Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
File: AS214451.roa (raw, json)
Hash identifier: fYpXO6DTPXsvbnHFXyuhjzTMvehVgmxRPxO1+Dfs/Ow=
Subject key identifier: EE:D7:BA:60:30:9C:1E:E4:4E:40:71:C8:5C:3E:40:DE:84:19:DE:00
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 4435325283E41A39F9FBE25518D9538678EE7A01
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
Signing time: Tue 19 Aug 2025 10:32:01 +0000
ROA not before: Tue 19 Aug 2025 10:27:01 +0000
ROA not after: Tue 18 Aug 2026 10:32:01 +0000
asID: 214451
IP address blocks: 195.184.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:35:32:52:83:e4:1a:39:f9:fb:e2:55:18:d9:53:86:78:ee:7a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Aug 19 10:27:01 2025 GMT
Not After : Aug 18 10:32:01 2026 GMT
Subject: CN=EED7BA60309C1EE44E4071C85C3E40DE8419DE00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0f:42:4f:58:39:17:65:73:83:c7:49:d5:a4:
b6:a3:d2:52:b7:f7:79:b8:8d:61:fd:0b:54:dd:3b:
bf:6f:b0:19:2e:f3:42:de:60:d1:b1:9e:c8:ab:a0:
94:35:67:99:13:d5:a6:a9:86:3d:d6:26:20:13:93:
57:99:f7:7d:6c:e9:64:0f:ed:d7:6b:14:dc:96:f8:
27:26:a7:c8:06:2b:f1:5a:73:04:c6:89:be:ff:c2:
cf:aa:08:6c:ce:0c:60:3a:ae:5b:01:47:ca:4c:68:
c4:50:37:0c:8b:0e:3d:19:83:8f:49:78:d7:b3:ab:
92:67:2b:54:7f:56:38:59:2b:c8:44:bf:08:e7:67:
bb:b4:05:a2:c6:6b:e5:b8:ab:7b:9d:86:28:c3:b6:
7e:f3:c4:62:37:f7:3f:44:48:a8:b5:f0:71:81:8f:
40:be:0e:64:09:09:ae:fe:b8:2c:4e:b7:d3:bc:98:
55:b5:d9:6d:da:1f:85:a1:d9:60:fb:7f:4a:f3:dd:
9f:87:f5:c7:9b:91:97:eb:03:24:92:1f:82:22:f4:
34:01:aa:8b:52:70:23:dc:fe:9c:f7:de:ec:11:55:
b5:84:2e:47:03:37:6c:f3:f2:bc:7b:59:2a:db:11:
4a:bf:40:a7:74:e9:f2:80:64:96:9f:de:fc:64:40:
8b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D7:BA:60:30:9C:1E:E4:4E:40:71:C8:5C:3E:40:DE:84:19:DE:00
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214451.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.247.0/24
Signature Algorithm: sha256WithRSAEncryption
16:93:8e:00:e8:dd:90:49:c9:df:a3:86:77:dc:fe:06:fc:71:
a0:bd:63:01:ce:f3:61:6d:d0:fb:68:ed:82:f0:17:11:55:a6:
6d:61:ee:06:16:74:7a:98:34:c5:ef:b8:26:23:0f:6c:7f:91:
f7:86:7c:02:8f:6c:61:38:ce:04:0d:3d:d0:57:d5:c5:3c:e2:
b2:65:8f:13:ef:b2:1e:14:c2:83:df:21:e0:e4:6b:75:64:c5:
d1:a4:81:a5:e8:d3:d5:75:63:32:21:a3:2e:05:4a:ee:5a:a8:
20:ab:69:70:22:4a:1f:76:24:ec:9e:0b:22:2b:0c:16:ed:2f:
dc:f6:0c:e5:f2:98:cd:1d:80:5b:af:3d:b3:1c:e6:00:c9:36:
d9:90:37:5b:b7:06:86:80:46:57:6c:c3:40:02:9a:08:8a:ca:
1f:64:03:cb:44:24:1f:59:5d:81:dd:e5:c5:73:31:0e:9b:42:
1a:b5:f4:b7:f5:70:38:97:42:44:b6:43:cf:7b:5f:36:ab:cc:
a9:45:b5:85:2e:55:81:65:25:c3:d0:ff:b7:4f:8b:b9:d8:9c:
d9:e3:e8:4f:86:1c:c6:e1:b7:1b:03:2e:16:6c:33:0d:d5:1c:
7c:e7:17:37:5c:6d:24:da:7d:7d:11:a4:5f:2d:4b:93:a9:8b:
85:15:03:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:47:49 2025 by rpki-client