Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32322d3232203d3e203336323336.roa
File:                     3130332e3235342e3136302e302f32322d3232203d3e203336323336.roa (raw, json)
Hash identifier:          qD5QHvgUZ/1K0P6aoQ7AnEzmqmRiWi9on9g7nGjGub8=
Subject key identifier:   4D:FC:8C:80:F7:26:D9:81:0A:77:34:B4:D0:5C:A9:E8:A0:0D:46:12
Certificate issuer:       /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial:       7B6F01F27E477999744B6D33C735CF33F88B5FF1
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32322d3232203d3e203336323336.roa
Signing time:             Mon 06 Jul 2026 23:29:12 +0000
ROA not before:           Mon 06 Jul 2026 23:24:12 +0000
ROA not after:            Mon 05 Jul 2027 23:29:12 +0000
asID:                     36236
IP address blocks:        103.254.160.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
                          rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 02:19:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:6f:01:f2:7e:47:79:99:74:4b:6d:33:c7:35:cf:33:f8:8b:5f:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
        Validity
            Not Before: Jul  6 23:24:12 2026 GMT
            Not After : Jul  5 23:29:12 2027 GMT
        Subject: CN=4DFC8C80F726D9810A7734B4D05CA9E8A00D4612
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:76:2d:bf:98:39:c2:e4:b0:3e:dc:9c:2f:e4:
                    3a:83:12:23:ef:da:71:2a:37:28:fe:7b:05:62:6d:
                    2e:70:e1:46:9e:3a:01:74:c4:29:7d:90:72:7f:8e:
                    c9:db:5e:9f:19:40:79:eb:41:c9:26:58:0a:cd:08:
                    41:58:65:66:2b:51:dc:31:b9:96:2d:ed:9c:03:b0:
                    f8:6f:7d:2e:ed:06:a6:83:c9:eb:d0:25:5f:d9:4f:
                    4b:08:05:9b:e5:e4:45:b6:a2:e9:fb:13:49:b3:5c:
                    5c:12:11:4d:d6:0e:29:82:1f:ae:e3:05:21:fe:52:
                    43:ef:52:a5:fc:38:0f:af:63:14:a5:b9:0b:19:cc:
                    8b:29:55:d2:e5:79:e4:df:1f:82:f5:5d:aa:dd:87:
                    17:04:db:d5:73:6e:20:33:aa:42:12:8e:95:7b:59:
                    69:f6:ba:26:4f:d1:78:15:c3:9f:b1:f9:a9:86:4b:
                    b0:e4:01:fd:8b:47:79:09:9e:46:ab:78:76:59:07:
                    f6:5c:33:16:62:48:e9:2b:c9:8e:e7:9e:78:4c:7b:
                    09:06:0b:c7:de:ed:c8:21:b2:31:ff:9c:e5:e7:96:
                    94:ec:11:56:7a:78:ac:a4:5d:6d:a2:a3:38:2a:a7:
                    87:90:6f:d1:09:2b:e8:31:9e:ca:79:36:23:b8:a2:
                    49:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:FC:8C:80:F7:26:D9:81:0A:77:34:B4:D0:5C:A9:E8:A0:0D:46:12
            X509v3 Authority Key Identifier:
                keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32322d3232203d3e203336323336.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.254.160.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a4:83:64:91:4d:dc:02:f2:bc:bb:4e:17:c0:7a:f3:3c:87:91:
         ca:2b:77:d0:64:20:90:e3:a1:8c:ec:06:a1:e9:fd:40:1f:64:
         5d:96:df:4a:98:62:75:16:10:3c:7b:1e:8f:d0:2d:dc:17:3f:
         d1:0e:cb:9d:c1:52:ab:f6:19:ff:6a:5c:02:16:a3:e9:5d:28:
         39:f9:6f:35:78:13:3c:c2:7d:bd:8a:40:bc:29:13:f4:e1:a8:
         69:7a:fd:68:72:e9:ad:db:29:11:ac:39:30:09:bc:53:82:c6:
         6f:18:f4:ad:64:55:72:89:75:84:85:a4:bd:c3:6f:7c:fb:c6:
         a7:60:e0:80:a3:e1:3e:03:30:02:98:61:a1:59:56:bf:03:8d:
         e5:83:c9:7a:20:45:7f:5c:bd:0f:7d:1d:29:aa:72:49:df:58:
         d1:8c:6b:22:ce:ba:dd:cd:97:6f:81:13:09:33:6c:80:d0:a1:
         4b:8a:4a:43:54:da:a4:28:7b:1e:30:a9:ae:ab:ff:17:23:9e:
         ed:8e:c4:41:32:ce:82:08:22:05:2d:55:ad:08:17:b2:17:a2:
         c0:86:01:33:99:06:5f:33:94:64:f8:08:29:15:87:35:a1:3c:
         a7:a2:31:7b:79:b8:f8:73:ff:1a:44:bc:48:bb:6c:ba:b3:6e:
         fa:5d:05:5b
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIUe28B8n5HeZl0S20zxzXPM/iLX/EwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0
QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI2MDcwNjIzMjQxMloX
DTI3MDcwNTIzMjkxMlowMzExMC8GA1UEAxMoNERGQzhDODBGNzI2RDk4MTBBNzcz
NEI0RDA1Q0E5RThBMDBENDYxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANt2Lb+YOcLksD7cnC/kOoMSI+/acSo3KP57BWJtLnDhRp46AXTEKX2Qcn+O
ydtenxlAeetBySZYCs0IQVhlZitR3DG5li3tnAOw+G99Lu0GpoPJ69AlX9lPSwgF
m+XkRbai6fsTSbNcXBIRTdYOKYIfruMFIf5SQ+9Spfw4D69jFKW5CxnMiylV0uV5
5N8fgvVdqt2HFwTb1XNuIDOqQhKOlXtZafa6Jk/ReBXDn7H5qYZLsOQB/YtHeQme
Rqt4dlkH9lwzFmJI6SvJjueeeEx7CQYLx97tyCGyMf+c5eeWlOwRVnp4rKRdbaKj
OCqnh5Bv0Qkr6DGeynk2I7iiSXcCAwEAAaOCAj4wggI6MB0GA1UdDgQWBBRN/IyA
9ybZgQp3NLTQXKnooA1GEjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x
hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2
ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE
RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3
QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaQGCCsG
AQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5jOi8vcnBraS1ycHMuYXJp
bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4
Ni8zLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNl
MjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/6gMA0GCSqGSIb3DQEBCwUAA4IBAQCk
g2SRTdwC8ry7ThfAevM8h5HKK3fQZCCQ46GM7Aah6f1AH2Rdlt9KmGJ1FhA8ex6P
0C3cFz/RDsudwVKr9hn/alwCFqPpXSg5+W81eBM8wn29ikC8KRP04ahpev1ocumt
2ykRrDkwCbxTgsZvGPStZFVyiXWEhaS9w298+8anYOCAo+E+AzACmGGhWVa/A43l
g8l6IEV/XL0PfR0pqnJJ31jRjGsizrrdzZdvgRMJM2yA0KFLikpDVNqkKHseMKmu
q/8XI57tjsRBMs6CCCIFLVWtCBeyF6LAhgEzmQZfM5Rk+AgpFYc1oTynojF7ebj4
c/8aRLxIu2y6s276XQVb
-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:19 2026 by rpki-client