Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215225.roa
File: AS215225.roa (raw, json)
Hash identifier: NNkWjalOmxArI2cHR7YPV3HFIv+xkU4wlrd9J7PXmGA=
Subject key identifier: 81:93:85:93:B1:FE:B3:58:5C:76:26:2E:83:E6:2E:F0:49:58:01:F2
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 15E7AB001815D7ACCD031E7BC77A848631850A78
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215225.roa
Signing time: Fri 24 Apr 2026 06:52:40 +0000
ROA not before: Fri 24 Apr 2026 06:47:40 +0000
ROA not after: Fri 23 Apr 2027 06:52:40 +0000
asID: 215225
IP address blocks: 5.253.85.0/24 maxlen: 24
153.76.115.0/24 maxlen: 24
168.222.242.0/24 maxlen: 24
206.53.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:e7:ab:00:18:15:d7:ac:cd:03:1e:7b:c7:7a:84:86:31:85:0a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 24 06:47:40 2026 GMT
Not After : Apr 23 06:52:40 2027 GMT
Subject: CN=81938593B1FEB3585C76262E83E62EF0495801F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9d:b9:4a:72:dc:ff:e3:ea:a4:a8:5a:5e:5f:
4d:79:3a:fd:dc:23:13:09:97:3d:a9:06:d4:26:c0:
dd:09:5e:cf:a8:e8:e5:c9:56:85:8e:d1:c0:32:99:
5e:8e:33:4d:df:25:58:a1:a0:62:a5:28:14:f7:76:
6b:55:3b:99:cd:47:a8:cd:da:b0:5f:03:ea:2a:74:
40:5f:01:fe:23:06:52:71:80:23:2c:7d:47:c6:d1:
21:57:8a:62:89:f9:45:39:8d:62:3a:d9:c9:5f:3b:
1b:e0:ee:a0:f8:ed:9b:65:ac:24:61:23:5f:20:c8:
2b:a0:95:d1:76:c8:ad:f4:94:94:6c:eb:e9:3f:eb:
0f:b8:d4:ee:ac:0e:7d:69:0d:4b:cb:7c:53:8a:fc:
a7:68:80:e2:78:94:a0:1e:0b:26:c8:7a:e6:f5:60:
08:82:dc:d7:33:88:cd:d9:96:bd:bc:92:d7:4a:e2:
f2:63:70:1d:60:85:52:d7:13:a8:2c:9c:21:fc:f7:
a1:72:49:4b:0a:b5:de:b1:b6:4a:57:09:ed:bf:24:
6e:16:55:b0:3f:d3:69:03:3c:48:76:72:05:6e:0b:
3a:f2:6f:1d:1b:a6:e3:ae:95:69:b9:52:c1:e8:6d:
7e:d2:91:44:88:4a:9d:a8:ca:ca:d8:7c:36:2f:d8:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:93:85:93:B1:FE:B3:58:5C:76:26:2E:83:E6:2E:F0:49:58:01:F2
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS215225.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.85.0/24
153.76.115.0/24
168.222.242.0/24
206.53.1.0/24
Signature Algorithm: sha256WithRSAEncryption
44:e7:a1:5c:94:56:e3:86:aa:59:e4:b6:cc:a6:e4:b7:ce:bd:
fa:bd:4f:6f:f9:b3:65:56:9e:a3:e0:45:6b:84:44:c3:49:2f:
42:5f:13:4c:41:1d:01:2d:f1:34:7e:16:cd:ee:d9:a3:21:71:
56:d7:af:7e:a4:35:06:73:18:52:68:0d:c5:83:ac:05:6f:e5:
50:8e:a6:bc:55:bf:4c:8e:c0:32:1d:02:30:e4:91:91:f0:b6:
d2:49:7b:6d:e3:e4:be:cc:84:63:39:16:4c:04:af:64:ad:86:
35:7f:dc:b6:bd:98:2f:41:69:e8:da:98:67:4e:b8:33:e0:76:
13:08:3b:11:90:cb:18:6e:e5:6a:6d:bf:1d:de:26:15:9b:3e:
22:1f:dc:c3:45:8d:63:9d:5a:da:99:9a:cd:cc:2e:a5:2e:8c:
c1:6f:d7:af:ef:d7:79:d5:f9:c0:05:49:5a:73:05:2d:73:8c:
05:67:cb:1b:29:e6:b7:a0:28:31:2d:4c:14:cc:32:73:ff:a5:
24:f5:c8:b0:8b:34:41:1d:1d:b3:61:91:9d:86:ba:a8:cf:db:
37:1a:18:e7:75:43:e8:db:8e:7c:33:43:72:2a:d9:40:73:5c:
1c:f9:a2:85:59:c6:9b:f7:05:f9:fc:a8:9d:55:7c:b7:0a:19:
b7:03:d8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:35:10 2026 by rpki-client