Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207567.roa
File: AS207567.roa (raw, json)
Hash identifier: 9EQIs8z9j+CpvegwJzIxPM2lUlX2nZ5OjVSLklzpsYk=
Subject key identifier: 0B:1B:44:99:80:C7:36:01:18:3F:8C:20:A4:CD:0C:67:01:BD:B1:87
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 4139743C5DB888D05F7979D13CC1119F750099F9
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207567.roa
Signing time: Sun 05 Apr 2026 20:44:50 +0000
ROA not before: Sun 05 Apr 2026 20:39:50 +0000
ROA not after: Sun 04 Apr 2027 20:44:50 +0000
asID: 207567
IP address blocks: 85.155.230.0/24 maxlen: 24
103.214.69.0/24 maxlen: 24
153.76.122.0/24 maxlen: 24
2a0d:d904::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:39:74:3c:5d:b8:88:d0:5f:79:79:d1:3c:c1:11:9f:75:00:99:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 5 20:39:50 2026 GMT
Not After : Apr 4 20:44:50 2027 GMT
Subject: CN=0B1B449980C73601183F8C20A4CD0C6701BDB187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:89:c6:c1:3a:e7:cf:59:07:59:48:e1:87:dc:
c2:05:41:94:54:a4:d4:c0:54:5b:ad:7c:12:e6:b0:
cd:df:51:8b:2b:1e:a4:c6:f5:63:95:c1:33:bc:cb:
7e:c5:bb:16:cd:08:b6:16:c7:a2:fd:cf:08:f7:7a:
5c:8f:e0:58:7b:04:d6:6a:b9:7d:3e:10:74:81:bc:
ed:b6:fd:7d:07:75:f0:8a:03:fd:c8:10:1c:d4:ba:
44:3e:15:dd:eb:95:6b:91:48:cd:ca:37:3a:f5:06:
bc:b7:be:38:ca:95:6b:64:7e:96:96:b3:22:26:aa:
88:0d:fe:4d:a1:86:0e:48:06:92:cf:bf:bb:25:be:
37:61:f2:4d:8c:59:54:9a:2e:1f:11:87:e5:a6:83:
07:ae:09:a5:41:e3:a9:e9:2b:62:06:df:89:61:2f:
23:66:29:0b:20:41:bc:04:01:fb:68:89:7f:14:53:
d8:22:de:af:8f:a7:cb:83:4a:94:1b:05:e5:eb:40:
77:78:a0:cc:b5:e4:07:99:6b:23:15:92:cb:36:f8:
78:1b:3a:55:fe:27:26:d0:72:67:a7:45:95:8d:54:
ec:c1:31:ee:2b:b2:65:ac:74:62:e7:09:46:d5:3c:
0d:f2:74:e7:c6:ab:84:26:e6:80:05:77:d2:b3:15:
80:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1B:44:99:80:C7:36:01:18:3F:8C:20:A4:CD:0C:67:01:BD:B1:87
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207567.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.155.230.0/24
103.214.69.0/24
153.76.122.0/24
IPv6:
2a0d:d904::/32
Signature Algorithm: sha256WithRSAEncryption
68:c2:0f:38:6a:58:52:b8:d1:3c:29:71:fe:36:a1:6a:77:44:
91:d4:5a:db:0a:57:b0:0a:7e:40:60:46:d7:4e:b0:b2:b0:43:
58:28:54:25:67:14:b4:2b:28:16:cd:82:3f:fc:70:a1:80:a4:
92:be:e5:44:a2:bb:cd:2a:68:8f:3d:d6:2e:db:eb:06:c4:2d:
bb:85:01:6a:c6:d3:cc:64:5c:78:e8:71:9c:9b:da:50:c9:6f:
f7:ef:21:92:12:ad:c5:3c:36:72:1e:cb:c7:42:82:b2:f5:04:
f9:e4:ce:24:f8:83:0c:e1:3d:a5:01:fe:b3:da:1b:f2:3b:fd:
a0:ff:94:c9:b5:a5:01:f9:1a:33:84:06:7e:5b:26:14:c5:7a:
7e:48:43:34:8c:e0:6b:fb:b7:1c:07:0e:73:bc:a9:a6:7e:43:
59:87:18:a7:90:0d:7b:d4:a6:98:37:2b:3c:f7:18:9e:34:de:
cf:3c:fe:cd:d1:4e:2e:71:ce:4e:78:8e:88:82:bc:ae:07:b0:
22:16:19:4d:92:89:23:ff:09:98:38:bd:10:03:f5:1b:69:50:
ae:eb:3a:be:eb:c8:80:59:b9:bd:87:0d:e6:5e:3c:d6:83:d0:
03:96:18:72:68:ad:47:ea:50:13:2c:c3:a9:e1:b7:60:e9:46:
5d:ec:6d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:19:22 2026 by rpki-client