Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS202224.roa
File: AS202224.roa (raw, json)
Hash identifier: W3ojE6/En3qpsTqF/mN+m4RdbZjICqDShjN0kVQpu2k=
Subject key identifier: 09:F0:33:98:93:9A:0B:84:5C:9D:D6:72:5D:1A:1C:B0:38:30:B6:AE
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 7072D08EA718766F960FBA338AC5D06F1A4A71AE
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS202224.roa
Signing time: Thu 04 Jun 2026 15:58:47 +0000
ROA not before: Thu 04 Jun 2026 15:53:47 +0000
ROA not after: Thu 03 Jun 2027 15:58:47 +0000
asID: 202224
IP address blocks: 2a06:a005:b65::/48 maxlen: 48
2a06:a005:108d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:72:d0:8e:a7:18:76:6f:96:0f:ba:33:8a:c5:d0:6f:1a:4a:71:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:47 2026 GMT
Not After : Jun 3 15:58:47 2027 GMT
Subject: CN=09F03398939A0B845C9DD6725D1A1CB03830B6AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7c:b7:c9:32:3a:5a:fd:cc:0f:6e:6e:bd:20:
ab:01:65:00:c0:e2:d4:98:c7:e3:73:c7:fd:94:dc:
92:bf:84:a7:ce:5a:1a:46:1f:24:d1:48:3a:d8:8e:
61:38:1b:3d:cc:5f:fa:2c:ea:9a:a7:38:a8:b1:01:
8c:b0:b4:d9:25:41:39:5a:a5:56:cf:f3:a4:e1:7c:
9e:2b:b7:32:74:29:e5:e8:5d:c8:8e:0c:1e:77:c5:
be:9c:77:83:ed:75:20:4a:d3:18:15:fb:57:19:be:
61:05:a2:a1:c1:c8:ad:25:6a:3a:e2:0f:8e:09:71:
da:7d:31:b0:02:d5:c2:96:0b:24:c2:c1:c4:91:11:
48:2f:40:a8:0d:6e:e4:c1:05:25:43:ac:4d:3a:86:
45:8f:9f:41:e8:21:4b:ca:01:9e:9e:b6:e1:4c:20:
f8:1d:5b:27:ba:ab:6f:42:9e:7d:e3:6d:2a:aa:09:
0f:a4:35:49:e4:2d:7c:95:e8:7d:d3:30:e8:6b:47:
5c:91:b7:74:14:b1:76:90:9e:ef:c9:c5:27:eb:95:
27:28:e0:2b:98:98:89:0a:68:b6:ad:62:6c:49:2d:
67:6d:bf:3f:eb:32:ef:60:74:0e:02:2b:30:55:99:
2d:0e:64:0d:5b:3f:2b:e7:2e:15:9c:f0:81:d4:33:
b9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F0:33:98:93:9A:0B:84:5C:9D:D6:72:5D:1A:1C:B0:38:30:B6:AE
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS202224.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b65::/48
2a06:a005:108d::/48
Signature Algorithm: sha256WithRSAEncryption
2d:3c:8d:f1:31:9f:2c:5f:9c:a9:71:64:a3:c5:16:82:ba:e6:
74:69:13:f3:95:77:f3:09:9f:17:b6:42:d8:ba:83:59:64:da:
96:ab:5f:6d:42:50:31:86:9a:11:77:32:3a:82:9f:a6:fb:d2:
55:be:c0:fb:d3:04:3d:6b:ed:00:94:38:9e:2c:d3:90:93:03:
00:c7:6f:d5:46:9f:1e:a5:da:93:ea:42:e6:ef:3d:44:09:db:
ef:06:b0:e3:f5:b9:41:2f:61:e1:8a:10:62:82:a5:dd:80:56:
ed:54:f8:a6:de:b8:18:8e:44:db:00:3c:ff:32:25:17:54:8f:
81:b4:14:b0:70:74:8f:95:3d:0c:43:bf:9b:78:2b:da:4f:8d:
0d:f5:03:e0:15:35:99:b4:c8:b7:5c:f3:3c:36:bd:df:39:fc:
f3:8d:b5:12:fa:24:27:bb:80:db:94:57:00:eb:3b:b2:2e:6e:
6a:56:73:df:55:99:90:ac:b5:cd:1c:f9:03:6b:5d:ab:38:eb:
25:23:98:19:7f:fb:10:f8:91:30:64:06:45:0f:e3:e1:26:2a:
f1:e1:1e:84:55:e1:50:28:c7:10:f2:4a:a8:9e:bf:2c:da:eb:
36:98:5d:22:db:90:d1:55:ac:21:ab:57:81:0f:40:a6:80:e2:
96:2f:2a:a4
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIUcHLQjqcYdm+WD7ozisXQbxpKca4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA2MDQxNTUzNDdaFw0yNzA2MDMxNTU4NDdaMDMxMTAvBgNV
BAMTKDA5RjAzMzk4OTM5QTBCODQ1QzlERDY3MjVEMUExQ0IwMzgzMEI2QUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQfLfJMjpa/cwPbm69IKsBZQDA
4tSYx+Nzx/2U3JK/hKfOWhpGHyTRSDrYjmE4Gz3MX/os6pqnOKixAYywtNklQTla
pVbP86ThfJ4rtzJ0KeXoXciODB53xb6cd4PtdSBK0xgV+1cZvmEFoqHByK0lajri
D44Jcdp9MbAC1cKWCyTCwcSREUgvQKgNbuTBBSVDrE06hkWPn0HoIUvKAZ6etuFM
IPgdWye6q29Cnn3jbSqqCQ+kNUnkLXyV6H3TMOhrR1yRt3QUsXaQnu/JxSfrlSco
4CuYmIkKaLatYmxJLWdtvz/rMu9gdA4CKzBVmS0OZA1bPyvnLhWc8IHUM7kRAgMB
AAGjggH7MIIB9zAdBgNVHQ4EFgQUCfAzmJOaC4RcndZyXRocsDgwtq4wHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjAyMjI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEH
AQH/BBwwGjAYBAIAAjASAwcAKgagBQtlAwcAKgagBRCNMA0GCSqGSIb3DQEBCwUA
A4IBAQAtPI3xMZ8sX5ypcWSjxRaCuuZ0aRPzlXfzCZ8XtkLYuoNZZNqWq19tQlAx
hpoRdzI6gp+m+9JVvsD70wQ9a+0AlDieLNOQkwMAx2/VRp8epdqT6kLm7z1ECdvv
BrDj9blBL2HhihBigqXdgFbtVPim3rgYjkTbADz/MiUXVI+BtBSwcHSPlT0MQ7+b
eCvaT40N9QPgFTWZtMi3XPM8Nr3fOfzzjbUS+iQnu4DblFcA6zuyLm5qVnPfVZmQ
rLXNHPkDa12rOOslI5gZf/sQ+JEwZAZFD+PhJirx4R6EVeFQKMcQ8kqonr8s2us2
mF0i25DRVawhq1eBD0CmgOKWLyqk
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:23:00 2026 by rpki-client