Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
File: AS213535.roa (raw, json)
Hash identifier: wEc0lxqpDZdzup2egoxjJ6pshCQxjQDobSpdN7WPRB4=
Subject key identifier: EB:8D:12:84:3D:65:BD:74:FC:E3:71:E4:44:D2:24:6F:C6:1F:8C:42
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2AC752BFF1F98CC3516BFD166618601F15F4BFF5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
Signing time: Fri 12 Jun 2026 23:10:48 +0000
ROA not before: Fri 12 Jun 2026 23:05:48 +0000
ROA not after: Fri 11 Jun 2027 23:10:48 +0000
asID: 213535
IP address blocks: 111.235.151.0/24 maxlen: 24
143.246.136.0/24 maxlen: 24
143.246.138.0/24 maxlen: 24
143.246.139.0/24 maxlen: 24
153.76.112.0/24 maxlen: 24
167.104.216.0/24 maxlen: 24
167.104.219.0/24 maxlen: 24
206.245.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:c7:52:bf:f1:f9:8c:c3:51:6b:fd:16:66:18:60:1f:15:f4:bf:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 12 23:05:48 2026 GMT
Not After : Jun 11 23:10:48 2027 GMT
Subject: CN=EB8D12843D65BD74FCE371E444D2246FC61F8C42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:95:82:82:2e:e2:a8:e8:e5:41:70:a0:04:25:
ad:6c:bf:72:6b:76:1d:d2:79:c8:c6:2c:67:0b:92:
84:66:e9:27:e0:1b:cf:c2:0b:b6:71:bd:1f:43:3f:
c4:20:f8:4b:d3:2e:19:2e:65:f4:f0:61:ae:85:cb:
ac:c1:7e:aa:27:38:c3:05:11:6a:5b:1e:d3:7e:9f:
f6:68:a6:d9:d4:d1:38:c1:e5:42:2a:57:d5:e9:39:
bc:da:4b:c4:bb:cc:ef:e1:79:5b:31:af:f8:ee:82:
9f:9a:91:4c:17:e8:3d:81:a8:bd:7a:44:30:e8:3c:
f3:44:52:d2:35:00:c8:8f:8c:99:ee:80:da:9f:85:
13:9c:8f:e1:00:e4:5c:07:63:1a:45:1c:ec:75:a1:
17:89:f8:c9:6b:2c:ee:f4:12:7e:f7:40:fa:b3:2b:
b6:04:77:d9:d8:77:4f:00:bf:70:6b:cf:99:55:3c:
74:23:f3:f5:70:76:35:a5:de:8f:65:27:04:b6:78:
61:84:8a:c5:9f:06:26:eb:aa:64:d1:9e:56:85:a3:
b4:f1:e7:ae:fb:90:b7:9b:7d:04:60:fc:a2:66:32:
c9:23:e0:2b:b2:1f:48:86:ec:1d:78:dd:2a:09:de:
53:5d:06:0a:60:6c:c2:8a:63:97:4a:85:c9:f8:db:
47:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8D:12:84:3D:65:BD:74:FC:E3:71:E4:44:D2:24:6F:C6:1F:8C:42
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS213535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
111.235.151.0/24
143.246.136.0/24
143.246.138.0/23
153.76.112.0/24
167.104.216.0/24
167.104.219.0/24
206.245.166.0/24
Signature Algorithm: sha256WithRSAEncryption
38:08:de:36:ba:45:68:84:84:c8:95:aa:38:ea:2c:e4:b7:a6:
1c:be:9c:11:d7:6e:0e:5b:74:02:e0:df:eb:0e:e0:96:d7:23:
c8:bd:7a:4f:09:18:b2:3d:b1:8f:5c:f5:cd:ba:5a:7a:da:dc:
a0:4d:00:e8:9b:75:c3:b2:e0:32:db:72:1d:18:25:f4:77:0b:
38:83:40:5b:5c:be:42:81:71:1f:dc:76:49:6d:e4:19:2f:6d:
f3:28:35:7c:f8:95:af:e3:ed:f9:a5:51:e5:44:20:33:68:07:
de:3d:86:7d:e8:c7:da:27:f9:18:05:f9:d5:07:0e:44:51:c9:
64:d6:0a:9f:5b:4d:cd:51:a9:74:e2:8b:19:d9:f6:23:07:61:
14:76:f5:23:c2:89:c5:02:df:a7:e2:01:3f:09:bb:6e:c5:05:
3b:29:18:a1:dd:74:66:33:b9:0b:fb:1e:b1:79:82:65:d6:2f:
7f:32:1c:7b:03:00:87:fd:6c:da:95:65:21:96:76:fb:ae:4e:
04:8c:c2:f6:99:b1:ed:93:33:b1:71:f2:44:3e:b6:bb:5b:95:
56:60:d5:26:c9:21:cb:fb:61:2d:04:c4:43:14:02:04:9e:16:
17:7f:75:ba:71:c3:1c:86:8b:47:1c:d0:57:34:d1:a0:c7:73:
d8:81:48:3e
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIUKsdSv/H5jMNRa/0WZhhgHxX0v/UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA2MTIyMzA1NDhaFw0yNzA2MTEyMzEwNDhaMDMxMTAvBgNV
BAMTKEVCOEQxMjg0M0Q2NUJENzRGQ0UzNzFFNDQ0RDIyNDZGQzYxRjhDNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDClYKCLuKo6OVBcKAEJa1sv3Jr
dh3SecjGLGcLkoRm6SfgG8/CC7ZxvR9DP8Qg+EvTLhkuZfTwYa6Fy6zBfqonOMMF
EWpbHtN+n/ZoptnU0TjB5UIqV9XpObzaS8S7zO/heVsxr/jugp+akUwX6D2BqL16
RDDoPPNEUtI1AMiPjJnugNqfhROcj+EA5FwHYxpFHOx1oReJ+MlrLO70En73QPqz
K7YEd9nYd08Av3Brz5lVPHQj8/VwdjWl3o9lJwS2eGGEisWfBibrqmTRnlaFo7Tx
5677kLebfQRg/KJmMskj4CuyH0iG7B143SoJ3lNdBgpgbMKKY5dKhcn420cBAgMB
AAGjggITMIICDzAdBgNVHQ4EFgQU640ShD1lvXT843HkRNIkb8YfjEIwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjEzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEH
AQH/BDQwMjAwBAIAATAqAwQAb+uXAwQAj/aIAwQBj/aKAwQAmUxwAwQAp2jYAwQA
p2jbAwQAzvWmMA0GCSqGSIb3DQEBCwUAA4IBAQA4CN42ukVohITIlao46izkt6Yc
vpwR124OW3QC4N/rDuCW1yPIvXpPCRiyPbGPXPXNulp62tygTQDom3XDsuAy23Id
GCX0dws4g0BbXL5CgXEf3HZJbeQZL23zKDV8+JWv4+35pVHlRCAzaAfePYZ96Mfa
J/kYBfnVBw5EUclk1gqfW03NUal04osZ2fYjB2EUdvUjwonFAt+n4gE/CbtuxQU7
KRih3XRmM7kL+x6xeYJl1i9/Mhx7AwCH/WzalWUhlnb7rk4EjML2mbHtkzOxcfJE
Pra7W5VWYNUmySHL+2EtBMRDFAIEnhYXf3W6ccMchotHHNBXNNGgx3PYgUg+
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:08 2026 by rpki-client