Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214150.roa
File: AS214150.roa (raw, json)
Hash identifier: 8aHSBWQqzeC26y6RW9dTg7M/FbfQ90vhu6+axkT9gE0=
Subject key identifier: 9C:78:35:DC:F6:FA:A1:9C:6D:69:6D:2B:0A:9C:03:6A:FF:49:C2:E0
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 7B219019BB7DDFB09A0A3949C46587E2B3D9BE50
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214150.roa
Signing time: Sun 20 Jul 2025 02:18:45 +0000
ROA not before: Sun 20 Jul 2025 02:13:45 +0000
ROA not after: Sun 19 Jul 2026 02:18:45 +0000
asID: 214150
IP address blocks: 103.137.193.0/24 maxlen: 24
103.204.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 Aug 2025 23:12:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:21:90:19:bb:7d:df:b0:9a:0a:39:49:c4:65:87:e2:b3:d9:be:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 20 02:13:45 2025 GMT
Not After : Jul 19 02:18:45 2026 GMT
Subject: CN=9C7835DCF6FAA19C6D696D2B0A9C036AFF49C2E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1e:ef:57:a8:5c:64:a5:03:52:7c:22:91:bd:
39:e1:8d:ac:dd:81:aa:58:02:27:50:92:8d:78:43:
40:64:f8:d9:66:f4:44:80:bd:8b:99:cf:53:98:50:
3a:f4:d3:f1:74:0b:ca:61:22:96:c5:72:d2:7f:67:
f7:51:ea:82:59:0e:97:0c:ea:eb:1e:80:82:5a:78:
10:11:ef:71:e3:b3:eb:4f:36:69:3d:d6:2c:fc:b8:
30:8a:1c:47:fd:42:b0:4f:7d:1c:0b:18:39:9c:da:
32:df:d5:9f:56:26:88:b4:34:88:5b:75:63:d6:bc:
b4:c6:0a:72:97:80:d8:4c:a5:10:71:67:03:2d:4e:
91:05:72:50:3c:cb:c1:f7:ea:a0:e2:40:68:3c:56:
53:b7:d1:14:91:53:62:08:23:64:71:88:c8:40:de:
0a:1e:38:4e:ed:1e:17:2e:3f:41:33:e6:14:85:ea:
69:af:7d:93:89:8a:a6:0e:d8:79:a0:03:62:79:a3:
3e:34:31:cb:0f:28:da:44:39:f1:8e:18:27:a7:b9:
27:e3:67:ec:2d:cc:13:6e:94:89:ed:41:49:79:c2:
63:a3:76:52:cd:e1:81:a3:39:a6:ca:c4:9f:27:2a:
30:25:95:52:e2:26:c5:6f:51:fc:b1:7d:66:13:bd:
64:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:78:35:DC:F6:FA:A1:9C:6D:69:6D:2B:0A:9C:03:6A:FF:49:C2:E0
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214150.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.193.0/24
103.204.194.0/24
Signature Algorithm: sha256WithRSAEncryption
43:40:2b:46:1c:30:0f:f9:bb:90:59:2c:f8:13:85:a1:9b:6f:
fa:39:e5:05:5d:4f:f0:26:20:08:49:e2:27:57:ed:a3:24:ea:
75:31:c1:58:23:a2:28:8a:3f:44:8c:75:63:36:f4:ad:88:b5:
4f:1c:8d:9f:c1:41:a0:7d:64:22:61:99:ab:e1:76:39:33:b5:
95:c1:cf:23:c9:7b:13:94:1b:1e:a6:b6:cd:b1:5f:76:3c:d5:
5f:dd:34:ad:cd:a4:f8:a5:94:53:0f:5f:b3:d9:f1:f9:aa:2a:
38:05:f7:39:c1:07:5a:cc:02:0b:af:3e:de:03:27:95:bf:03:
2b:29:a5:21:c2:3d:86:30:7e:6d:0a:62:aa:b7:17:a5:79:8d:
cb:0e:d8:0b:40:f3:ac:95:72:bb:3e:05:5b:87:76:dd:b5:b3:
dd:ff:c3:6e:e5:d4:28:f0:93:71:29:60:e8:71:4a:2a:52:06:
4f:e6:18:bb:1e:10:bb:38:ba:cd:34:49:36:d0:b1:46:90:78:
28:9f:4f:e7:0b:30:23:09:89:56:2f:66:07:76:d4:6b:e1:be:
db:c8:7c:39:55:ae:bc:c8:ce:46:cf:b7:e0:c6:3a:01:a7:1e:
7a:6c:5a:a1:fb:3c:67:0a:5c:59:79:2d:ae:dd:fe:cb:49:5f:
25:b1:c6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:58:07 2025 by rpki-client