Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS208768.roa
File: AS208768.roa (raw, json)
Hash identifier: 2gCcWo1lqC/V456t3N1Uvhb0Z2f4YGXO1uQle52EVto=
Subject key identifier: 6B:49:04:0F:7B:95:45:B4:1B:F2:92:E3:12:E5:9B:0A:D1:08:AD:29
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 33D99317E1C171434B7A6FCB3C0F5A8731A012A6
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS208768.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 208768
IP address blocks: 2a06:a005:2ca0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:d9:93:17:e1:c1:71:43:4b:7a:6f:cb:3c:0f:5a:87:31:a0:12:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=6B49040F7B9545B41BF292E312E59B0AD108AD29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:5a:72:33:6b:67:7b:c0:22:69:70:8b:a6:
77:05:70:c5:36:76:48:b1:ef:ba:dd:f8:7b:f2:da:
10:74:57:be:62:8e:61:7a:ca:bc:38:8a:25:44:10:
30:6f:3a:5c:b0:ab:60:77:11:10:dc:59:d0:cd:f7:
5f:5b:e9:ea:8f:c4:c6:88:63:bc:2f:cf:56:5b:44:
82:bd:4c:5d:ce:2a:e5:ab:68:47:e1:ef:64:4a:84:
e6:6a:2b:17:5e:55:8c:b7:b9:37:07:5b:2f:c9:6f:
31:45:61:a4:3e:0a:a9:83:f5:b5:62:84:6b:1c:03:
5f:ec:b3:8b:40:e4:8b:61:0f:51:4b:f3:9c:ff:ee:
b3:47:55:91:35:d6:8a:8c:8c:61:39:72:12:05:5e:
73:73:89:b3:59:29:fc:4e:3a:29:db:22:41:4d:19:
39:40:44:ef:65:cd:ba:96:2d:df:b5:44:29:49:04:
d8:53:f8:97:c8:15:b1:39:b5:ec:c8:36:d3:57:6b:
c0:d1:9a:a2:ea:4d:1c:24:7e:da:e7:06:2c:4b:57:
65:78:05:87:bb:6d:1b:c5:a5:24:b9:48:fc:f0:69:
0d:d8:20:9a:db:48:dd:e0:8b:dd:c2:2d:13:8b:5c:
ef:05:b5:07:80:87:7c:22:92:c5:a1:25:b2:8e:d0:
b6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:49:04:0F:7B:95:45:B4:1B:F2:92:E3:12:E5:9B:0A:D1:08:AD:29
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS208768.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2ca0::/44
Signature Algorithm: sha256WithRSAEncryption
47:a5:ae:c9:92:7f:04:2f:ae:ed:18:f5:73:7f:7a:c1:7b:83:
4d:09:97:03:b4:8b:df:6c:25:5f:35:1a:32:ab:72:11:d4:9e:
f9:74:76:3a:08:bd:02:43:5f:56:d9:2f:ad:b8:66:5b:5d:4e:
dd:01:bf:ca:64:6f:97:6f:70:67:80:b8:06:ac:94:f5:31:94:
ba:08:18:48:25:4e:17:a0:e9:a2:e2:65:40:58:27:31:ab:90:
9b:3a:9b:e5:22:31:d8:84:39:0f:cb:4c:7c:54:46:98:a2:a5:
1a:46:18:d2:14:1c:98:55:8e:eb:27:0c:84:b2:96:00:cd:96:
c0:68:02:07:92:09:5f:6d:ef:63:e8:f8:51:d3:9e:c9:37:1d:
d9:0d:bd:02:21:e5:5b:48:b1:e8:3b:db:6c:3b:35:da:bd:b3:
78:e0:8c:4c:01:6b:6e:3b:c7:78:2b:c5:96:35:29:34:61:a1:
b6:cf:11:bc:56:75:e6:e6:8e:51:45:ef:cc:d7:8c:0b:53:cb:
33:9b:3f:d4:5b:bc:4d:1b:ee:9e:1e:a8:5d:73:28:33:a9:2a:
01:80:bb:11:3e:40:51:e7:6e:36:16:79:55:0f:0c:f3:70:ff:
72:9b:7a:35:e8:12:57:89:5a:a4:5d:1a:a8:6f:da:9a:0c:3a:
78:c5:40:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:10:22 2026 by rpki-client