Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233322e302f32342d3234203d3e203336323336.roa
File: 3138352e34302e3233322e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: 1MaUYlx9vzo2jR0jqV5q1fysNYgYdtlVit9LtAVCFVM=
Subject key identifier: 95:57:8E:2D:2B:B3:21:9F:30:7A:10:62:52:55:0C:03:E7:20:AC:D5
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 0E8F8420CEF98AB2D5697A29DD32199F9D57FBD5
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233322e302f32342d3234203d3e203336323336.roa
Signing time: Mon 04 Aug 2025 22:13:58 +0000
ROA not before: Mon 04 Aug 2025 22:08:58 +0000
ROA not after: Mon 03 Aug 2026 22:13:58 +0000
asID: 36236
IP address blocks: 185.40.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 08:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:8f:84:20:ce:f9:8a:b2:d5:69:7a:29:dd:32:19:9f:9d:57:fb:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Aug 4 22:08:58 2025 GMT
Not After : Aug 3 22:13:58 2026 GMT
Subject: CN=95578E2D2BB3219F307A106252550C03E720ACD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:6e:2f:61:fa:4f:0e:de:d2:f1:0f:76:4d:
45:1c:10:6f:d0:e5:4e:c9:5b:7c:ca:45:37:35:ec:
d2:09:03:60:8f:2b:35:7f:11:ad:ee:55:e7:a9:ad:
5f:20:d9:07:b2:8b:79:20:a8:34:13:a2:fc:87:32:
89:fd:05:cc:19:5e:2a:3f:ce:1b:a5:5d:4f:52:4f:
1f:ac:aa:3d:11:9e:05:77:02:72:61:8d:bf:84:db:
e8:cc:62:56:e1:12:93:0a:85:f0:49:4a:8f:e5:9a:
3a:3e:b4:cd:10:7b:00:b1:08:ce:1c:21:fd:f8:57:
58:e2:d4:23:41:db:49:37:e1:6b:df:59:2e:d7:22:
08:3b:01:3a:60:2b:b6:cb:84:15:60:76:14:e8:e0:
01:f3:65:3d:c2:3c:37:e9:ab:ca:93:4c:16:be:4e:
11:13:d4:c0:96:52:13:05:f4:ef:c1:d2:62:12:1e:
87:4e:99:08:64:e1:54:50:fb:29:61:c5:c0:8c:34:
07:f0:a6:99:34:c1:70:8c:66:f4:c7:12:3a:c1:93:
1e:05:b4:c6:73:65:5a:00:d0:5d:1c:e4:76:f7:ad:
c5:e6:12:d3:94:3d:c8:fd:be:9b:4d:11:84:11:5f:
e0:5c:d4:d3:19:0a:85:fc:6b:b2:f8:a4:00:d4:e6:
a1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:57:8E:2D:2B:B3:21:9F:30:7A:10:62:52:55:0C:03:E7:20:AC:D5
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233322e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.232.0/24
Signature Algorithm: sha256WithRSAEncryption
14:21:e6:2e:92:db:e5:21:47:3c:6f:7f:19:11:5a:2c:d2:60:
ee:de:b6:f1:cd:91:53:c5:fe:57:3b:5b:c1:23:6d:40:38:d0:
5f:b9:0b:ce:22:13:8a:41:91:05:cb:ee:80:19:a9:a0:c2:57:
60:0d:05:f4:96:66:08:98:c6:1f:16:da:05:11:2d:a4:e1:76:
80:bb:81:6c:55:5c:26:f7:15:85:41:b0:1a:c9:c6:c8:2c:7a:
49:ff:b1:2c:6d:b0:f1:8f:a0:20:46:a4:2d:70:01:1c:bc:6b:
37:ef:9a:c0:52:fb:b4:34:24:75:9c:2c:99:5b:bd:1c:96:08:
82:97:e9:24:8b:9a:b9:b3:8a:16:f5:12:5f:15:83:70:c9:1f:
ab:e7:af:47:71:30:24:39:05:3e:cf:c1:5e:8a:c5:1b:1d:8d:
f1:28:2e:1d:ef:b4:cc:ee:0f:af:7b:15:24:a4:fd:3f:15:96:
52:af:c9:26:90:f3:19:70:02:ac:d7:06:06:eb:24:12:fd:4a:
79:22:ac:61:56:99:af:a8:a8:15:c9:f7:04:03:1d:d3:99:17:
e2:63:3d:c2:61:83:9a:d3:7f:db:9d:1e:58:8f:6c:29:28:b3:
6c:9e:e1:b9:f8:d8:49:58:fa:b9:f2:72:1a:fc:e6:7a:67:8c:
5e:97:92:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:34:53 2025 by rpki-client