Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS55201.roa
File: AS55201.roa (raw, json)
Hash identifier: G7y+YNWU4Xjol1TNLgvry73aw7ILuzpCHC7cJTrxVaU=
Subject key identifier: AB:2C:01:20:00:1D:9E:DF:19:DD:A4:64:CF:55:1B:EE:E5:04:3E:9F
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 36537F18CDFB163901FE30486EE41595332E1617
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS55201.roa
Signing time: Thu 02 Apr 2026 04:01:28 +0000
ROA not before: Thu 02 Apr 2026 03:56:28 +0000
ROA not after: Thu 01 Apr 2027 04:01:28 +0000
asID: 55201
IP address blocks: 153.76.119.0/24 maxlen: 24
153.76.120.0/24 maxlen: 24
153.76.121.0/24 maxlen: 24
2a06:9f40::/32 maxlen: 48
2a06:a007::/32 maxlen: 48
2a09:54c0::/32 maxlen: 48
2a09:54c2::/32 maxlen: 48
2a0a:6041::/32 maxlen: 48
2a0d:d901::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:53:7f:18:cd:fb:16:39:01:fe:30:48:6e:e4:15:95:33:2e:16:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 2 03:56:28 2026 GMT
Not After : Apr 1 04:01:28 2027 GMT
Subject: CN=AB2C0120001D9EDF19DDA464CF551BEEE5043E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:63:ae:2e:f4:fe:9d:10:6a:79:4a:c3:ed:72:
1b:24:d8:25:f4:ef:60:4f:c2:03:ee:49:62:56:d6:
de:67:a6:84:7d:9a:78:e9:cc:12:66:d2:5f:15:8b:
ef:7b:1e:02:8f:d9:84:a2:c9:68:f3:05:8b:c3:e3:
7b:7c:f0:02:f4:d5:62:51:b1:3b:93:45:59:47:aa:
42:0f:70:0a:17:7b:c8:5b:02:42:34:a9:bd:68:df:
bf:5c:c1:b2:4c:77:f2:dd:15:46:74:14:47:7e:55:
90:c6:82:1f:01:55:b1:18:c2:eb:c5:2a:67:6c:ec:
d5:ba:b6:92:2e:e2:4e:ae:e6:2e:0a:f1:59:79:75:
fe:85:e6:83:58:76:b5:85:c9:20:5f:51:c1:dc:09:
3a:24:cd:6e:4a:3d:cb:39:4f:05:24:c0:76:c7:2c:
6d:30:88:b6:64:a2:37:f1:e3:96:f0:c0:a1:60:12:
87:75:6d:e5:65:2a:28:53:f2:5f:99:06:fc:35:39:
e0:a0:7f:11:f5:ed:09:c2:b2:e6:d1:37:a9:ef:e7:
fa:31:a1:5f:e3:bd:43:f9:fa:97:5d:a2:fa:05:08:
47:0c:a7:31:87:35:25:9b:27:b5:18:2d:07:77:6a:
4c:c9:ba:35:c1:f9:2e:62:ea:71:0c:51:90:98:46:
3e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2C:01:20:00:1D:9E:DF:19:DD:A4:64:CF:55:1B:EE:E5:04:3E:9F
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS55201.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.76.119.0-153.76.121.255
IPv6:
2a06:9f40::/32
2a06:a007::/32
2a09:54c0::/32
2a09:54c2::/32
2a0a:6041::/32
2a0d:d901::/32
Signature Algorithm: sha256WithRSAEncryption
25:43:16:f9:4a:53:35:4c:29:5c:a0:30:3e:6f:83:2a:f7:56:
c9:ef:c1:12:b6:91:48:81:4e:49:44:39:a7:78:4f:2a:a6:c0:
08:91:1e:eb:e3:46:7a:e8:0e:38:0f:aa:ca:91:c2:aa:a3:01:
39:71:19:00:f1:cb:1d:ea:63:f7:df:f9:66:27:3d:81:7f:b1:
ea:9b:1c:75:b3:8c:ac:82:8c:c7:0f:a0:ac:b3:7f:a0:40:f1:
29:d1:86:89:7f:10:40:90:8d:0d:9a:97:ff:83:f3:35:69:50:
7a:34:c5:b0:01:da:a9:40:ba:79:34:b0:1c:9e:7b:b1:80:cd:
a5:7d:ca:bb:28:c6:a9:5b:27:08:c7:0f:fe:0a:23:e1:10:a9:
57:30:78:7a:aa:6f:cf:6d:f6:4a:da:7b:26:00:dd:d5:21:42:
14:4f:54:b6:50:8c:a6:0c:33:87:5a:47:0d:b2:e1:f8:77:55:
60:2a:c3:74:86:74:f3:31:34:1a:79:03:2c:39:ba:3a:8d:81:
1a:dc:38:c9:e4:78:30:d4:38:b7:40:16:63:3f:bc:a8:9f:57:
3d:11:63:16:69:ac:1f:68:97:6b:bc:93:77:13:d7:56:7e:f7:
3a:d2:4e:21:88:f7:dd:2f:31:dc:fa:85:43:44:51:0f:7b:94:
e5:63:96:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:17:00 2026 by rpki-client