f3:48:02:85:2c:a9:5b:d4:26:93:f6:
17:c9:e6:62:c7:33:3c:33:4a:07:3d:7a:48:d5:5c:
1d:54:05:2a:41:c4:f1:6c:13:d1:2d:ac:f7:de:dc:
56:c9:e1:4d:d5:ac:1e:b8:17:fe:f3:2e:5d:8d:22:
b7:88:72:73:2f:da:8b:ff:b6:88:9d:86:89:6a:31:
5c:17:c1:49:90:df:2f:eb:75:85:e5:f5:56:8d:22:
98:d9:76:f1:75:41:fa:27:8b:a2:5c:22:75:f1:bf:
42:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A9:50:A5:66:93:E2:EF:DA:34:1D:6B:FE:72:48:BD:48:82:B2:BE
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS56655.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.50.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:2a:b9:15:c9:66:f5:f1:3f:ed:85:6c:1b:80:12:e0:27:f5:
19:dc:7b:51:b5:5f:05:ea:19:ec:b2:2e:85:b5:c6:c9:31:57:
c1:5f:49:49:80:e1:bd:8a:d8:f4:2a:67:8a:3d:1f:5b:8a:81:
27:d8:e4:d8:bf:30:a5:4d:2f:65:34:21:4f:bb:f5:60:d3:92:
f1:c2:03:f0:61:f1:43:a3:88:93:6f:3b:68:88:15:d7:1f:21:
2d:f7:51:46:bc:a0:f3:01:54:89:99:25:df:40:24:64:7a:92:
9e:c4:0a:55:6b:5c:87:de:96:1b:8c:f1:61:e3:20:6e:3b:ea:
7b:c0:d6:14:93:17:b9:ce:19:d3:91:9b:d7:75:16:bd:f5:eb:
64:41:cf:36:cb:9d:d1:c7:6e:0e:b7:4d:f3:47:dd:57:49:56:
0a:4e:f9:ad:8e:4a:47:78:39:ea:5d:cd:8d:8f:da:19:a1:9f:
4c:19:f6:63:b5:5d:76:32:cc:80:86:cf:58:b1:2c:94:b1:60:
37:e4:9a:53:83:ec:52:3c:67:21:8f:dd:ca:9a:c8:10:78:9c:
26:6b:6b:89:df:41:09:4f:bc:e5:22:b1:65:c6:8f:38:7a:f1:
3c:f5:ed:f1:09:88:42:13:40:cd:cc:ae:b2:b9:c6:06:4c:b8:
7c:da:50:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:15:14 2025 by rpki-client