Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS270168.roa
File: AS270168.roa (raw, json)
Hash identifier: xOj8DpxvGuBbvKXrM8qy7ikvy6dZR3h8kCqTSiad3cY=
Subject key identifier: ED:6C:FB:17:C0:F1:C7:23:16:93:27:50:5C:AE:B0:73:9D:D3:D8:7F
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 4BF453FB2749FEA0F6F3DD3FC4BA04A05195FA0D
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS270168.roa
Signing time: Thu 04 Jun 2026 15:58:48 +0000
ROA not before: Thu 04 Jun 2026 15:53:48 +0000
ROA not after: Thu 03 Jun 2027 15:58:48 +0000
asID: 270168
IP address blocks: 103.137.192.0/24 maxlen: 24
202.50.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:f4:53:fb:27:49:fe:a0:f6:f3:dd:3f:c4:ba:04:a0:51:95:fa:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:48 2026 GMT
Not After : Jun 3 15:58:48 2027 GMT
Subject: CN=ED6CFB17C0F1C723169327505CAEB0739DD3D87F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0a:b3:2f:2b:c4:f9:5e:9a:d8:84:26:ea:f7:
da:ff:f5:f9:2b:59:a3:85:3e:85:2f:a0:52:91:0f:
69:28:dd:a7:ff:fa:aa:91:1a:f4:71:f2:64:f0:25:
4d:3e:32:f3:0d:a0:a7:e0:25:46:68:01:ca:2e:b6:
ec:a2:80:cc:ad:b1:88:13:40:47:1e:38:4b:70:6d:
7b:20:74:88:01:64:07:ad:c4:19:42:8d:e8:22:a0:
d0:58:39:02:3d:e1:d0:50:19:35:7d:43:b0:16:53:
c5:8b:cb:52:0c:7d:9c:42:00:4d:9f:a7:2f:2d:2c:
c1:9e:ad:45:fd:c5:a0:e9:b3:4c:85:1b:8a:ca:d8:
78:f9:d2:bb:6d:95:1e:08:8a:85:a0:e1:12:d2:e9:
7a:c8:08:69:02:81:d5:6c:2b:50:bc:9f:84:53:f5:
3c:01:5f:7c:c0:b7:bb:da:24:34:d9:dd:b9:31:59:
64:ba:4a:b9:70:01:ed:24:a1:75:60:69:de:93:f4:
24:f0:b3:b9:e0:24:98:1a:52:ed:92:48:72:51:21:
cc:55:2a:86:3d:46:06:4b:63:ab:e4:5e:92:74:82:
0e:0f:85:25:dc:61:c4:b8:62:5a:3a:b9:f8:fb:7d:
63:81:70:2b:ca:fa:f2:a9:44:62:96:c2:ee:2a:e1:
9d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:6C:FB:17:C0:F1:C7:23:16:93:27:50:5C:AE:B0:73:9D:D3:D8:7F
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS270168.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.192.0/24
202.50.52.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:d9:62:9a:b6:de:2f:6f:40:8f:ee:ff:ff:97:8c:cc:00:9d:
71:05:65:7b:7a:ae:12:89:9f:d7:7c:2e:e8:c8:ac:5e:07:d0:
85:5c:49:ca:03:34:d3:5d:33:65:52:bc:9c:4a:12:8f:e9:3a:
03:72:01:18:8d:78:b1:b0:e2:f1:4f:4d:94:ad:5b:fd:b8:26:
02:37:94:78:4c:af:0b:c6:24:67:55:05:b1:42:4a:21:aa:ec:
0a:ab:fa:f3:a0:0c:d8:84:56:b6:39:be:e0:03:fc:ed:bf:06:
44:38:77:df:09:89:b4:a7:ed:37:6e:9a:b4:13:d0:f6:59:22:
8e:b2:39:3f:67:b9:10:0f:d2:c2:b8:d9:7b:9d:2a:41:5e:95:
c3:53:72:a2:75:ac:9a:89:c5:66:9a:59:9a:77:da:25:80:0b:
f8:a9:93:f6:83:b9:a1:22:de:a6:ee:d5:14:11:7b:32:e9:36:
6e:81:de:00:18:43:b4:19:b6:b5:ce:a5:b0:46:b3:b3:07:78:
30:2e:e0:62:64:b0:c5:2a:15:f8:48:16:2c:47:41:cb:42:90:
db:79:bc:32:3b:55:da:d0:b0:1d:6b:8d:d7:b9:3e:36:31:3f:
c1:56:af:19:67:bc:ec:83:1b:75:5c:cc:2e:3d:f2:06:b0:6e:
52:e7:8d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:01 2026 by rpki-client