Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210152.roa
File: AS210152.roa (raw, json)
Hash identifier: w3K0Usga3WesvDs5ThTuJw1aJImsvAbMrngjE+h2e2o=
Subject key identifier: 20:D0:5B:85:81:8A:6E:6B:54:D7:8C:6F:99:E4:87:21:AF:18:C0:31
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 0BE9E867872F1A7EED23AEF8340D1044A320E288
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210152.roa
Signing time: Thu 04 Jun 2026 15:58:49 +0000
ROA not before: Thu 04 Jun 2026 15:53:49 +0000
ROA not after: Thu 03 Jun 2027 15:58:49 +0000
asID: 210152
IP address blocks: 185.147.35.0/24 maxlen: 24
2a06:a005:1290::/44 maxlen: 48
2a06:a005:17f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:e9:e8:67:87:2f:1a:7e:ed:23:ae:f8:34:0d:10:44:a3:20:e2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:49 2026 GMT
Not After : Jun 3 15:58:49 2027 GMT
Subject: CN=20D05B85818A6E6B54D78C6F99E48721AF18C031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b0:f4:ca:48:2c:27:d4:63:d0:e5:07:8f:f6:
e0:59:34:b4:88:a5:49:97:f9:a7:6a:c8:99:5f:cf:
12:1d:a0:2c:fb:0b:61:3f:6c:49:bd:d9:81:a2:24:
0f:3e:b2:0e:df:47:47:aa:27:7b:a8:30:b3:58:25:
3d:3c:90:7c:b9:13:b0:06:52:15:c8:18:bf:6f:ed:
7c:e1:c1:88:c6:72:5a:3d:1c:bd:55:ac:01:31:0d:
17:0f:de:02:e7:d3:74:ce:40:1f:e9:2d:04:0a:65:
80:1a:97:ec:e9:33:69:8f:65:60:af:8a:91:5d:fa:
57:a7:00:37:64:b7:36:52:76:3b:b0:df:02:07:57:
71:1b:69:7a:eb:bc:1f:3e:2a:f2:56:ea:1f:b0:6c:
94:de:60:61:55:20:0a:a8:70:64:2f:08:58:36:1d:
44:0e:69:eb:02:e7:f5:11:f5:5e:cf:48:0b:bd:af:
11:01:22:d2:44:7f:26:1c:24:13:c1:91:33:72:54:
58:37:a1:0a:4c:af:e2:61:70:da:ca:f1:7a:2f:87:
4f:db:53:3e:80:32:ad:31:03:b2:2e:e7:a5:69:e6:
40:ef:9f:11:f7:f6:dd:ec:69:f6:d9:c3:d9:b6:18:
ab:7d:90:cd:db:26:03:36:4f:51:b4:43:b6:3b:4d:
4e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D0:5B:85:81:8A:6E:6B:54:D7:8C:6F:99:E4:87:21:AF:18:C0:31
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS210152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.35.0/24
IPv6:
2a06:a005:1290::/44
2a06:a005:17f0::/44
Signature Algorithm: sha256WithRSAEncryption
85:f6:36:52:b3:37:e4:9c:c0:2b:6c:2f:9d:c0:6c:0a:7e:6b:
e0:f2:44:4f:54:da:d5:7b:1b:52:90:92:29:16:66:62:82:07:
35:e3:95:d7:29:55:ed:42:c6:15:84:92:b8:1e:0f:4a:b0:09:
59:b2:4c:cf:d6:8a:56:f1:e4:27:75:05:d0:4e:d0:ef:cb:aa:
cd:5f:7e:8f:57:8d:8e:5f:6f:41:8d:4d:20:b1:a3:9a:0c:54:
ae:d4:9a:aa:29:70:16:21:72:14:20:ce:35:47:0d:7f:3a:7a:
09:28:95:82:24:04:9c:24:0c:a0:26:bb:9d:3f:e3:e4:c7:fa:
06:c5:e1:90:1b:f8:87:c5:6d:18:96:c9:9c:1b:a4:a4:58:0c:
88:9b:52:91:9b:d9:82:c0:20:d0:6b:c5:aa:9f:83:52:cd:bf:
6f:dc:30:64:54:19:ab:6a:7c:32:4b:95:51:0b:a1:50:2c:09:
1a:54:ad:77:72:b4:e9:62:5c:c9:42:85:63:26:6e:06:6e:40:
87:a4:4d:8d:1e:d9:9f:b7:01:63:9a:e3:1c:30:78:71:99:91:
f8:13:8f:0e:71:6e:ec:43:4f:3b:15:2b:7b:a7:93:64:01:91:
41:ec:18:9c:bd:d4:dd:4a:ea:34:9f:8e:92:51:8c:b9:2e:f4:
c7:58:6c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:43:27 2026 by rpki-client