Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/AS401507.roa
File: AS401507.roa (raw, json)
Hash identifier: 7gb4SD5+2b0Tem3gKMgVmKpvJGfTff8cSasbobYFg+o=
Subject key identifier: 9F:20:39:6B:CA:C8:10:E2:75:49:47:DE:68:C4:B0:0D:17:59:4F:75
Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45
Certificate serial: 6C9C1B7E4E9DF98393CFE98FF24892A179DA81FB
Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/AS401507.roa
Signing time: Sat 10 May 2025 03:05:57 +0000
ROA not before: Sat 10 May 2025 03:00:57 +0000
ROA not after: Sat 09 May 2026 03:05:57 +0000
asID: 401507
IP address blocks: 2a14:7584:6000::/36 maxlen: 48
2a14:7584:61c1::/48 maxlen: 48
2a14:7584:61c7::/48 maxlen: 48
2a14:7584:61cc::/48 maxlen: 48
2a14:7584:61cd::/48 maxlen: 48
2a14:7584:61ce::/48 maxlen: 48
2a14:7584:61cf::/48 maxlen: 48
2a14:7584:61d1::/48 maxlen: 48
2a14:7584:61d2::/48 maxlen: 48
2a14:7584:61d3::/48 maxlen: 48
2a14:7584:61d4::/48 maxlen: 48
2a14:7584:61d5::/48 maxlen: 48
2a14:7584:61d6::/48 maxlen: 48
2a14:7584:61d7::/48 maxlen: 48
2a14:7584:622d::/48 maxlen: 48
2a14:7584:622f::/48 maxlen: 48
2a14:7584:6231::/48 maxlen: 48
2a14:7584:6232::/48 maxlen: 48
2a14:7584:6233::/48 maxlen: 48
2a14:7584:6234::/48 maxlen: 48
2a14:7584:6235::/48 maxlen: 48
2a14:7584:6236::/48 maxlen: 48
2a14:7584:6237::/48 maxlen: 48
2a14:7584:6238::/48 maxlen: 48
2a14:7584:6239::/48 maxlen: 48
2a14:7584:623a::/48 maxlen: 48
2a14:7584:623b::/48 maxlen: 48
2a14:7584:623c::/48 maxlen: 48
2a14:7584:623d::/48 maxlen: 48
2a14:7584:623e::/48 maxlen: 48
2a14:7584:623f::/48 maxlen: 48
2a14:7584:6241::/48 maxlen: 48
2a14:7584:6242::/48 maxlen: 48
2a14:7584:6243::/48 maxlen: 48
2a14:7584:6244::/48 maxlen: 48
2a14:7584:6247::/48 maxlen: 48
2a14:7584:6248::/48 maxlen: 48
2a14:7584:624c::/48 maxlen: 48
2a14:7584:624d::/48 maxlen: 48
2a14:7584:624e::/48 maxlen: 48
2a14:7584:6251::/48 maxlen: 48
2a14:7584:6252::/48 maxlen: 48
2a14:7584:6253::/48 maxlen: 48
2a14:7584:6254::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl
rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:27:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:9c:1b:7e:4e:9d:f9:83:93:cf:e9:8f:f2:48:92:a1:79:da:81:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45
Validity
Not Before: May 10 03:00:57 2025 GMT
Not After : May 9 03:05:57 2026 GMT
Subject: CN=9F20396BCAC810E2754947DE68C4B00D17594F75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c5:38:31:43:e7:29:76:a1:f5:9f:82:c2:bf:
78:42:51:67:6e:9f:02:9f:51:c1:30:d0:3b:e1:12:
df:a3:29:bf:cf:37:9b:f6:0f:06:63:df:23:34:18:
f0:74:3a:5a:89:19:6d:9c:8e:52:51:51:34:ee:42:
50:c9:bd:b2:85:13:09:fb:52:20:14:ce:f0:85:ab:
ed:70:40:35:e0:9d:49:29:34:d8:79:f1:39:c7:ee:
59:5e:14:67:bb:97:af:fe:73:43:64:a5:b9:25:82:
99:3c:98:56:5f:2d:7f:02:20:c0:ec:39:88:2b:96:
84:fe:c2:b3:c3:06:2e:54:59:80:af:e6:01:8f:10:
34:be:a1:25:12:1f:b0:b2:49:52:b7:d2:f3:d2:bd:
c1:9c:51:b6:a3:0b:94:45:05:8d:a5:bc:c2:f9:df:
58:9b:4d:4a:d3:49:50:4b:c5:39:45:ce:25:fb:ac:
a3:b1:5a:8d:0c:40:e2:b8:51:47:49:17:ac:41:ae:
58:55:42:c2:46:9a:63:41:75:aa:6b:54:d2:9a:ef:
d2:3b:ee:40:7a:78:4a:89:84:f0:a6:de:84:07:82:
ac:02:97:bd:eb:3b:02:70:51:04:f1:47:84:d5:81:
b3:61:da:c8:97:ca:62:7d:ab:de:a6:47:bb:98:94:
03:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:20:39:6B:CA:C8:10:E2:75:49:47:DE:68:C4:B0:0D:17:59:4F:75
X509v3 Authority Key Identifier:
keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/AS401507.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7584:6000::/36
Signature Algorithm: sha256WithRSAEncryption
3f:98:b9:16:56:4e:6f:3f:f2:9b:e5:75:80:06:58:e8:98:41:
e7:12:ac:49:aa:3f:33:24:ac:21:fa:4c:5a:1d:d4:97:bc:bd:
4d:34:7c:9e:d2:25:de:ee:0e:95:54:f7:62:7c:d3:f0:d4:a9:
d8:a3:6e:00:63:c9:2d:cd:38:b2:22:5c:98:6a:9f:59:f4:01:
c5:f3:20:69:1d:62:ab:9b:cd:ad:a0:d6:09:c0:db:87:f3:4f:
58:1d:44:3b:22:b9:63:89:14:7d:95:59:53:41:e5:46:90:71:
c8:3a:92:49:f6:5e:57:1f:1b:75:9c:8f:fe:a2:fa:63:58:d2:
31:8b:22:c0:0d:7e:ca:c1:c9:19:4c:69:ed:e9:2b:fc:3a:2f:
14:8f:fc:7e:0f:1d:a3:60:3a:23:ef:ad:52:02:77:16:83:2b:
20:8a:37:2a:5d:98:71:a1:6c:61:d1:a4:eb:f1:d8:27:a4:4d:
8a:88:c7:60:b2:a1:0d:4b:b7:fe:bf:ef:73:df:c8:bb:f2:8a:
47:cb:fa:27:4d:36:71:19:87:72:99:0a:86:fd:01:4e:93:5a:
35:23:3b:7c:94:1f:6e:66:6d:56:a2:a1:ae:5e:dd:01:80:06:
52:a9:73:da:53:94:da:1b:0a:47:16:04:4d:15:ac:bb:92:30:
91:33:de:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:45:31 2025 by rpki-client