Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
File: AS34927.roa (raw, json)
Hash identifier: 60TttcBCfeZi/qbhpwh8zo7JVZuwB1vbsbJJo2gcQJ8=
Subject key identifier: 7A:E0:EC:32:3C:92:5C:C7:4D:BA:7E:08:25:03:B7:8F:B5:00:B6:A9
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 650BFBC63876041C75C41FAD0EB5DAA71FB50FC1
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
Signing time: Thu 11 Jun 2026 19:36:20 +0000
ROA not before: Thu 11 Jun 2026 19:31:20 +0000
ROA not after: Thu 10 Jun 2027 19:36:20 +0000
asID: 34927
IP address blocks: 118.91.186.0/23 maxlen: 24
185.121.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:0b:fb:c6:38:76:04:1c:75:c4:1f:ad:0e:b5:da:a7:1f:b5:0f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 11 19:31:20 2026 GMT
Not After : Jun 10 19:36:20 2027 GMT
Subject: CN=7AE0EC323C925CC74DBA7E082503B78FB500B6A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f0:04:5a:3e:59:d4:d7:aa:76:3c:e8:b0:7e:
17:1f:e4:5c:7d:11:96:08:a3:ba:e2:38:da:55:9b:
d3:a3:0a:53:0e:d6:26:aa:aa:9a:30:9c:0d:f4:a5:
c4:6d:c8:4b:2e:c5:b1:56:79:99:1e:7c:85:34:18:
a9:98:92:47:eb:c5:ed:6e:3d:da:cc:12:1e:4d:36:
41:33:aa:db:67:c2:64:05:34:c8:b7:85:ab:cc:15:
0e:84:28:f0:78:94:f9:01:36:e3:a9:da:71:b6:ef:
f3:fa:44:9c:54:04:93:40:b0:90:09:d6:2b:31:23:
e8:50:03:0b:d3:e5:23:a7:41:75:51:9e:e8:fd:d3:
eb:66:ca:df:3a:5c:de:2b:5b:0e:88:80:3d:ab:5d:
e8:ab:0f:4c:94:a3:8e:31:37:10:9e:f9:3e:b5:4f:
b5:24:07:c3:2c:44:b5:14:54:2e:0e:15:45:89:99:
04:9d:29:77:77:20:db:cf:ca:1b:2b:d5:06:73:46:
87:f1:61:ad:30:1d:63:af:9b:84:37:62:c2:07:0e:
54:f2:d5:a3:1c:f7:43:01:aa:0f:a4:28:97:e2:5b:
84:34:8e:92:da:93:05:f2:4a:3d:ee:3c:c1:12:08:
d6:48:96:7e:f2:ab:1f:f7:60:26:69:02:21:9f:e2:
7e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E0:EC:32:3C:92:5C:C7:4D:BA:7E:08:25:03:B7:8F:B5:00:B6:A9
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS34927.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.91.186.0/23
185.121.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ee:1d:c9:1f:2c:b2:aa:7a:3e:40:04:f1:7a:14:fe:71:70:
24:c1:5a:df:29:7c:2a:c4:0b:62:d5:7f:89:d3:97:92:21:8f:
56:3b:4e:b6:cd:01:3e:d8:27:a5:3d:cf:35:18:ca:85:16:f5:
59:56:a8:3f:f3:a8:f9:19:91:4f:fc:d4:f6:a4:d1:30:be:aa:
46:96:8c:3a:c6:90:7e:f5:dd:80:07:e3:2b:80:6f:85:4b:1c:
be:c5:15:df:7b:85:44:dc:07:65:81:83:1f:7c:27:04:99:c2:
63:25:ef:1a:c3:66:03:94:4f:7b:b5:ec:78:ec:c3:c2:1d:80:
83:1f:99:e3:dc:eb:e7:0f:6f:e5:29:63:bd:f0:a1:74:8b:27:
4c:1c:98:f4:10:bc:37:6a:3e:64:50:fc:42:1a:5e:43:7d:21:
01:d9:ed:d8:54:e4:cb:65:e5:64:6c:14:48:02:77:74:f3:65:
ef:4e:bb:db:0b:cf:44:45:e4:27:f0:c5:47:fb:13:65:02:78:
75:cf:25:db:da:b4:82:7e:f9:3b:77:4a:13:5e:fe:ce:95:d3:
8d:1c:8a:66:f6:72:d5:62:5e:8f:ed:52:9e:13:f9:29:d5:f0:
e7:23:23:5c:25:fc:a7:16:5e:76:ac:3e:e8:d7:68:b7:c6:6e:
a4:1b:89:d7
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgIUZQv7xjh2BBx1xB+tDrXapx+1D8EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA2MTExOTMxMjBaFw0yNzA2MTAxOTM2MjBaMDMxMTAvBgNV
BAMTKDdBRTBFQzMyM0M5MjVDQzc0REJBN0UwODI1MDNCNzhGQjUwMEI2QTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg8ARaPlnU16p2POiwfhcf5Fx9
EZYIo7riONpVm9OjClMO1iaqqpownA30pcRtyEsuxbFWeZkefIU0GKmYkkfrxe1u
PdrMEh5NNkEzqttnwmQFNMi3havMFQ6EKPB4lPkBNuOp2nG27/P6RJxUBJNAsJAJ
1isxI+hQAwvT5SOnQXVRnuj90+tmyt86XN4rWw6IgD2rXeirD0yUo44xNxCe+T61
T7UkB8MsRLUUVC4OFUWJmQSdKXd3INvPyhsr1QZzRofxYa0wHWOvm4Q3YsIHDlTy
1aMc90MBqg+kKJfiW4Q0jpLakwXySj3uPMESCNZIln7yqx/3YCZpAiGf4n5TAgMB
AAGjggH0MIIB8DAdBgNVHQ4EFgQUeuDsMjySXMdNun4IJQO3j7UAtqkwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MzQ5Mjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcB
Af8EFjAUMBIEAgABMAwDBAF2W7oDBAC5eakwDQYJKoZIhvcNAQELBQADggEBAC7u
HckfLLKqej5ABPF6FP5xcCTBWt8pfCrEC2LVf4nTl5Ihj1Y7TrbNAT7YJ6U9zzUY
yoUW9VlWqD/zqPkZkU/81Pak0TC+qkaWjDrGkH713YAH4yuAb4VLHL7FFd97hUTc
B2WBgx98JwSZwmMl7xrDZgOUT3u17Hjsw8IdgIMfmePc6+cPb+UpY73woXSLJ0wc
mPQQvDdqPmRQ/EIaXkN9IQHZ7dhU5Mtl5WRsFEgCd3TzZe9Ou9sLz0RF5CfwxUf7
E2UCeHXPJdvatIJ++Tt3ShNe/s6V040cimb2ctViXo/tUp4T+SnV8OcjI1wl/KcW
XnasPujXaLfGbqQbidc=
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:25:51 2026 by rpki-client