Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205232.roa
File: AS205232.roa (raw, json)
Hash identifier: pEnkiLV45MXBpIHOzJFccdL9VYWSoD9In5kt6tjBo/E=
Subject key identifier: 0A:85:0E:AA:5E:11:10:3C:68:B4:C8:44:5C:C5:AC:47:08:0C:C3:EE
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 471AFF9A5867270DE2AF77E03C6A2D1CC745CEC3
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205232.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 205232
IP address blocks: 2a06:a005:18f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:1a:ff:9a:58:67:27:0d:e2:af:77:e0:3c:6a:2d:1c:c7:45:ce:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=0A850EAA5E11103C68B4C8445CC5AC47080CC3EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:80:20:53:7f:ee:44:2a:c0:e0:c8:12:4b:52:
4a:ad:86:40:19:ef:b9:55:bd:6d:d8:3b:c2:9d:cf:
b0:51:56:db:b1:a6:7f:27:e0:84:a7:1f:6b:f3:a8:
6c:4f:70:4c:04:7a:98:c9:1a:e2:b8:61:c7:f7:65:
b6:6d:a0:eb:67:9b:d0:f9:7b:50:66:16:1b:7e:1f:
52:d6:68:a2:4e:c2:ab:96:c1:09:82:1a:5e:b4:f0:
cf:a6:aa:26:97:64:77:73:27:cf:99:94:f6:02:07:
09:01:aa:6d:c1:f4:76:1c:f7:84:69:71:e1:c5:f9:
9a:c1:4b:07:a6:d9:de:54:5c:29:67:b1:ec:ae:e1:
c9:5d:7c:b5:e1:a0:9d:f5:d3:9c:38:2a:c3:41:ab:
6b:b2:35:a4:91:7f:c2:9e:16:5c:21:65:cb:11:68:
13:20:ab:b7:3f:0a:7f:16:fc:df:f0:0c:16:bd:d1:
5f:f7:83:6b:90:f4:82:68:25:a3:9f:1b:6e:4b:79:
97:92:35:eb:9a:fd:35:04:03:40:9e:3e:33:0e:c1:
89:6c:3c:89:97:b1:3f:7c:d5:a1:0c:d8:0d:ff:bb:
05:e3:e9:49:2c:88:e2:bb:65:25:48:c1:25:4e:7c:
be:5c:df:24:43:53:d6:48:31:76:cb:0b:bc:c7:60:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:85:0E:AA:5E:11:10:3C:68:B4:C8:44:5C:C5:AC:47:08:0C:C3:EE
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS205232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:18f0::/44
Signature Algorithm: sha256WithRSAEncryption
b3:16:44:72:8e:c0:ac:20:99:bb:ae:46:83:c2:ea:30:f6:52:
27:60:c3:d2:d8:da:7e:0c:3a:09:bd:01:23:29:5b:fb:c6:ab:
0d:b6:86:e3:46:98:d6:65:fa:e7:b5:9b:e8:74:9d:87:c2:52:
0e:5b:c9:d0:95:01:89:f0:06:20:4f:96:91:3f:82:c4:98:38:
ec:ca:5f:92:d6:53:c6:0b:a1:92:62:8a:cc:8c:ee:8c:d0:61:
d2:2c:48:e6:c4:07:51:34:9a:99:28:4e:6a:92:44:30:63:08:
87:cf:56:01:8c:93:19:e1:9f:57:75:07:5f:7a:d6:77:72:c7:
67:3e:6c:5d:f2:76:67:e4:07:70:cc:ee:80:1b:db:6b:d0:d2:
1a:9a:80:45:5d:a9:5a:7b:72:3b:ee:7a:69:54:52:37:82:08:
7d:6b:11:01:72:07:54:6c:24:89:20:64:f7:bb:44:af:9e:07:
17:a3:e8:95:26:eb:9b:e3:9b:61:b2:57:7a:02:e9:5f:8d:1a:
48:03:97:3d:0b:1c:a5:ad:c0:45:bf:aa:f7:0c:7e:b8:56:65:
a5:c2:fb:d3:db:1a:05:e3:1d:f0:89:20:a2:b1:91:d4:3e:58:
91:f8:0b:0b:e2:f2:81:5b:c3:c3:b0:77:36:e8:b1:44:72:a6:
09:23:2c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:15 2026 by rpki-client