Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200158.roa
File: AS200158.roa (raw, json)
Hash identifier: Z9CyQYrsA9t061AcSBRLDXXTN/84CdRdhEP2axeJAWc=
Subject key identifier: 35:F0:66:00:E1:42:24:91:B0:FB:95:33:05:3A:9C:B0:74:A1:02:53
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 589628FF3372A768C0E3EC9440DA157FCA6C2431
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200158.roa
Signing time: Thu 04 Jun 2026 15:58:52 +0000
ROA not before: Thu 04 Jun 2026 15:53:52 +0000
ROA not after: Thu 03 Jun 2027 15:58:52 +0000
asID: 200158
IP address blocks: 2a06:a005:1c7d::/48 maxlen: 48
2a06:a005:2be0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:96:28:ff:33:72:a7:68:c0:e3:ec:94:40:da:15:7f:ca:6c:24:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:52 2026 GMT
Not After : Jun 3 15:58:52 2027 GMT
Subject: CN=35F06600E1422491B0FB9533053A9CB074A10253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bc:25:51:bf:99:87:f5:08:b5:eb:88:07:43:
a4:cc:8f:70:ef:11:28:6e:c1:e6:bf:49:78:4a:55:
3d:71:4f:bc:28:31:dd:ff:2e:e9:67:1a:44:fc:f4:
50:c3:ea:86:a2:3b:af:16:7a:83:ab:36:00:0c:46:
12:d4:72:0b:7f:1b:78:46:da:b3:90:1e:41:30:47:
3b:f8:37:7f:cf:04:04:7c:5d:34:74:34:ad:15:23:
56:98:1c:c7:8a:b4:da:43:d1:d6:b2:e6:5c:aa:68:
d7:9b:bd:b7:2d:62:20:8a:5a:b3:aa:6f:96:f5:c5:
80:7e:8d:d3:93:09:c7:d9:cb:34:b3:13:a8:05:ab:
3f:81:19:60:a6:1c:b2:87:81:f3:20:ca:bb:f8:b3:
7e:68:d6:c8:ff:80:f0:fb:e4:33:cf:5b:49:65:e3:
8c:1e:a8:ec:48:8c:a0:e6:97:4f:f0:bb:58:05:1a:
40:02:5a:f1:17:49:fb:ec:78:9b:cf:d6:b1:c3:a6:
76:d2:b7:3b:b6:99:98:b4:46:ae:90:a1:30:a7:67:
3f:fb:28:12:73:4d:80:98:24:e1:b8:2c:ed:32:94:
0d:44:1c:30:1d:b7:1e:71:3b:95:cc:1f:5c:58:5e:
51:70:40:17:57:77:7d:1a:7a:c9:a4:28:17:74:79:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F0:66:00:E1:42:24:91:B0:FB:95:33:05:3A:9C:B0:74:A1:02:53
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS200158.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c7d::/48
2a06:a005:2be0::/44
Signature Algorithm: sha256WithRSAEncryption
11:ee:dd:07:ae:26:0f:5e:b9:37:26:b2:e5:43:7f:13:a6:d1:
2e:b0:34:8e:7c:54:7e:a8:d3:77:1d:57:c5:bd:a2:e6:17:28:
0c:3c:1f:b2:33:17:58:56:ac:bf:08:51:a0:f7:8e:35:15:7a:
70:d8:b7:8e:9d:c9:fa:aa:ac:74:a5:b3:9f:27:62:b1:cb:f6:
5a:91:e2:62:64:50:db:26:22:04:56:8f:5d:6b:6a:eb:b8:b1:
eb:47:aa:b4:79:c3:b5:db:2b:0d:75:07:f3:48:a1:dd:d7:30:
f8:e2:5f:de:aa:3b:49:a6:9c:20:32:e4:8a:03:1a:a5:ed:e2:
00:7c:8c:f9:60:69:ce:3d:f6:77:3b:2e:58:2f:a1:d2:25:eb:
5f:a2:55:f4:bf:0f:f7:1d:bb:f3:7c:e0:6c:aa:76:08:a7:98:
a4:e9:08:3d:ed:1c:8b:cd:7e:5d:fe:89:ab:87:7a:c3:1a:15:
29:4a:92:1d:a6:4a:0c:75:77:fb:34:ab:3c:55:06:93:41:3f:
89:56:b2:5f:db:be:08:d1:e9:ca:12:8a:14:d1:c1:16:d0:7b:
4b:84:5d:d4:82:a6:65:70:ca:b1:76:37:a5:20:54:53:bb:77:
69:d8:72:bd:61:7f:f7:4d:c3:f4:0c:dc:ae:55:fd:17:2f:49:
5c:b0:8f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:04 2026 by rpki-client