Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
File: AS207513.roa (raw, json)
Hash identifier: GONyDe0/DZAY4JwrW8xxwURAELS+Q4gt1T50dUqlmok=
Subject key identifier: 57:BF:E9:80:3A:D8:3D:00:6A:3E:87:E1:78:91:97:1A:4A:52:7A:68
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2195C6491755386D71CD173294F1024ED5A53A73
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
Signing time: Mon 09 Mar 2026 14:43:49 +0000
ROA not before: Mon 09 Mar 2026 14:38:49 +0000
ROA not after: Mon 08 Mar 2027 14:43:49 +0000
asID: 207513
IP address blocks: 81.31.209.0/24 maxlen: 24
83.142.30.0/24 maxlen: 24
85.155.96.0/24 maxlen: 24
85.155.101.0/24 maxlen: 24
85.155.124.0/24 maxlen: 24
85.155.125.0/24 maxlen: 24
103.68.110.0/24 maxlen: 24
103.137.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:95:c6:49:17:55:38:6d:71:cd:17:32:94:f1:02:4e:d5:a5:3a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Mar 9 14:38:49 2026 GMT
Not After : Mar 8 14:43:49 2027 GMT
Subject: CN=57BFE9803AD83D006A3E87E17891971A4A527A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f9:16:23:a6:85:45:17:6c:89:2d:a5:25:c7:
68:8d:4d:0a:04:08:07:32:a6:40:8a:08:08:69:54:
32:7c:dc:c3:b1:cf:16:b6:3a:f9:ac:7f:70:e1:8f:
e1:ea:8c:01:ca:d4:92:02:3f:08:ff:9f:db:5a:57:
b0:56:30:62:61:a3:e9:ba:4d:fc:c5:bd:c0:9c:e8:
4c:ec:50:c2:65:ec:e2:3a:f4:39:5f:4d:06:46:a0:
65:f8:a3:fa:ab:3f:6b:ec:ff:81:cc:e9:82:b7:d3:
c1:88:4f:89:08:43:4c:64:5b:b3:86:a6:a3:3f:aa:
3b:22:e5:c5:e1:dd:51:b5:7a:22:d7:36:d6:a8:25:
af:c8:3e:6d:0c:a2:b9:a4:00:ba:36:7d:6c:6d:71:
dc:17:ff:44:7c:d5:44:8a:81:77:17:14:cc:69:60:
49:04:7a:d2:33:c3:22:17:09:e1:9b:80:97:56:1d:
7b:68:40:56:db:a3:23:1a:fa:d2:c7:f3:78:95:b3:
93:ca:b5:cb:a0:d9:b0:8b:f2:a6:82:5d:3a:76:09:
97:62:33:6d:90:0f:4b:a7:fd:3f:b9:e0:2e:43:b2:
32:d0:54:1b:96:50:f6:04:47:db:bc:46:70:9f:40:
5b:2e:c8:55:ff:15:24:df:76:fc:01:29:72:63:4f:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BF:E9:80:3A:D8:3D:00:6A:3E:87:E1:78:91:97:1A:4A:52:7A:68
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS207513.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.209.0/24
83.142.30.0/24
85.155.96.0/24
85.155.101.0/24
85.155.124.0/23
103.68.110.0/24
103.137.193.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:83:37:75:6c:92:52:f4:d2:f3:5e:31:2c:a1:16:76:e5:38:
cb:53:ad:f8:39:23:e2:28:72:22:a2:51:d0:75:d0:20:7b:7e:
1f:87:a2:73:11:76:6e:92:7e:50:be:d7:0a:a8:4f:82:d5:ad:
61:19:25:4d:f3:eb:75:6f:2d:9f:12:ef:98:7f:48:b7:6e:3b:
0b:f4:8f:b5:ce:fb:30:d4:22:ea:22:f2:c8:68:17:f4:9b:f8:
c8:a2:ee:ff:d4:20:65:ee:67:50:a0:1e:8d:08:0e:d1:26:39:
24:64:0a:e4:bb:37:95:b7:7a:01:2e:a0:07:a0:a5:32:ee:a8:
68:3a:7b:3b:92:c5:8a:a0:04:47:0e:af:0c:6a:02:f5:9a:e1:
87:52:2d:bb:d7:d8:b7:18:65:f6:a8:d8:02:69:0d:e1:3c:94:
0f:d7:29:74:7e:66:22:cd:0a:97:a1:50:4e:25:c7:14:5d:2d:
6c:16:29:4c:f4:ca:27:48:62:ab:0e:f4:42:09:84:71:bb:1e:
a4:9c:c4:7b:4f:43:a1:34:71:f1:3c:0e:fd:2b:b7:ea:aa:e2:
f5:85:e4:36:4a:a0:a6:28:eb:64:cc:c9:52:b6:b2:1a:b6:ba:
7e:51:5d:ad:8f:db:a1:a6:08:cb:c9:03:55:36:68:0d:7a:e5:
6d:4f:52:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:21:52 2026 by rpki-client