Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
File: AS214451.roa (raw, json)
Hash identifier: vXocKivUiJB0GwVPWLFOVJFAkQCsNzgw/r/JnHoHvA4=
Subject key identifier: 38:AA:C0:B7:1E:92:E3:41:E1:8A:11:4F:56:95:1D:25:D6:9E:5A:11
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 3EB8739AB6BB922B06D9DF1B96DD33431EFFC89A
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
Signing time: Thu 07 May 2026 07:57:16 +0000
ROA not before: Thu 07 May 2026 07:52:16 +0000
ROA not after: Thu 06 May 2027 07:57:16 +0000
asID: 214451
IP address blocks: 103.254.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:b8:73:9a:b6:bb:92:2b:06:d9:df:1b:96:dd:33:43:1e:ff:c8:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: May 7 07:52:16 2026 GMT
Not After : May 6 07:57:16 2027 GMT
Subject: CN=38AAC0B71E92E341E18A114F56951D25D69E5A11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:11:09:e9:93:7d:ae:96:e0:31:c2:6c:6b:1d:
85:dd:bb:19:69:4a:d6:9d:69:1d:af:7f:9b:44:d0:
42:ca:bc:17:fc:82:24:e4:e3:4c:ce:83:b9:99:98:
77:79:97:17:9f:96:b7:4a:43:bb:95:2c:e4:54:96:
60:69:c9:ef:a7:fa:62:67:88:c5:ed:51:52:35:b3:
d1:ba:70:a8:88:18:d8:ff:5c:64:00:97:a5:d3:8f:
d5:28:92:52:6e:f2:fc:a3:65:4e:71:14:74:56:76:
1d:39:53:77:62:29:7d:cc:e5:8a:8d:87:75:95:ad:
9a:6a:ca:4f:0f:ad:71:09:d4:2b:09:c2:5c:1f:f7:
bf:96:61:f0:51:2c:19:3b:f0:19:af:b5:25:ca:e9:
37:2a:80:38:43:8d:8a:93:bf:a8:14:68:f0:bc:28:
38:c2:c9:79:f9:87:25:cc:ac:71:c0:c7:0f:7c:d7:
b4:36:2b:ba:85:27:c0:2b:f1:0b:c2:83:66:a2:71:
aa:83:c8:35:87:06:9d:7d:f1:09:d4:c5:34:57:86:
74:fc:30:1e:87:e8:6b:ec:d1:9d:1f:a9:80:0a:ac:
43:86:8b:c7:99:d1:20:56:96:39:d9:da:4e:ae:52:
f2:92:6e:a2:26:30:e0:37:e6:21:09:e1:ba:e8:40:
26:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AA:C0:B7:1E:92:E3:41:E1:8A:11:4F:56:95:1D:25:D6:9E:5A:11
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.254.62.0/24
Signature Algorithm: sha256WithRSAEncryption
10:73:4d:d3:cf:e7:f4:4b:fb:96:a3:c4:f1:ce:8c:6e:9f:76:
98:6f:53:85:fc:fa:5f:56:bd:8a:d7:fd:20:da:8d:d1:30:43:
c7:5e:70:a6:34:c5:c6:f0:de:e3:8e:1f:f8:70:76:d0:dc:06:
f7:bb:86:4b:33:5c:0b:ba:f9:6f:1a:0f:19:3d:a2:56:a2:87:
a2:f1:08:d3:42:3d:1a:53:b6:01:1d:29:7e:85:17:fd:88:1b:
4f:6b:60:f7:88:77:b9:cc:f8:32:81:77:0f:2c:90:16:b2:33:
04:cc:c6:59:bb:bf:b1:fc:2c:f1:3e:a2:cc:c6:83:24:d6:01:
f5:2f:f6:b8:49:65:05:b0:c6:ca:ff:8d:cc:6b:94:d6:b7:bf:
2d:3f:b1:c7:72:8e:96:17:00:b1:cc:28:df:81:a6:64:63:7b:
2f:f6:75:46:64:81:71:bc:58:0c:41:03:c1:e1:01:f6:b3:b3:
12:09:d7:a7:06:de:f2:f3:fa:7b:46:ad:d7:c8:d6:6b:98:ce:
bb:c9:12:25:67:4d:1f:f0:52:09:46:5c:3a:bd:8d:cf:6f:16:
5e:ab:17:69:ac:1f:a1:59:f4:34:7b:cf:91:e1:dd:c2:f0:6c:
da:44:05:e7:b3:a3:11:3e:19:96:b6:a4:07:10:33:b9:f6:6c:
85:51:21:c0
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUPrhzmra7kisG2d8blt0zQx7/yJowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4
ZWE1NDE3NzAeFw0yNjA1MDcwNzUyMTZaFw0yNzA1MDYwNzU3MTZaMDMxMTAvBgNV
BAMTKDM4QUFDMEI3MUU5MkUzNDFFMThBMTE0RjU2OTUxRDI1RDY5RTVBMTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8EQnpk32uluAxwmxrHYXduxlp
StadaR2vf5tE0ELKvBf8giTk40zOg7mZmHd5lxeflrdKQ7uVLORUlmBpye+n+mJn
iMXtUVI1s9G6cKiIGNj/XGQAl6XTj9UoklJu8vyjZU5xFHRWdh05U3diKX3M5YqN
h3WVrZpqyk8PrXEJ1CsJwlwf97+WYfBRLBk78BmvtSXK6TcqgDhDjYqTv6gUaPC8
KDjCyXn5hyXMrHHAxw9817Q2K7qFJ8Ar8QvCg2aicaqDyDWHBp198QnUxTRXhnT8
MB6H6Gvs0Z0fqYAKrEOGi8eZ0SBWljnZ2k6uUvKSbqImMOA35iEJ4broQCb/AgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUOKrAtx6S40HhihFPVpUdJdaeWhEwHwYDVR0j
BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC
MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT
MjE0NDUxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAZ/4+MA0GCSqGSIb3DQEBCwUAA4IBAQAQc03Tz+f0
S/uWo8Txzoxun3aYb1OF/PpfVr2K1/0g2o3RMEPHXnCmNMXG8N7jjh/4cHbQ3Ab3
u4ZLM1wLuvlvGg8ZPaJWooei8QjTQj0aU7YBHSl+hRf9iBtPa2D3iHe5zPgygXcP
LJAWsjMEzMZZu7+x/CzxPqLMxoMk1gH1L/a4SWUFsMbK/43Ma5TWt78tP7HHco6W
FwCxzCjfgaZkY3sv9nVGZIFxvFgMQQPB4QH2s7MSCdenBt7y8/p7Rq3XyNZrmM67
yRIlZ00f8FIJRlw6vY3PbxZeqxdprB+hWfQ0e8+R4d3C8GzaRAXns6MRPhmWtqQH
EDO59myFUSHA
-----END CERTIFICATE-----
Generated at Tue May 12 23:36:47 2026 by rpki-client