Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS63023.roa
File: AS63023.roa (raw, json)
Hash identifier: ZO7GaZHaf9ARnAVW7Dz4k7iiPZge0BYLLn6TuwrpEjU=
Subject key identifier: E2:B6:A7:CA:80:5E:03:84:22:8C:61:15:2F:A9:19:E0:E4:85:82:55
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 7041924CC54D81072456F40CDBF2BE2859CF44C6
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS63023.roa
Signing time: Mon 08 Jun 2026 01:44:43 +0000
ROA not before: Mon 08 Jun 2026 01:39:43 +0000
ROA not after: Mon 07 Jun 2027 01:44:43 +0000
asID: 63023
IP address blocks: 103.151.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:41:92:4c:c5:4d:81:07:24:56:f4:0c:db:f2:be:28:59:cf:44:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 8 01:39:43 2026 GMT
Not After : Jun 7 01:44:43 2027 GMT
Subject: CN=E2B6A7CA805E0384228C61152FA919E0E4858255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b9:82:86:c5:d0:80:c8:70:39:35:5b:56:c2:
5e:dd:df:43:e6:51:d9:d5:d4:af:33:df:65:d4:f6:
a9:f3:23:4c:d1:3f:54:95:20:03:62:3e:b2:bf:cc:
2c:74:c4:be:82:22:5d:d4:aa:a3:0b:fe:67:c0:e6:
0e:74:b1:85:76:18:47:b4:4c:c5:50:51:df:da:bd:
be:d2:0e:07:6a:6e:bd:ca:68:75:bd:b6:df:32:0d:
34:77:19:d9:af:61:6e:9a:80:2f:7f:57:6c:db:79:
ea:88:75:dc:4d:df:20:b8:1e:70:83:d4:d1:01:26:
f4:e1:31:d8:ca:db:d6:87:ab:9e:ac:13:9d:50:cd:
ee:38:8e:16:81:df:52:74:da:2d:c1:7f:74:c7:62:
e9:e1:e0:c8:d5:88:1b:79:08:bf:7c:b3:ea:62:8b:
65:bf:6b:f2:7e:dd:2c:00:d0:15:5e:a3:40:6c:24:
4e:a8:22:ee:c9:0e:e4:77:8c:b1:1f:c9:fa:87:fc:
9f:13:da:29:48:99:d1:45:a8:ea:23:fa:99:47:3b:
89:67:1a:81:26:5a:86:af:43:0e:11:23:95:db:61:
0b:87:77:21:7c:c3:ca:d8:8b:7c:ec:b8:c3:2b:56:
32:c6:eb:63:bd:ba:a7:fa:8c:b5:6e:fc:df:24:ec:
17:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B6:A7:CA:80:5E:03:84:22:8C:61:15:2F:A9:19:E0:E4:85:82:55
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS63023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.41.0/24
Signature Algorithm: sha256WithRSAEncryption
24:96:27:c0:eb:d0:da:06:a2:d7:a5:05:f1:54:ad:cf:c8:5b:
4b:6f:be:37:9a:92:89:fa:21:55:61:f3:1e:af:62:81:33:dd:
07:30:45:4c:af:3f:ee:79:eb:d7:59:42:86:af:63:e6:f9:6c:
4c:a5:3e:7b:76:b7:82:b3:4b:10:a5:ad:4a:dd:0d:83:9b:59:
59:c9:23:30:da:71:8a:11:b4:da:d2:b5:5e:ba:13:b4:47:21:
56:09:e0:0e:1c:70:52:fe:5d:47:8c:56:5d:b1:05:fa:0a:a3:
fb:99:d5:2e:8a:02:32:d2:54:2a:dd:5f:6e:e5:4e:2d:e5:bf:
68:89:e5:8a:a8:32:9e:f7:17:ee:e6:3c:0f:04:d8:c7:d9:29:
ca:71:6e:a3:df:92:2f:d6:bc:57:d8:b8:b5:34:94:2b:56:5c:
68:5f:88:46:f3:e6:79:c1:b1:c4:7a:4c:4c:0c:ac:a3:5e:1f:
98:1f:a2:66:b2:86:9a:3d:33:24:0c:57:49:38:42:7a:35:71:
1d:3b:ca:10:e4:bd:6b:6f:23:eb:67:1a:9a:85:6f:62:a2:b4:
35:52:7f:55:35:d5:95:a9:fa:d5:10:c0:98:49:52:27:0b:41:
f7:93:2f:67:20:76:22:29:6a:3b:59:ba:e9:2e:ca:a5:81:51:
48:2c:be:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:25:44 2026 by rpki-client