Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32342d3234203d3e203336323336.roa
File:                     3130332e3235342e3136302e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier:          dWrcycrLLdaoPlsy8HkcNtwwwER52Zzvh0/GB4qPdF0=
Subject key identifier:   D7:6F:D3:02:B5:2C:C1:B4:AE:C7:D8:7C:06:74:37:22:80:4D:49:B3
Certificate issuer:       /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial:       75B53904EEF580BA7BEACE21F422EFC6054BCBC4
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32342d3234203d3e203336323336.roa
Signing time:             Mon 06 Jul 2026 23:29:12 +0000
ROA not before:           Mon 06 Jul 2026 23:24:12 +0000
ROA not after:            Mon 05 Jul 2027 23:29:12 +0000
asID:                     36236
IP address blocks:        103.254.160.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
                          rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 02:19:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            75:b5:39:04:ee:f5:80:ba:7b:ea:ce:21:f4:22:ef:c6:05:4b:cb:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
        Validity
            Not Before: Jul  6 23:24:12 2026 GMT
            Not After : Jul  5 23:29:12 2027 GMT
        Subject: CN=D76FD302B52CC1B4AEC7D87C06743722804D49B3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:fd:57:46:e1:11:c8:f5:4b:44:ad:e8:c1:7a:
                    dc:29:52:68:60:60:63:54:a5:bb:59:b0:32:ef:19:
                    05:19:67:36:69:8f:b9:0e:6e:21:83:3f:17:50:f8:
                    07:2e:77:db:02:c0:05:3d:6d:06:23:be:cb:39:40:
                    5c:6a:cf:23:da:e5:88:02:69:d6:7f:fb:52:77:38:
                    ef:90:43:77:b9:fe:df:c8:27:5f:3f:ff:aa:81:44:
                    dc:23:5a:23:40:6c:4e:43:ae:a9:80:9e:57:87:27:
                    90:9a:52:c4:aa:93:2b:47:85:f3:0f:d2:2e:01:bb:
                    89:ca:b6:d4:32:b5:5d:28:af:60:6c:6e:a7:e6:3c:
                    29:61:2f:f3:a8:d9:a7:4b:17:b7:85:22:55:80:ec:
                    c7:41:11:d5:fe:29:ed:a4:42:63:6e:a4:3e:20:e6:
                    8e:ee:27:75:5f:5d:81:fc:18:63:ae:72:6c:59:bf:
                    4e:8b:76:23:36:48:d4:ec:6c:a0:2a:f8:b1:d3:dc:
                    56:66:0c:c2:da:99:8a:78:49:09:52:02:2e:c6:db:
                    3a:11:a3:84:39:30:ff:c7:3d:f7:64:f1:33:05:3d:
                    90:44:2c:c0:09:6c:ba:03:cb:b6:ed:81:68:69:28:
                    65:67:ef:04:e3:46:ed:b9:70:b4:05:09:b2:24:17:
                    c3:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:6F:D3:02:B5:2C:C1:B4:AE:C7:D8:7C:06:74:37:22:80:4D:49:B3
            X509v3 Authority Key Identifier:
                keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/3130332e3235342e3136302e302f32342d3234203d3e203336323336.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.254.160.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:eb:8c:dd:4b:b7:a7:c9:76:70:ee:97:4b:6b:3e:2a:c9:1d:
         e9:39:29:4e:47:fa:a0:81:cd:e6:6b:04:df:3f:24:01:0b:9a:
         f7:b6:1c:7b:08:71:f6:ed:4e:4e:2c:9e:97:aa:1b:a3:0e:07:
         e6:3e:26:2e:e9:74:a0:21:08:3c:3e:99:22:4c:8e:f8:15:a5:
         ea:92:b2:76:5b:26:85:3f:0b:cc:c5:e3:b3:31:1c:f7:10:45:
         fd:af:4f:7a:5d:ac:37:8a:ac:24:27:40:8b:ac:eb:dc:26:8a:
         22:52:88:56:c3:c9:a3:e3:6d:4a:a2:81:41:d1:47:56:dd:34:
         24:35:68:6a:52:59:ec:df:dd:ef:a4:ec:fb:1a:8e:cd:b3:5a:
         4e:9a:9b:93:ab:57:1c:61:04:fd:9d:2f:ac:d3:bd:98:7d:ca:
         9a:65:29:26:5a:cb:7d:f1:f0:b3:96:3f:50:8e:92:d7:57:3e:
         b0:72:0b:bf:a6:39:c6:8b:b3:6d:eb:9f:3c:ad:a7:49:2a:b1:
         22:ab:5e:4a:1e:12:46:68:9f:bf:c6:c1:24:57:39:1f:b5:49:
         70:80:79:73:a9:9a:72:7b:88:76:2c:0d:26:8d:fe:36:98:37:
         d7:88:4e:e7:15:ea:1f:3c:c8:7e:bd:e4:3b:70:20:c1:56:97:
         98:1a:3b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:59 2026 by rpki-client