Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214716.roa
File: AS214716.roa (raw, json)
Hash identifier: +SSoSSk5F7YbQgY2uZAxELzSTEd1AaBEIkgBSMghWog=
Subject key identifier: 99:EC:9E:3D:BE:09:AC:8B:93:BF:05:3D:5D:B6:85:3E:12:4E:4D:70
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 41DC9047D9016E22A7A07152F7B020A02FDEC742
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214716.roa
Signing time: Tue 12 May 2026 14:45:37 +0000
ROA not before: Tue 12 May 2026 14:40:37 +0000
ROA not after: Tue 11 May 2027 14:45:37 +0000
asID: 214716
IP address blocks: 85.155.98.0/24 maxlen: 24
85.155.226.0/24 maxlen: 24
103.109.234.0/24 maxlen: 24
167.104.217.0/24 maxlen: 24
195.184.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:dc:90:47:d9:01:6e:22:a7:a0:71:52:f7:b0:20:a0:2f:de:c7:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: May 12 14:40:37 2026 GMT
Not After : May 11 14:45:37 2027 GMT
Subject: CN=99EC9E3DBE09AC8B93BF053D5DB6853E124E4D70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7b:02:a7:7a:3b:33:09:0a:bb:ab:2f:83:49:
34:04:4d:3e:60:91:90:2b:66:3a:d0:70:f8:8f:b1:
ba:ee:6b:ac:d8:24:ee:95:7a:ff:f5:57:3c:60:2d:
aa:06:e5:10:81:a6:25:b2:88:f0:85:3a:41:bc:53:
43:6c:1a:db:28:f9:fb:15:52:3f:32:40:de:5f:d5:
e0:dc:3d:0c:c2:bc:54:28:15:44:87:39:b3:be:19:
fd:d9:a5:7c:a3:b0:12:3c:0e:a1:81:72:43:52:f2:
5a:37:58:46:41:a4:6e:cf:03:a7:bf:ce:cb:ec:c8:
57:49:41:7f:ef:36:e0:32:3b:c2:66:11:10:71:6e:
41:82:b9:36:02:8a:df:00:11:8e:8e:1a:4c:ff:9b:
c8:6a:d7:2b:bc:c9:b4:c0:9b:89:20:c0:7e:06:2e:
82:29:dc:41:4c:02:e5:f7:43:66:9d:15:0a:ac:66:
8d:01:e0:2f:cf:1a:5e:c4:5c:75:74:6a:51:f7:ea:
38:1a:2c:c8:65:b2:f4:df:da:f7:65:ca:ef:33:de:
f6:06:24:56:59:10:74:fb:35:6d:e8:9e:2a:05:05:
aa:6d:1b:c9:bf:58:db:00:c7:a9:ac:6f:6e:f7:bc:
a0:01:c0:79:ae:28:69:66:78:11:5c:5a:e7:3c:41:
e8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EC:9E:3D:BE:09:AC:8B:93:BF:05:3D:5D:B6:85:3E:12:4E:4D:70
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS214716.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.155.98.0/24
85.155.226.0/24
103.109.234.0/24
167.104.217.0/24
195.184.247.0/24
Signature Algorithm: sha256WithRSAEncryption
97:83:84:e0:49:24:47:d3:eb:14:0f:84:38:d4:1b:45:88:36:
45:9f:9d:5c:d0:ff:7e:6b:bc:ec:74:40:08:86:10:02:48:84:
36:35:e3:ab:13:35:3f:dc:40:ef:a9:4b:17:73:1c:06:28:47:
94:40:32:f5:05:a2:21:f2:f1:5d:e1:c4:3e:8c:21:3c:91:d3:
6b:fb:c8:8f:56:17:3a:0c:85:37:a2:86:c1:6a:a4:20:28:17:
be:f4:a4:47:73:9a:33:ed:45:58:a0:24:a9:15:27:38:4c:81:
33:f9:a6:c5:0f:cd:0c:63:21:a5:5b:04:1b:51:ce:8a:71:c2:
63:78:cd:4e:2d:96:06:bd:6b:08:69:bb:c3:9e:13:bd:67:24:
57:b0:43:e0:7b:d0:c7:45:88:5a:b2:d2:4f:91:06:3a:e6:2e:
06:3a:51:17:25:15:fc:b5:ac:10:5a:9e:f3:1b:ef:db:7a:1f:
63:37:20:db:fa:2a:3b:da:b2:17:4f:06:fc:ef:fa:9c:b5:ce:
c6:9b:96:0e:2c:36:aa:36:11:d8:82:2d:b1:5a:9f:e0:88:d2:
83:3c:e0:2c:7e:d5:9b:c9:dc:85:dc:9d:b4:14:91:dc:c5:c4:
96:fd:fa:d5:b2:e8:9b:8a:d7:79:b9:18:66:21:b0:4c:91:c5:
ca:d2:bf:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:35:09 2026 by rpki-client