Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211431.roa
File: AS211431.roa (raw, json)
Hash identifier: 22O0axcZHp+OcFgfl3IzMCX0c3QjMNr3GU11NzDbfvU=
Subject key identifier: A3:81:87:D3:A2:15:B6:35:98:45:27:09:7D:EB:2F:8F:92:5D:F4:32
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 43FDF25645C79E0F3E8CF2B0EA324E02F2588F8A
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211431.roa
Signing time: Thu 04 Jun 2026 15:58:52 +0000
ROA not before: Thu 04 Jun 2026 15:53:52 +0000
ROA not after: Thu 03 Jun 2027 15:58:52 +0000
asID: 211431
IP address blocks: 81.31.212.0/24 maxlen: 24
2a06:a005:1720::/44 maxlen: 48
2a06:a005:1790::/44 maxlen: 48
2a06:a005:17b0::/44 maxlen: 48
2a06:a005:17c0::/44 maxlen: 48
2a06:a005:17d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:fd:f2:56:45:c7:9e:0f:3e:8c:f2:b0:ea:32:4e:02:f2:58:8f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:52 2026 GMT
Not After : Jun 3 15:58:52 2027 GMT
Subject: CN=A38187D3A215B635984527097DEB2F8F925DF432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9b:b5:47:86:4e:02:17:97:a4:42:d8:82:b8:
fb:dd:19:c8:65:d2:fe:b8:e3:e4:ab:c3:5d:a8:23:
fb:3f:1a:ab:db:6b:a4:57:0e:68:23:7e:c1:17:1a:
16:f0:b0:8a:88:40:4f:51:0e:af:41:0e:37:71:92:
8c:b6:88:66:04:b6:ea:c2:b3:fe:a2:80:5b:6f:9e:
1e:1c:77:d2:c5:7e:45:79:ce:0f:ca:66:58:8a:d0:
72:e5:ef:3c:13:c3:ad:21:d9:ea:6d:ae:c4:c0:75:
b7:4c:a5:e0:bb:03:86:88:fa:48:bf:ad:c8:e6:2f:
21:fc:cd:01:15:1e:9a:5c:91:61:58:e2:94:39:a2:
1d:fb:a4:25:8a:12:99:f0:48:ad:63:b4:c2:e5:89:
d5:f6:e3:dd:5a:d9:fe:16:f0:b1:97:76:3b:a7:9b:
21:2a:03:4b:ec:e5:33:e3:42:db:44:30:f1:54:10:
7c:dd:bf:59:6e:7c:e0:37:c6:9c:06:fa:d1:47:28:
63:80:9a:51:ed:ad:1b:c7:bc:a4:2c:75:e6:48:35:
a8:93:73:27:d4:f8:e9:b8:46:be:87:63:7f:cf:73:
83:a4:ad:04:02:e7:61:e2:d4:f3:a3:06:f1:e5:45:
e3:83:a8:f6:d3:84:6d:61:5c:07:ae:df:d7:d2:55:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:81:87:D3:A2:15:B6:35:98:45:27:09:7D:EB:2F:8F:92:5D:F4:32
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.212.0/24
IPv6:
2a06:a005:1720::/44
2a06:a005:1790::/44
2a06:a005:17b0::-2a06:a005:17df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
28:ab:fb:a4:48:93:40:46:f5:ec:34:3c:2b:7f:6e:56:a1:4c:
81:12:b3:eb:f0:70:8a:4a:20:35:3b:11:a4:90:4c:06:d1:8b:
6f:8b:27:bd:09:3b:d8:c7:d7:e8:0b:f1:22:66:fa:0c:24:42:
2d:26:ae:df:f0:25:16:58:fd:1f:f4:20:d0:48:6b:09:51:ba:
50:7c:7d:b0:e4:d3:c3:79:88:84:24:62:60:11:8e:4b:41:74:
6a:31:68:e4:e3:cc:71:88:7a:d4:8b:e3:d2:03:2a:ae:d1:aa:
9d:cf:89:5f:61:0d:05:2c:3e:7c:49:66:bd:28:7a:a2:9f:82:
48:06:45:50:e5:d2:87:23:c4:1f:44:ff:0d:90:65:a0:6d:c2:
89:dd:c0:7c:e0:89:5d:b9:62:98:d1:41:05:d5:2c:8b:b1:1f:
6d:6c:5e:bf:4b:d7:c9:de:1e:e6:cd:a4:f1:14:55:57:ce:1a:
fd:da:af:a0:3d:c2:79:bd:e1:54:8d:37:58:d2:5a:91:da:46:
e5:2b:ac:a4:c7:16:d6:52:db:76:4b:68:2c:01:e9:09:94:a1:
27:d2:4b:9b:5b:84:54:79:b3:f4:79:53:3a:da:38:e0:c4:21:
cc:1b:37:57:75:de:ad:ae:25:2e:65:b5:49:00:69:87:d5:a0:
b0:02:74:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:10:20 2026 by rpki-client