Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211495.roa
File: AS211495.roa (raw, json)
Hash identifier: qODsfkjHz29IS7fXY5pwPeLem0D9VIOHYVnz2DkqWwY=
Subject key identifier: 54:E4:E8:44:18:E7:BC:BC:27:79:F9:C6:6C:23:BB:A4:BA:82:EE:84
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 11F446AE26507FF9FA96617CBDE0A5C4068349EB
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211495.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 211495
IP address blocks: 2a06:a005:6b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:f4:46:ae:26:50:7f:f9:fa:96:61:7c:bd:e0:a5:c4:06:83:49:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=54E4E84418E7BCBC2779F9C66C23BBA4BA82EE84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:ad:ab:64:ad:43:ca:11:c1:b8:04:fb:dc:
28:b2:79:e1:7e:e1:c7:26:3c:bf:80:fb:f2:5c:45:
67:d7:0f:a3:6d:54:8a:57:bb:dd:23:93:96:66:1d:
91:ae:e6:50:d1:0d:16:91:ab:52:5c:f2:69:4a:1d:
71:31:4f:b0:66:6e:ba:1c:4b:b0:91:bd:54:07:93:
ac:b5:d4:18:ee:0a:36:3e:59:da:83:f5:87:ee:c1:
c3:77:8e:b6:e9:b7:25:7c:28:39:31:2b:40:fd:74:
a4:e8:85:95:80:26:2d:b6:20:41:34:10:7a:aa:f6:
86:b7:98:4c:2f:12:7e:cd:6a:47:6a:3c:bb:4c:b1:
8e:2e:85:57:35:e1:33:fa:8d:07:62:b5:3b:e9:33:
86:72:fe:3a:7f:42:07:6f:ce:89:b0:53:9d:a8:78:
41:28:00:e7:0e:76:fb:01:62:be:43:14:e8:18:12:
24:b7:3d:59:4b:ca:32:0d:db:e9:e4:e7:de:62:38:
87:0a:5d:e5:72:e3:39:1d:f0:50:c3:5a:b8:e4:b4:
62:54:b9:36:9c:08:b9:70:57:a3:dd:3b:42:df:f3:
03:d2:02:9b:0b:d1:f3:45:6b:fa:56:5c:dd:e3:39:
1e:6a:33:71:6c:e2:a4:fe:03:2a:36:c8:8d:2d:1c:
32:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E4:E8:44:18:E7:BC:BC:27:79:F9:C6:6C:23:BB:A4:BA:82:EE:84
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS211495.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:6b0::/44
Signature Algorithm: sha256WithRSAEncryption
7a:b9:db:1c:19:71:38:c6:5e:e3:91:b8:25:dd:02:7d:ce:9b:
76:f6:ff:ec:63:a0:32:88:2b:5a:9b:b4:57:2e:80:58:8d:f5:
02:4d:d7:38:e3:63:34:5c:5b:29:33:e1:8b:0e:de:93:c4:31:
ea:3c:80:82:38:81:92:b8:c9:dc:8e:58:5c:7c:62:7c:26:5f:
6d:99:ed:e4:eb:0e:ff:96:b3:94:7f:b8:0a:7e:6c:d9:70:34:
fd:3f:30:6f:5d:32:ed:47:8c:a5:14:42:90:68:5b:c1:1e:9e:
ac:4a:c4:88:a3:3f:4e:f0:bd:96:0b:29:d8:da:c9:1d:df:e9:
4e:d2:d3:05:f0:55:9d:ea:67:9e:cd:a8:3e:8c:cd:39:f3:18:
4d:99:e9:80:bb:87:73:57:a6:1c:d5:48:49:dc:ee:fc:fd:45:
69:a5:39:01:64:0b:c7:ba:a0:3a:a4:6d:eb:bb:80:58:be:17:
a0:ac:aa:59:ec:3a:cf:21:f4:d5:c1:9c:0b:0b:2d:b0:9b:ad:
c1:3a:0e:8c:c2:19:87:15:9d:b6:a5:f1:d4:7c:d9:0f:10:d0:
a4:b0:0e:0f:c3:02:59:b7:88:24:5b:d9:62:3d:82:a0:ea:0f:
c1:9e:f5:8d:1d:23:88:f6:ad:6b:df:11:34:04:df:3d:5c:7f:
7c:40:6c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:01 2026 by rpki-client