Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211358.roa
File: AS211358.roa (raw, json)
Hash identifier: 1j9yHPUY7weHkktgtIbxc1AbdcSvBomboZr+JFSDRHM=
Subject key identifier: A5:81:8B:0E:7A:3F:FF:B6:39:BD:C4:E3:4B:38:05:50:D8:D5:A5:F7
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 23BA63F1576D2C06BFA783775598EC4C85D0370D
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211358.roa
Signing time: Thu 04 Jun 2026 15:58:47 +0000
ROA not before: Thu 04 Jun 2026 15:53:47 +0000
ROA not after: Thu 03 Jun 2027 15:58:47 +0000
asID: 211358
IP address blocks: 2a06:a005:750::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ba:63:f1:57:6d:2c:06:bf:a7:83:77:55:98:ec:4c:85:d0:37:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:47 2026 GMT
Not After : Jun 3 15:58:47 2027 GMT
Subject: CN=A5818B0E7A3FFFB639BDC4E34B380550D8D5A5F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:e7:46:74:1b:78:b8:5b:9c:d2:3f:12:c5:
e0:65:59:9d:e0:83:85:b3:dd:d2:cb:28:8c:d8:9d:
a7:c3:6a:20:ad:0d:5e:ce:b4:7a:3b:d9:5d:a7:5d:
fe:d9:56:7d:7c:27:99:7a:4f:b7:e6:22:47:96:44:
60:5b:76:16:eb:22:07:bc:b4:81:80:cd:73:ad:54:
71:87:7a:95:a6:63:bf:9d:d0:89:3f:bd:e3:c6:8c:
c8:99:34:66:1f:31:0b:8c:4c:24:94:87:1d:07:e4:
d5:79:f3:9e:f9:92:da:7a:68:37:fe:f4:c7:97:1b:
03:99:be:69:8c:42:23:84:30:dc:ff:60:2a:17:74:
e0:1a:47:69:d5:5f:bb:7d:d9:44:ef:a4:8d:1f:a7:
7e:a7:2b:5a:cb:a7:c5:61:01:b5:10:ff:89:e0:00:
7f:2f:8d:cb:62:b1:65:64:34:bd:07:65:27:54:d1:
a5:a2:6c:4d:88:8d:74:72:37:de:b1:3c:a0:11:03:
a4:eb:45:fe:0e:2a:ad:ad:f1:d6:6c:10:44:e2:e5:
f9:42:95:c0:9b:8a:8d:36:1d:44:b0:bf:40:a7:3c:
29:3d:2b:95:f5:22:25:44:20:4b:c7:3e:f8:b7:63:
40:63:cb:ef:b8:cb:8f:f1:a4:fd:3a:59:28:d6:e9:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:81:8B:0E:7A:3F:FF:B6:39:BD:C4:E3:4B:38:05:50:D8:D5:A5:F7
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211358.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:750::/44
Signature Algorithm: sha256WithRSAEncryption
2c:2f:35:17:d8:60:59:ce:36:b2:eb:fd:14:be:c6:05:0c:97:
08:88:dc:6f:ee:27:08:f6:e2:7d:b0:a3:3c:4e:7c:71:a0:df:
99:7c:f6:56:9e:79:8c:0b:10:8f:87:c0:a6:a9:9b:45:92:2c:
03:29:d5:f8:2f:46:a3:86:b2:4f:b1:2e:6b:e4:bd:8d:45:ad:
21:81:6d:b1:01:98:1d:14:cc:4a:07:c9:96:7a:35:94:df:3d:
24:e5:03:bf:80:4f:83:19:56:b2:63:f5:6f:2e:f4:2e:cd:11:
47:2a:dd:b3:ac:ea:88:9a:7c:5f:98:ba:b1:21:f3:c6:a5:01:
1e:5f:3c:bd:94:47:c6:66:f5:a4:95:26:c8:35:99:f2:63:83:
34:b0:17:83:0c:96:db:6a:d9:a1:66:89:bf:55:ef:8c:48:5f:
73:2a:71:49:01:b1:40:cb:83:41:a3:5e:e7:04:43:3d:ca:1a:
12:d9:5f:75:b0:e4:e2:79:4b:86:9d:09:7d:c8:ce:64:57:8a:
55:3a:94:01:3a:94:8e:a8:0c:20:d8:2b:b0:cd:66:80:3c:93:
f7:66:8f:50:7c:6f:6d:04:52:35:08:cc:2f:6e:08:3f:09:93:
21:ff:b7:a4:1d:0a:6c:db:44:f0:45:7d:15:2b:61:7e:1e:f1:
bb:dc:54:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:42:23 2026 by rpki-client