Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211233.roa
File: AS211233.roa (raw, json)
Hash identifier: qW9oCkYC+TyuLrw5zIOvwEMpi4GlRrqnRBBZg7XGzWs=
Subject key identifier: CD:3E:94:BD:7F:4D:78:BB:38:30:01:DB:78:77:E2:46:E8:4D:24:76
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2A3869ED45BE6AA617614235C040136D2D344E75
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211233.roa
Signing time: Thu 04 Jun 2026 15:58:48 +0000
ROA not before: Thu 04 Jun 2026 15:53:48 +0000
ROA not after: Thu 03 Jun 2027 15:58:48 +0000
asID: 211233
IP address blocks: 2a06:a005:19b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:38:69:ed:45:be:6a:a6:17:61:42:35:c0:40:13:6d:2d:34:4e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:48 2026 GMT
Not After : Jun 3 15:58:48 2027 GMT
Subject: CN=CD3E94BD7F4D78BB383001DB7877E246E84D2476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2d:0f:37:78:74:0b:3f:8e:74:30:31:bd:31:
dd:6c:9b:a0:82:a2:7e:a9:2f:f5:9f:dd:39:31:44:
c1:ef:ba:a7:ec:7c:49:ca:3d:eb:ed:d2:21:c5:fc:
1d:62:b2:68:42:db:1a:28:12:f1:20:47:9a:21:7d:
cd:2a:8b:53:ac:59:87:5a:99:90:e9:ed:45:1d:0b:
32:30:ae:f6:ce:3e:82:ff:5b:09:a3:5d:22:a9:d8:
78:33:49:c5:0b:e7:a7:a9:55:a2:46:8d:7c:f1:80:
e0:a6:cb:73:9e:07:24:ad:0c:3b:35:19:d5:43:64:
04:07:d0:74:73:9d:75:15:57:f9:fe:d0:71:d7:54:
b7:bd:55:f4:e6:30:b4:bd:6d:bb:b8:fb:3c:f3:bd:
36:ae:44:1f:f6:27:6e:86:62:4c:aa:8c:95:e0:74:
9b:df:ca:d4:85:ba:e6:25:bb:50:8e:f7:5e:35:e1:
5b:fc:11:43:d1:12:3a:85:6e:e5:b0:5e:80:07:c3:
1e:a5:79:61:7b:24:e4:e3:f8:2d:2d:4e:45:aa:f9:
22:88:64:a5:4c:13:61:f8:e4:d7:01:86:0d:0b:46:
05:a9:87:a8:09:a9:95:5b:58:2b:90:b5:91:93:d9:
56:67:25:da:f8:a3:0d:bf:8b:19:41:b9:5f:91:29:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3E:94:BD:7F:4D:78:BB:38:30:01:DB:78:77:E2:46:E8:4D:24:76
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:19b0::/44
Signature Algorithm: sha256WithRSAEncryption
6d:65:2c:af:16:e8:51:05:81:3e:14:e1:96:23:6f:a5:4c:94:
b6:a7:f1:d1:43:85:58:44:a4:e7:2d:54:01:42:e8:ba:60:da:
a7:f3:86:be:4f:3e:ca:77:09:f2:76:0d:93:7c:d7:38:3f:e1:
f5:e4:c1:4f:dd:fb:90:4c:fc:06:17:2d:b9:fe:05:a9:22:ae:
f3:22:2f:2a:17:95:cf:74:ae:da:40:62:b9:31:70:c4:17:44:
85:e8:a2:93:c6:fe:b4:74:6d:f4:7e:09:fa:cb:06:67:16:81:
68:63:8e:f4:c7:10:b1:8a:b8:c1:e7:21:f8:9a:0e:5e:12:50:
00:17:37:55:36:b5:f4:f8:f2:cf:6e:51:13:08:ab:c3:29:ec:
5c:52:b0:1e:6d:e9:a4:cf:5a:fd:b1:ee:ad:74:b4:89:fa:a3:
f2:d1:f0:d4:ef:21:9a:a2:7f:c9:90:3d:88:97:70:e7:27:0c:
52:4b:24:ab:60:73:d5:f7:2c:5a:b2:4a:27:71:90:96:ed:e3:
6d:5f:31:bb:1d:cc:9c:a9:5c:87:f0:79:73:df:9b:b5:1c:8f:
13:4e:5c:38:44:51:13:4f:93:a3:27:04:35:8b:85:67:75:9b:
78:6f:ce:d9:72:d9:fb:ce:27:b9:a5:a6:49:78:35:b6:d6:71:
a2:c0:ed:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:25:43 2026 by rpki-client