Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
File: AS52025.roa (raw, json)
Hash identifier: idCnhuKaFuhGGC1DqIeKZzg8YCXs328YnEcSy8ZcGHU=
Subject key identifier: 0C:DD:D4:60:3C:10:BF:70:CD:A2:87:18:03:E3:26:09:FA:7E:92:95
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 498A4926FB7E670D5BFE3B58F381D077E1BA9A9B
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
Signing time: Sun 05 Apr 2026 20:57:58 +0000
ROA not before: Sun 05 Apr 2026 20:52:58 +0000
ROA not after: Sun 04 Apr 2027 20:57:58 +0000
asID: 52025
IP address blocks: 85.155.227.0/24 maxlen: 24
2a06:a005:5b8::/48 maxlen: 48
2a06:a005:1da0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:8a:49:26:fb:7e:67:0d:5b:fe:3b:58:f3:81:d0:77:e1:ba:9a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 5 20:52:58 2026 GMT
Not After : Apr 4 20:57:58 2027 GMT
Subject: CN=0CDDD4603C10BF70CDA2871803E32609FA7E9295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:87:09:c7:84:16:a1:ce:fa:7f:9a:83:3b:c4:
00:b6:bd:e1:80:c5:89:a6:98:e2:55:18:c0:f6:8c:
92:55:85:20:f6:56:23:93:f4:89:85:e2:50:b5:02:
97:ba:be:f7:76:ec:90:b8:46:0c:29:67:aa:96:0c:
a1:f6:06:8d:b3:8a:e1:c5:10:72:f3:bd:74:9e:fc:
d5:c5:53:c5:59:3b:78:66:60:27:de:3a:09:34:45:
b2:a5:25:58:6d:b7:df:8b:1a:ac:bf:a1:5c:e8:4c:
7e:38:68:45:0f:fa:b8:c9:26:30:10:8f:69:e0:d9:
7e:59:42:19:e5:cf:37:b6:b0:df:a1:e2:0b:af:98:
5b:0e:a7:9b:fe:2a:e6:29:70:c1:6c:65:2f:bf:ef:
7b:4b:84:36:45:1e:3a:1c:99:f5:6a:3e:14:bc:79:
0a:05:05:f1:a8:dd:4f:d5:a2:8d:04:d6:26:0c:68:
20:58:34:f8:87:dd:9e:7d:81:e7:41:a3:7e:e7:d7:
26:f8:3f:f4:fd:18:06:bc:a7:03:c0:aa:4e:9d:8b:
dc:25:a7:c1:c5:27:02:b2:cd:53:9b:58:25:8b:6d:
9e:82:24:ee:25:79:90:60:10:88:f6:98:49:15:d2:
b7:d5:f6:d7:e7:55:78:e1:df:37:44:3f:26:1c:7e:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DD:D4:60:3C:10:BF:70:CD:A2:87:18:03:E3:26:09:FA:7E:92:95
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS52025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.155.227.0/24
IPv6:
2a06:a005:5b8::/48
2a06:a005:1da0::/44
Signature Algorithm: sha256WithRSAEncryption
36:dd:b1:2b:74:d9:ba:ae:03:99:89:06:9b:97:13:5b:59:97:
b4:9b:37:83:ea:9a:33:95:97:50:e7:39:9b:18:8a:79:ab:9e:
40:8a:d3:1d:3a:d1:3d:e5:00:70:e6:36:80:5f:7e:8f:ce:cb:
5c:2b:25:ea:53:c1:7f:ca:47:5d:03:81:a0:05:8c:af:f2:d6:
ea:0f:1d:6a:c3:af:65:e6:06:c4:37:cc:9b:6c:a0:31:c8:a4:
28:ef:03:4a:2b:43:c7:e9:47:94:96:99:29:99:87:3a:d7:29:
89:1a:00:ae:de:1b:0a:38:cc:ff:d6:21:16:17:7e:bf:46:7d:
58:e3:e4:4a:99:fd:e7:a5:e4:ee:01:15:26:a5:ed:af:e9:b2:
c6:69:57:3a:37:3b:13:a4:32:5b:27:84:02:66:7d:14:2a:b6:
27:1a:9f:5c:93:44:4b:61:57:a4:4c:35:98:ab:ae:84:39:e0:
c4:32:08:71:fe:b1:8d:e0:6f:29:0e:11:8e:05:6b:65:2e:62:
3a:7c:14:33:b0:38:7f:e3:13:e3:7a:7e:d7:dc:bc:8f:3c:c4:
ad:70:b9:17:6e:35:7a:0c:41:50:bd:45:8e:b3:89:b0:ab:28:
90:39:c2:5c:f7:7b:de:55:1d:8f:7b:19:87:1a:f0:4a:5d:66:
08:12:62:eb
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIUSYpJJvt+Zw1b/jtY84HQd+G6mpswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA0MDUyMDUyNThaFw0yNzA0MDQyMDU3NThaMDMxMTAvBgNV
BAMTKDBDRERENDYwM0MxMEJGNzBDREEyODcxODAzRTMyNjA5RkE3RTkyOTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCghwnHhBahzvp/moM7xAC2veGA
xYmmmOJVGMD2jJJVhSD2ViOT9ImF4lC1Ape6vvd27JC4RgwpZ6qWDKH2Bo2ziuHF
EHLzvXSe/NXFU8VZO3hmYCfeOgk0RbKlJVhtt9+LGqy/oVzoTH44aEUP+rjJJjAQ
j2ng2X5ZQhnlzze2sN+h4guvmFsOp5v+KuYpcMFsZS+/73tLhDZFHjocmfVqPhS8
eQoFBfGo3U/Voo0E1iYMaCBYNPiH3Z59gedBo37n1yb4P/T9GAa8pwPAqk6di9wl
p8HFJwKyzVObWCWLbZ6CJO4leZBgEIj2mEkV0rfV9tfnVXjh3zdEPyYcfg1TAgMB
AAGjggIIMIICBDAdBgNVHQ4EFgQUDN3UYDwQv3DNoocYA+MmCfp+kpUwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
NTIwMjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcB
Af8EKjAoMAwEAgABMAYDBABVm+MwGAQCAAIwEgMHACoGoAUFuAMHBCoGoAUdoDAN
BgkqhkiG9w0BAQsFAAOCAQEANt2xK3TZuq4DmYkGm5cTW1mXtJs3g+qaM5WXUOc5
mxiKeaueQIrTHTrRPeUAcOY2gF9+j87LXCsl6lPBf8pHXQOBoAWMr/LW6g8dasOv
ZeYGxDfMm2ygMcikKO8DSitDx+lHlJaZKZmHOtcpiRoArt4bCjjM/9YhFhd+v0Z9
WOPkSpn956Xk7gEVJqXtr+myxmlXOjc7E6QyWyeEAmZ9FCq2JxqfXJNES2FXpEw1
mKuuhDngxDIIcf6xjeBvKQ4RjgVrZS5iOnwUM7A4f+MT43p+19y8jzzErXC5F241
egxBUL1FjrOJsKsokDnCXPd73lUdj3sZhxrwSl1mCBJi6w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 02:20:54 2026 by rpki-client