Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207941.roa
File: AS207941.roa (raw, json)
Hash identifier: X05c172ejTdWKWr7QD4GtRQB7w/f2rsk9YHGJtpvoKo=
Subject key identifier: DE:97:40:86:37:7F:82:00:B2:C3:41:04:6F:5B:11:94:61:88:F6:71
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 146D77DC7A2C401ADE75703D8425D2CB16AE3B71
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207941.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 207941
IP address blocks: 2a06:a005:b0::/44 maxlen: 48
2a06:a005:c0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:6d:77:dc:7a:2c:40:1a:de:75:70:3d:84:25:d2:cb:16:ae:3b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=DE974086377F8200B2C341046F5B11946188F671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:49:fb:88:c2:14:65:1c:24:ef:36:72:2d:bd:
22:78:91:6f:4a:9c:43:8f:9e:b9:a8:8c:90:85:2a:
b5:e9:40:f5:d2:80:ef:e1:36:a1:8c:a1:68:c5:cc:
cf:12:bc:49:0e:98:64:f3:cb:b9:16:a9:55:57:ab:
99:59:39:cc:05:3a:78:5f:64:22:77:45:02:d8:82:
f0:31:c0:05:7b:b7:be:74:05:87:9e:a3:00:51:7a:
80:ee:41:9a:a3:27:8f:04:38:74:5a:0f:a9:5f:a6:
a2:21:d0:cf:0e:26:71:7d:14:d1:07:aa:77:0e:7f:
d1:26:91:8c:62:a7:98:5b:8d:84:63:67:44:4c:39:
bd:7d:5d:0a:76:43:e4:40:13:e5:73:0f:e4:5a:35:
d1:1c:83:d2:27:26:cc:18:44:67:c6:cd:df:5c:21:
85:03:0e:25:87:a2:3c:bd:09:8a:9a:e8:88:d3:54:
23:9e:e8:07:03:c9:c0:b7:ea:f1:c8:ff:db:43:4c:
34:46:ee:ac:3b:c6:a0:2e:03:f2:84:3a:eb:a2:89:
b2:bc:1f:b6:26:69:be:5e:40:42:9d:9b:d4:cd:42:
ab:63:75:27:5e:c7:fe:a2:78:0b:59:30:27:da:c4:
6c:43:4d:f8:2f:b1:b8:51:b1:43:a1:ac:59:34:6a:
04:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:97:40:86:37:7F:82:00:B2:C3:41:04:6F:5B:11:94:61:88:F6:71
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207941.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b0::-2a06:a005:cf:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6a:4f:f8:17:a5:a2:ef:20:d7:77:11:e8:db:a1:73:74:73:e5:
a5:ae:1a:9a:7c:87:3c:03:65:7b:bd:aa:1d:a6:0b:35:78:83:
71:d4:d4:2f:50:0a:10:21:60:85:e4:a2:7c:cb:5a:d2:27:0e:
d1:50:c7:7e:e0:b3:41:25:3e:18:8c:cf:ce:8b:49:cc:82:19:
9a:4e:91:5f:fa:f6:a6:2a:ad:4b:5a:cf:28:c7:20:e7:aa:82:
d4:44:c6:0d:3f:33:16:09:7f:87:27:85:94:97:d5:ea:22:c6:
48:5a:0c:ba:dc:56:17:3e:18:28:2b:8f:08:3b:fa:f4:75:f6:
ff:7f:4a:64:3d:29:58:99:67:e2:9a:e5:62:50:49:7c:44:1c:
f4:99:eb:9b:96:ad:90:db:c3:80:7b:2b:ef:aa:40:42:0f:f5:
bf:f9:ae:ef:a5:64:8b:68:7a:eb:cf:b1:55:74:cf:a1:d7:d3:
48:c6:c2:74:36:89:5c:c2:4c:33:64:b8:9d:af:db:85:db:59:
42:58:24:59:c0:c4:0a:bc:05:52:c0:80:d2:46:49:c8:88:e3:
70:51:58:b0:2a:23:ac:bc:ff:78:b8:1e:fa:38:a6:16:0f:4c:
de:fd:45:07:39:8d:43:b9:b0:8f:9c:cf:63:d9:f2:45:d7:44:
ea:2d:79:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:05 2026 by rpki-client