Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
File: AS207513.roa (raw, json)
Hash identifier: 9+ep2Ek5IF0HXrFAO7khncu1e/5NunMwgElrPI9XlJI=
Subject key identifier: 29:F7:71:92:76:C8:51:ED:08:42:9F:DE:F0:6D:35:D2:BF:35:2E:03
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 07C5E06CC632C6D77A9EBB175912F253680282EF
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
Signing time: Sun 02 Nov 2025 22:25:38 +0000
ROA not before: Sun 02 Nov 2025 22:20:38 +0000
ROA not after: Sun 01 Nov 2026 22:25:38 +0000
asID: 207513
IP address blocks: 81.31.209.0/24 maxlen: 24
103.137.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 23:53:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:c5:e0:6c:c6:32:c6:d7:7a:9e:bb:17:59:12:f2:53:68:02:82:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Nov 2 22:20:38 2025 GMT
Not After : Nov 1 22:25:38 2026 GMT
Subject: CN=29F7719276C851ED08429FDEF06D35D2BF352E03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:ce:8d:98:be:6c:0c:12:2e:3e:99:42:ee:
8b:a5:ec:7f:b6:c6:17:ee:c1:cb:a4:6a:86:24:5d:
30:3f:88:82:c1:e9:88:e8:02:f0:c0:03:63:e1:0f:
83:53:2d:2e:ca:75:df:aa:89:b1:13:10:89:06:24:
4a:e2:f6:a1:d8:66:ef:a4:18:27:8a:25:33:62:9b:
0b:96:08:97:2c:0f:1e:79:74:5e:4c:69:3a:fe:fd:
b9:fb:b3:ff:01:68:1a:c1:db:f7:27:98:2b:a6:0d:
24:1a:24:0d:c6:1d:3b:58:df:d7:c7:cc:91:0f:34:
7c:a4:14:ad:f4:01:73:b0:70:c4:b5:61:9a:95:23:
7f:eb:ff:48:97:cc:3d:76:14:be:30:f4:84:e4:bb:
e9:1d:73:96:49:93:c5:1d:8d:12:4f:d0:19:d3:fc:
ae:75:5b:59:97:04:92:53:f8:8e:72:22:df:7b:02:
d5:77:be:08:70:18:6c:50:43:2b:85:be:36:eb:1f:
48:ed:70:c1:2b:02:89:1b:7f:0d:57:4b:71:07:32:
c5:a1:07:e3:89:97:36:83:63:e4:11:f5:bc:cd:69:
b9:ea:55:69:e3:e9:1a:f5:43:65:da:3f:d9:60:77:
75:13:c9:ff:7b:f0:88:fd:f0:9f:8d:39:ee:2b:9e:
72:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F7:71:92:76:C8:51:ED:08:42:9F:DE:F0:6D:35:D2:BF:35:2E:03
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.209.0/24
103.137.193.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c9:6d:d9:15:a9:a2:7c:06:10:ec:3b:50:4d:b5:27:2c:b9:
91:fb:63:65:de:f3:91:2d:0a:fa:6e:16:99:61:5d:bb:eb:04:
2b:a0:4d:25:6b:a3:10:4b:10:41:2c:c5:76:49:f3:de:32:45:
67:fb:61:00:6f:f6:72:89:23:2e:dd:66:3a:c4:77:92:9f:f1:
05:a7:88:6b:47:97:ef:46:76:ed:3f:9f:a9:a4:b9:15:57:e5:
b8:1a:87:b7:c8:44:2a:79:03:5b:a8:82:99:4b:94:4d:2d:45:
2e:91:9f:9a:00:49:a9:82:3c:85:ee:8a:b4:75:e9:e7:04:5f:
b8:f9:77:08:4b:73:e4:2d:09:e2:48:01:78:2d:f4:fd:a9:6d:
d0:ec:9a:a5:1e:5b:f6:c2:5a:5b:72:5d:49:58:8e:a8:2a:e6:
ca:1d:3e:2e:67:ff:0e:b7:da:04:0b:b0:71:9a:75:97:aa:47:
db:50:fb:71:af:0f:48:82:53:bc:f6:98:49:30:b6:80:76:56:
a8:04:4e:ff:5f:22:0c:2a:0a:dd:79:e3:62:37:0f:8a:54:02:
d9:e1:e6:d9:da:64:4a:e7:3f:6a:f7:a3:6e:c8:c9:9d:ca:98:
b1:b7:29:d8:ad:0f:55:28:19:98:18:c4:f4:e1:6c:16:d9:e2:
33:32:af:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:42:15 2025 by rpki-client