Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215605.roa
File: AS215605.roa (raw, json)
Hash identifier: ROBA1abBenfUGPB/J6OOfptqc7UO8OJu13DE2pUpFDY=
Subject key identifier: A5:58:BA:90:B6:04:1D:C4:DE:36:B5:5A:39:CE:57:9F:A2:75:4A:03
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2BD810888DC603CA85A24DDF1C4FA9C30C944964
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215605.roa
Signing time: Thu 04 Jun 2026 15:58:49 +0000
ROA not before: Thu 04 Jun 2026 15:53:49 +0000
ROA not after: Thu 03 Jun 2027 15:58:49 +0000
asID: 215605
IP address blocks: 103.204.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:d8:10:88:8d:c6:03:ca:85:a2:4d:df:1c:4f:a9:c3:0c:94:49:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:49 2026 GMT
Not After : Jun 3 15:58:49 2027 GMT
Subject: CN=A558BA90B6041DC4DE36B55A39CE579FA2754A03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9e:05:13:bb:0b:21:47:55:e8:f8:36:d5:62:
e7:ad:41:36:69:de:39:ae:dc:ef:69:ed:36:d7:16:
7d:42:1a:04:69:23:ef:39:76:fa:70:7e:4e:0b:dd:
3e:e7:4f:e7:34:d3:5d:f2:6c:e7:a4:81:9d:89:9d:
2d:75:77:7c:b9:05:1b:2e:18:c2:19:db:c1:c2:47:
41:1d:de:60:67:ab:21:50:58:7c:83:52:e4:33:12:
18:d3:12:02:ea:20:42:63:9c:89:1f:01:a1:bb:da:
46:e0:89:06:56:63:2a:c9:0c:0d:8f:59:e2:7e:71:
25:4d:c4:a1:36:92:48:cd:58:28:81:53:eb:2b:79:
b9:05:08:a1:37:18:8d:8e:8d:b0:17:5a:d6:13:16:
01:0d:b5:f5:78:8f:5f:b0:47:d1:fb:1c:42:34:3b:
41:33:41:4f:92:b5:10:bf:6b:2a:22:a0:18:2a:13:
ea:c3:61:a6:82:f5:65:f8:30:19:1b:3c:f2:b9:99:
9e:59:fe:80:30:06:9c:c3:55:eb:1c:8e:f8:3a:7b:
d9:18:35:10:4b:13:4f:64:87:eb:9b:da:aa:8b:26:
7b:d4:9a:a0:7a:59:e8:fb:5e:72:54:1b:f8:8c:32:
23:03:20:6c:b5:b0:0e:dc:45:a6:b7:e4:af:2a:0c:
46:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:58:BA:90:B6:04:1D:C4:DE:36:B5:5A:39:CE:57:9F:A2:75:4A:03
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215605.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.204.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:dd:64:be:84:c4:9d:ed:15:b4:78:6b:45:da:54:43:e7:37:
49:9a:5c:30:af:a4:6c:fa:07:43:f8:d9:05:40:f1:61:27:c2:
d1:0e:a4:29:8d:1a:db:12:30:a9:c2:9f:4c:d6:4a:44:21:99:
da:bb:b9:4f:c2:a6:fb:03:d4:39:f1:58:c5:f4:23:cc:40:ee:
f8:fc:39:b2:2b:d7:e0:b8:58:dd:f4:e6:4d:cf:8c:30:35:cd:
4e:d9:85:2c:a8:19:96:ee:42:8b:48:ed:1e:45:d8:b3:10:3b:
64:be:8d:59:7a:3c:65:1d:10:e1:9e:44:eb:bc:3b:07:19:4e:
cf:c2:08:e3:60:b6:d6:01:61:a2:f9:a2:0e:cc:9f:6d:0d:8b:
01:68:6c:c1:c3:d3:1b:eb:b2:37:19:f3:4b:38:07:f6:24:e6:
3c:ed:af:3f:fb:02:87:9e:9e:db:4e:a0:a3:96:dc:be:ee:ac:
4c:8f:51:65:49:b5:a1:8b:06:66:cf:d3:bf:a4:65:50:33:7e:
40:a5:f0:dd:7f:89:0e:65:af:62:e7:16:59:75:d9:ee:70:2c:
0c:cf:10:e6:a4:e3:8b:db:50:62:8b:61:b4:cd:34:2e:d6:bf:
32:4e:1f:54:97:66:2a:b7:7f:64:04:42:06:af:a0:17:33:04:
12:d0:35:98
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUK9gQiI3GA8qFok3fHE+pwwyUSWQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA2MDQxNTUzNDlaFw0yNzA2MDMxNTU4NDlaMDMxMTAvBgNV
BAMTKEE1NThCQTkwQjYwNDFEQzRERTM2QjU1QTM5Q0U1NzlGQTI3NTRBMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrngUTuwshR1Xo+DbVYuetQTZp
3jmu3O9p7TbXFn1CGgRpI+85dvpwfk4L3T7nT+c0013ybOekgZ2JnS11d3y5BRsu
GMIZ28HCR0Ed3mBnqyFQWHyDUuQzEhjTEgLqIEJjnIkfAaG72kbgiQZWYyrJDA2P
WeJ+cSVNxKE2kkjNWCiBU+srebkFCKE3GI2OjbAXWtYTFgENtfV4j1+wR9H7HEI0
O0EzQU+StRC/ayoioBgqE+rDYaaC9WX4MBkbPPK5mZ5Z/oAwBpzDVescjvg6e9kY
NRBLE09kh+ub2qqLJnvUmqB6Wej7XnJUG/iMMiMDIGy1sA7cRaa35K8qDEYTAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUpVi6kLYEHcTeNrVaOc5Xn6J1SgMwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjE1NjA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAZ8zDMA0GCSqGSIb3DQEBCwUAA4IBAQCw3WS+hMSd
7RW0eGtF2lRD5zdJmlwwr6Rs+gdD+NkFQPFhJ8LRDqQpjRrbEjCpwp9M1kpEIZna
u7lPwqb7A9Q58VjF9CPMQO74/DmyK9fguFjd9OZNz4wwNc1O2YUsqBmW7kKLSO0e
RdizEDtkvo1ZejxlHRDhnkTrvDsHGU7PwgjjYLbWAWGi+aIOzJ9tDYsBaGzBw9Mb
67I3GfNLOAf2JOY87a8/+wKHnp7bTqCjlty+7qxMj1FlSbWhiwZmz9O/pGVQM35A
pfDdf4kOZa9i5xZZddnucCwMzxDmpOOL21Bii2G0zTQu1r8yTh9Ul2Yqt39kBEIG
r6AXMwQS0DWY
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:11:01 2026 by rpki-client