Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212359.roa
File: AS212359.roa (raw, json)
Hash identifier: 4xpipkJIJpaf2ypKWqMwEzi62WHinwsZ4zdOwZkKZm4=
Subject key identifier: 7F:B1:07:72:16:7A:7F:34:9B:E4:9F:3D:D2:B5:9B:98:2C:FE:C9:B4
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 1B03AC4C7E57ECC4260F6A9978D129A72C5D1F46
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212359.roa
Signing time: Thu 04 Jun 2026 15:58:48 +0000
ROA not before: Thu 04 Jun 2026 15:53:48 +0000
ROA not after: Thu 03 Jun 2027 15:58:48 +0000
asID: 212359
IP address blocks: 2a06:a005:1c0::/44 maxlen: 48
2a06:a005:1d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:03:ac:4c:7e:57:ec:c4:26:0f:6a:99:78:d1:29:a7:2c:5d:1f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:48 2026 GMT
Not After : Jun 3 15:58:48 2027 GMT
Subject: CN=7FB10772167A7F349BE49F3DD2B59B982CFEC9B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:66:ca:f9:35:fd:df:c4:bd:c3:11:d9:59:
a5:30:76:de:30:b5:b1:46:b6:6b:1a:e3:0e:b8:61:
18:70:1b:03:95:cb:9b:10:63:f8:b6:17:f3:f0:7c:
4b:21:cc:09:f5:1f:cf:40:ca:77:eb:92:dd:be:5f:
30:30:b0:ca:d3:b5:95:32:81:32:0c:19:e9:65:1a:
40:8e:f2:a2:d2:5b:f1:62:aa:df:c9:31:7a:8c:23:
20:ec:64:4a:38:03:50:71:a3:25:d9:c8:6e:f2:88:
5b:57:67:cd:f7:cb:33:5a:87:b6:a2:f3:78:f6:d2:
a3:b0:6a:f0:bc:b5:14:99:dc:83:4a:4d:f9:76:4d:
2c:dc:b6:9e:d7:7a:2d:a6:d3:a2:1b:4f:58:3a:f6:
81:3e:14:4d:6f:ac:63:6e:14:6b:70:e5:ba:b1:d5:
13:1d:f8:40:dd:f0:47:ea:40:84:3a:6c:a1:77:b2:
3a:b7:19:cd:d4:a6:56:3b:ed:fa:de:2c:94:24:27:
20:80:e3:97:ea:af:fe:3c:e5:59:83:2b:9c:df:86:
91:28:7d:7b:fd:0b:a7:99:1f:85:24:73:f6:a1:12:
02:7c:b3:89:c5:9b:6a:42:9b:c8:55:e6:db:1e:17:
c1:aa:66:01:c9:e6:3f:b9:21:5a:c3:41:7f:27:12:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B1:07:72:16:7A:7F:34:9B:E4:9F:3D:D2:B5:9B:98:2C:FE:C9:B4
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS212359.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c0::/43
Signature Algorithm: sha256WithRSAEncryption
b2:ae:a8:14:a0:30:09:bd:0e:c1:46:b3:ed:5b:63:2f:42:d8:
36:09:64:dd:e6:d4:8e:6a:5e:f3:33:75:c5:66:37:38:63:ae:
89:9e:f6:85:f2:27:1d:e4:a1:56:18:e2:16:8d:fb:f3:e4:d5:
64:44:45:d9:92:97:27:98:8b:94:84:22:93:c9:b8:90:b9:35:
3f:21:b1:f0:c3:2e:42:f6:0d:fa:47:af:2c:06:59:ca:a1:cb:
61:16:d8:69:a9:64:1a:9d:50:f0:cf:6f:79:0b:4b:59:75:23:
bc:8d:93:cd:0f:a0:f7:82:61:00:ec:53:a7:1b:9b:74:64:36:
be:fa:1a:ac:d2:d8:98:d4:83:aa:6e:68:8f:a0:a9:2a:9c:1e:
2e:4e:b2:52:df:87:5f:e3:cd:e3:c9:f9:32:3e:d9:c7:85:51:
a1:6b:73:73:e8:a0:f9:ce:62:5f:f6:3c:65:1b:de:0f:3b:ae:
b9:84:d5:12:5c:49:32:a7:64:c3:c7:c0:e2:00:47:50:8d:2e:
ec:24:be:dd:31:bc:48:d3:c3:61:3b:d1:95:e8:89:0c:4b:7e:
f9:bc:cf:66:70:aa:ff:f3:d9:a2:20:00:31:bf:cb:d3:52:fd:
a8:df:99:24:20:94:87:40:49:14:a2:45:f3:ec:e7:3d:f0:73:
58:0e:27:2a
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUGwOsTH5X7MQmD2qZeNEppyxdH0YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA2MDQxNTUzNDhaFw0yNzA2MDMxNTU4NDhaMDMxMTAvBgNV
BAMTKDdGQjEwNzcyMTY3QTdGMzQ5QkU0OUYzREQyQjU5Qjk4MkNGRUM5QjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30WbK+TX938S9wxHZWaUwdt4w
tbFGtmsa4w64YRhwGwOVy5sQY/i2F/PwfEshzAn1H89Aynfrkt2+XzAwsMrTtZUy
gTIMGellGkCO8qLSW/Fiqt/JMXqMIyDsZEo4A1BxoyXZyG7yiFtXZ833yzNah7ai
83j20qOwavC8tRSZ3INKTfl2TSzctp7Xei2m06IbT1g69oE+FE1vrGNuFGtw5bqx
1RMd+EDd8EfqQIQ6bKF3sjq3Gc3UplY77freLJQkJyCA45fqr/485VmDK5zfhpEo
fXv9C6eZH4Ukc/ahEgJ8s4nFm2pCm8hV5tseF8GqZgHJ5j+5IVrDQX8nEgGHAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUf7EHchZ6fzSb5J890rWbmCz+ybQwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjEyMzU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcFKgagBQHAMA0GCSqGSIb3DQEBCwUAA4IBAQCyrqgU
oDAJvQ7BRrPtW2MvQtg2CWTd5tSOal7zM3XFZjc4Y66JnvaF8icd5KFWGOIWjfvz
5NVkREXZkpcnmIuUhCKTybiQuTU/IbHwwy5C9g36R68sBlnKocthFthpqWQanVDw
z295C0tZdSO8jZPND6D3gmEA7FOnG5t0ZDa++hqs0tiY1IOqbmiPoKkqnB4uTrJS
34df483jyfkyPtnHhVGha3Nz6KD5zmJf9jxlG94PO665hNUSXEkyp2TDx8DiAEdQ
jS7sJL7dMbxI08NhO9GV6IkMS375vM9mcKr/89miIAAxv8vTUv2o35kkIJSHQEkU
okXz7Oc98HNYDicq
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:25:45 2026 by rpki-client