Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS30058.roa
File: AS30058.roa (raw, json)
Hash identifier: QKxzfJEORGTKiA4fKnSMGzXHF/t1XRVUoTZaMwjIYA4=
Subject key identifier: BD:BE:8D:8A:5B:90:23:24:18:C6:47:4E:22:33:6B:E4:21:CF:7E:D5
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 2EF8695EC0178FB7E1A4578AD5AD745DA6EE95B0
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS30058.roa
Signing time: Fri 24 Apr 2026 16:52:41 +0000
ROA not before: Fri 24 Apr 2026 16:47:41 +0000
ROA not after: Fri 23 Apr 2027 16:52:41 +0000
asID: 30058
IP address blocks: 206.53.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f8:69:5e:c0:17:8f:b7:e1:a4:57:8a:d5:ad:74:5d:a6:ee:95:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Apr 24 16:47:41 2026 GMT
Not After : Apr 23 16:52:41 2027 GMT
Subject: CN=BDBE8D8A5B90232418C6474E22336BE421CF7ED5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:70:98:03:61:ce:44:a6:a3:8a:8d:ee:ec:f4:
64:99:8a:a4:63:55:a6:46:97:67:ab:a6:19:bf:2b:
c3:fe:35:4b:37:d7:cb:f6:3a:03:b1:41:3d:23:4b:
a9:f4:e3:64:87:59:1b:f5:81:10:09:4b:44:38:74:
39:b5:fd:2b:6d:9b:40:0a:30:3e:3d:2e:ce:31:eb:
87:ca:db:a5:0c:9f:a5:12:b8:e2:03:4e:05:10:89:
37:e3:1c:bb:9d:56:2c:98:f8:7a:d2:f8:6c:fd:6a:
1e:69:1d:b3:b2:e6:8d:a7:0e:94:a4:8b:55:f4:c3:
58:f7:49:29:eb:3c:30:10:79:40:59:90:22:26:66:
5f:ba:6e:b8:98:04:84:66:b9:04:bb:c8:64:ec:db:
dd:96:2b:17:68:19:5f:30:69:83:b2:07:78:af:28:
7e:c6:f4:eb:84:74:32:15:0a:f8:fc:f3:f6:fe:40:
9f:55:f3:31:78:9a:6a:22:ad:ea:fe:ee:e4:90:87:
09:d8:f4:e8:9f:47:05:a9:7f:37:79:91:2c:0c:fa:
75:12:28:aa:73:9f:4e:b1:fe:a9:7a:51:eb:fd:33:
f1:09:c4:4f:fa:36:b6:e3:a6:84:7b:46:c7:19:10:
52:05:d6:be:10:a9:66:e7:88:97:a4:8f:bc:29:a1:
c2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:BE:8D:8A:5B:90:23:24:18:C6:47:4E:22:33:6B:E4:21:CF:7E:D5
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS30058.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.53.1.0/24
Signature Algorithm: sha256WithRSAEncryption
98:13:ee:93:eb:f0:b8:8b:5c:33:30:2f:b1:8f:3a:23:85:4b:
20:57:d1:e8:12:bb:1c:e5:27:ec:3c:71:f6:7e:fe:b4:3f:67:
24:86:90:27:76:52:0e:b9:68:3f:cd:9c:15:ac:fa:e3:4e:21:
f7:23:9d:71:da:bf:90:44:30:96:6d:eb:bc:a3:bf:32:d9:84:
7c:6c:02:91:ec:1c:ca:2b:b7:41:35:fc:2c:7a:28:94:8b:8b:
a3:30:35:8c:c6:90:84:67:a7:b8:9b:20:c8:47:77:ea:99:1a:
bf:22:d9:dc:98:88:23:57:19:ab:67:f1:e5:27:cc:c1:89:9e:
a2:b9:97:dc:cf:68:58:30:19:ad:a5:e8:0c:88:d1:e4:c6:c0:
4f:fb:e4:65:13:8a:cf:cf:bd:ab:cd:2d:54:48:7f:88:55:a5:
ad:13:06:d3:f7:00:f2:0f:20:06:0d:35:84:52:13:70:55:9d:
d0:37:00:d0:14:1f:60:67:2e:3a:6b:d8:9b:66:0f:a0:a1:eb:
d8:ac:8f:9a:e4:1b:5c:d9:40:40:7e:55:b8:9b:89:70:47:09:
55:ce:f3:da:a3:12:e0:3d:66:ef:00:a4:6c:4c:82:37:c3:56:
a0:1d:99:b3:8d:2a:00:79:9c:10:d4:f3:3a:a8:ea:c3:a6:58:
6e:f5:17:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:51:36 2026 by rpki-client