Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS54148.roa
File: AS54148.roa (raw, json)
Hash identifier: cqk5C3m6NlWYn848iFsve93qWxH0bznzkvpkmWG3ToY=
Subject key identifier: AE:23:7D:40:6D:95:97:CE:43:F4:B1:07:4F:92:F4:5D:7B:40:D5:A1
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 214B154B0FE288E96DDFE07556BB9594BA7FFE5C
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS54148.roa
Signing time: Thu 04 Jun 2026 15:58:51 +0000
ROA not before: Thu 04 Jun 2026 15:53:51 +0000
ROA not after: Thu 03 Jun 2027 15:58:51 +0000
asID: 54148
IP address blocks: 2a06:a005:2720::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:4b:15:4b:0f:e2:88:e9:6d:df:e0:75:56:bb:95:94:ba:7f:fe:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:51 2026 GMT
Not After : Jun 3 15:58:51 2027 GMT
Subject: CN=AE237D406D9597CE43F4B1074F92F45D7B40D5A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6a:1f:1a:c9:4c:f2:89:c1:35:a5:87:9d:41:
0a:8e:9f:10:ea:22:7a:41:02:45:d8:18:b4:ce:8a:
e4:4a:f6:c5:d9:49:1e:54:16:96:22:14:8e:40:bb:
fb:7b:2c:ca:80:ca:33:9f:61:2c:f6:92:bc:d5:ce:
07:a9:37:68:2c:e3:19:5d:4c:7a:83:be:6e:66:0b:
3c:1d:91:14:32:5f:f9:55:4f:95:f2:d7:e4:dc:c9:
e4:22:7e:42:4a:18:bc:a4:32:34:8c:92:d8:16:cf:
6f:cb:92:62:83:7f:bf:cc:3a:73:d5:f9:18:ce:1d:
a6:85:d6:c7:a3:ea:74:b7:46:cf:43:93:a2:7a:ad:
d1:23:ed:59:e0:95:d4:11:0a:95:82:d2:5f:48:ef:
61:cf:03:a5:58:7e:60:b2:85:d1:6a:7d:28:9f:3a:
b9:52:33:92:fa:7e:43:ac:18:cc:72:00:5c:48:4a:
82:60:8b:d8:4f:50:b8:a6:e0:b4:63:2d:90:19:35:
27:08:aa:1c:f7:5f:16:21:6c:b2:0b:55:0d:db:95:
3b:d0:d7:ef:ad:75:71:42:61:3b:28:93:cd:dd:51:
a8:db:8a:87:e9:fa:4c:fa:49:f5:c3:f4:cd:b3:5c:
f2:f6:c0:0c:55:28:37:f6:80:09:74:f7:a8:d4:27:
f7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:23:7D:40:6D:95:97:CE:43:F4:B1:07:4F:92:F4:5D:7B:40:D5:A1
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS54148.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2720::/44
Signature Algorithm: sha256WithRSAEncryption
c0:90:5f:03:1e:a0:a4:0a:76:84:c6:ca:ae:6b:f7:d0:da:fa:
f4:46:60:48:05:a2:0a:25:3d:75:b0:df:5b:7f:b5:e3:07:5b:
a6:0b:39:3e:ad:8d:87:e9:4f:3d:60:26:67:69:3c:0f:4c:93:
a2:7a:9c:f7:41:67:83:38:57:90:a2:b3:36:44:6f:1f:39:db:
60:01:29:d9:c6:e6:f0:b9:12:ad:f2:b7:4f:7c:85:af:39:88:
8d:01:50:e3:3f:bf:ac:f5:ef:e4:80:52:c4:2b:30:58:15:9c:
4a:54:b7:5f:56:1e:03:de:f2:f7:31:6e:7d:a7:79:fc:ac:31:
60:d3:b3:bc:79:ff:29:aa:50:7b:42:21:9a:e6:1b:a2:e9:84:
90:c5:cf:e6:90:4e:9c:be:0c:52:92:8f:45:09:e4:8d:12:be:
97:07:2f:44:a1:6b:89:e6:27:df:bc:b6:00:ad:19:26:09:27:
e5:60:3e:97:d3:a5:9c:6b:d6:e2:e1:83:92:f6:bc:26:2b:1e:
ba:07:cf:85:39:49:cd:74:2d:ca:38:0a:e9:f7:26:a3:18:f8:
6d:f6:96:aa:39:95:7c:ae:de:3c:24:64:0f:80:45:08:f1:8b:
0f:c9:4c:b0:27:af:0e:66:35:b4:5c:ed:a4:8b:48:4f:e4:65:
26:5a:6f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:58:06 2026 by rpki-client