Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53724.roa
File: AS53724.roa (raw, json)
Hash identifier: FtSuuso+0relab5ydjR0S/5BHCk1qoachz9rVRvi8dg=
Subject key identifier: D1:9C:2B:6C:41:96:40:F5:20:0B:6F:27:7C:46:29:81:86:EB:05:8B
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 4D08BC892CD6AEFCB7A4C5E69E95F3AD8B7A7BA6
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53724.roa
Signing time: Mon 08 Jun 2026 02:05:02 +0000
ROA not before: Mon 08 Jun 2026 02:00:02 +0000
ROA not after: Mon 07 Jun 2027 02:05:02 +0000
asID: 53724
IP address blocks: 103.151.40.0/24 maxlen: 24
103.214.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:08:bc:89:2c:d6:ae:fc:b7:a4:c5:e6:9e:95:f3:ad:8b:7a:7b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 8 02:00:02 2026 GMT
Not After : Jun 7 02:05:02 2027 GMT
Subject: CN=D19C2B6C419640F5200B6F277C46298186EB058B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0d:82:22:a6:5f:d3:e6:db:12:8e:cd:55:04:
b4:39:80:10:05:04:cf:a4:f2:95:01:13:35:a3:92:
5a:f5:2e:d4:fa:3c:95:5a:94:40:b1:ba:e5:13:32:
b8:7b:77:ad:d0:85:c5:a8:09:93:8a:4e:6e:2f:c8:
b7:3e:4d:22:f8:f8:c1:db:68:e4:90:19:15:a2:1d:
75:f5:6a:44:0f:1c:a1:8f:7e:47:8e:df:13:57:2f:
7d:14:bc:4f:bb:7f:a6:46:4e:26:52:11:dc:5a:98:
4b:b6:b5:ca:26:8d:29:a5:df:18:02:e0:26:2e:13:
20:a1:d1:e2:3d:32:ed:17:b0:1a:45:d6:14:24:08:
88:74:0e:7b:6b:27:6f:85:3f:bb:ca:c3:93:40:eb:
68:86:97:fc:d7:c3:38:34:99:7d:f7:ff:7f:7a:5d:
bb:f2:ad:50:d5:47:d8:7f:88:6f:3c:cf:89:98:02:
89:ae:ed:6b:11:cd:94:85:b7:21:d6:f4:80:6d:48:
e3:1e:4f:78:a5:7b:60:cf:60:cd:de:c9:6c:8b:d7:
04:03:45:19:0f:9f:a6:bb:2c:26:05:cd:fd:ae:c5:
ad:69:87:0d:6a:5d:33:64:10:52:46:b7:fe:22:76:
64:d4:ae:f5:dd:3b:f4:f3:94:d5:79:9c:59:34:7e:
4d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:9C:2B:6C:41:96:40:F5:20:0B:6F:27:7C:46:29:81:86:EB:05:8B
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS53724.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.40.0/24
103.214.68.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:0b:84:c6:a5:f4:3e:e4:11:85:b6:0d:a7:6f:ac:97:51:f0:
fe:98:2e:88:20:68:76:ab:62:8f:62:97:e7:04:ff:5e:c5:5b:
5a:4d:fd:6a:b1:6b:65:5c:43:76:db:a9:01:56:fb:e7:97:ac:
63:54:e7:8c:22:81:2f:21:a2:51:a0:27:21:ec:21:18:c8:4b:
8d:bd:a9:6f:7c:eb:50:0c:73:f8:a6:6a:f6:84:6f:5c:a4:e0:
9f:fe:0c:51:8d:c3:f6:1d:48:ad:a1:1a:07:65:60:88:7b:76:
e1:17:da:8b:c5:8e:fb:36:93:e9:1f:7d:dd:e8:ff:45:81:4f:
6a:e0:d7:40:e4:a2:c1:99:ee:a6:6f:45:ef:d3:10:6a:6e:55:
7b:ef:7c:f8:43:24:c1:db:22:5b:b2:18:e9:e9:09:c2:0a:8f:
d8:cd:56:fb:97:08:ad:f8:ce:b7:b9:e3:c9:79:ec:0a:8c:06:
ec:7a:ec:d0:98:a3:1e:4f:e1:85:8b:3b:5c:f1:26:ee:eb:aa:
e4:73:be:83:1d:d9:f8:d4:ae:5b:2f:36:0b:d9:4f:d0:1d:fa:
7c:11:5f:ae:7a:c0:70:e0:5a:48:4b:7d:d6:d6:c3:87:5f:4a:
bb:48:47:64:63:b3:82:da:3f:d8:8c:56:4b:bc:dc:ec:8c:73:
cc:90:6c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:06 2026 by rpki-client