Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa
File:                     AS7018.roa (raw, json)
Hash identifier:          WGEkSaPdIZqyI9BTX3OD19r5Z5dYeCc9HfzpT9MGosM=
Subject key identifier:   02:A9:DC:48:07:3C:B6:A3:36:51:6F:E5:4F:7F:9F:56:84:7D:46:CD
Certificate issuer:       /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
Certificate serial:       3AF0D68C78D1D15488B5ED09F465BA198ACA0C78
Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa
Signing time:             Mon 06 Jul 2026 18:13:05 +0000
ROA not before:           Mon 06 Jul 2026 18:08:05 +0000
ROA not after:            Mon 05 Jul 2027 18:13:05 +0000
asID:                     7018
IP address blocks:        104.234.73.0/24 maxlen: 24
                          104.234.83.0/24 maxlen: 24
                          104.234.122.0/24 maxlen: 24
                          104.234.208.0/23 maxlen: 23
                          104.234.250.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl
                          rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sat 18 Jul 2026 11:02:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:f0:d6:8c:78:d1:d1:54:88:b5:ed:09:f4:65:ba:19:8a:ca:0c:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
        Validity
            Not Before: Jul  6 18:08:05 2026 GMT
            Not After : Jul  5 18:13:05 2027 GMT
        Subject: CN=02A9DC48073CB6A336516FE54F7F9F56847D46CD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:11:87:77:dd:a4:0a:a2:3b:5c:6d:44:08:4b:
                    c0:7d:65:0e:0c:bd:93:8d:e3:a5:00:09:94:7d:4b:
                    91:80:9a:d5:70:24:5b:9c:76:2b:d7:c5:ad:ce:c0:
                    20:e4:14:32:7c:aa:7a:98:b2:72:b3:c8:0b:7f:1a:
                    1f:22:ca:04:a1:72:a0:37:03:7d:6c:a8:d7:1a:c5:
                    36:d4:34:19:dd:b2:15:96:46:79:be:6c:d3:3e:e8:
                    55:04:7c:c2:60:fc:f8:90:b0:bd:fd:33:d1:fe:d5:
                    f8:51:0d:76:2c:dc:71:08:7d:97:38:93:47:ef:58:
                    81:3b:2b:c4:13:b5:16:76:f8:c5:1c:79:c7:31:30:
                    e5:b8:7c:e5:6b:77:50:97:8a:02:af:d8:37:02:4c:
                    c7:41:21:79:53:40:24:45:21:b3:90:2b:17:1f:22:
                    9a:0b:b9:18:0b:2b:14:e6:57:ab:00:07:ea:56:ab:
                    4c:5d:46:33:18:75:33:03:c2:fb:21:51:cf:14:f6:
                    d3:c6:8b:b2:aa:85:c9:27:90:75:aa:15:db:12:7a:
                    12:6e:40:45:41:c2:5d:22:d6:84:66:94:7e:4e:69:
                    e0:59:71:7b:60:84:bb:d9:75:68:da:56:83:c1:28:
                    b1:f3:37:4b:29:52:ce:bc:8b:2e:32:75:d9:f2:0a:
                    a6:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:A9:DC:48:07:3C:B6:A3:36:51:6F:E5:4F:7F:9F:56:84:7D:46:CD
            X509v3 Authority Key Identifier:
                keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  104.234.73.0/24
                  104.234.83.0/24
                  104.234.122.0/24
                  104.234.208.0/23
                  104.234.250.0/24

    Signature Algorithm: sha256WithRSAEncryption
         52:de:8f:58:32:2a:45:be:c6:6d:35:78:9d:cb:02:7d:5d:00:
         34:03:b3:18:24:b0:b7:0e:ac:e7:7a:fc:7d:9b:6b:5c:fb:db:
         9a:f1:01:cb:1a:e9:bf:97:40:52:37:3b:83:c4:c3:8f:33:20:
         87:b6:c8:c8:da:73:f4:dc:33:df:a7:b0:93:f0:79:ee:d2:ba:
         f6:b4:09:2d:d9:12:a6:20:2d:81:da:fd:0b:43:18:e0:61:4f:
         2d:ca:26:94:dc:8d:98:f0:c4:11:bd:b6:18:b2:5a:a6:13:60:
         4c:43:ae:b6:1e:5a:fe:76:52:5f:90:a0:d3:72:40:f0:85:6f:
         03:a1:2a:f0:48:15:33:b7:6b:dd:7f:00:2c:dc:59:02:22:48:
         22:6d:3a:40:2c:9b:72:4b:d8:6d:e2:af:9c:7a:d0:c7:23:05:
         ae:fc:c9:cd:ec:72:95:32:2b:e0:74:20:ff:ec:92:96:9b:d4:
         d8:71:48:a7:1b:95:7b:89:b6:f0:e3:61:3a:be:30:23:0d:3a:
         92:5a:11:61:07:9a:c4:56:41:20:99:b0:ff:68:2a:db:da:c5:
         73:4e:66:f2:03:d5:3e:35:6c:5f:84:01:bc:1b:c1:79:70:e6:
         50:81:b2:82:d1:57:38:d1:a4:e6:3b:72:10:bd:c5:9b:32:3a:
         e2:ba:41:e4
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIUOvDWjHjR0VSIte0J9GW6GYrKDHgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw
Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjYwNzA2MTgwODA1WhcNMjcwNzA1MTgxMzA1
WjAzMTEwLwYDVQQDEygwMkE5REM0ODA3M0NCNkEzMzY1MTZGRTU0RjdGOUY1Njg0
N0Q0NkNEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRGHd92kCqI7
XG1ECEvAfWUODL2TjeOlAAmUfUuRgJrVcCRbnHYr18WtzsAg5BQyfKp6mLJys8gL
fxofIsoEoXKgNwN9bKjXGsU21DQZ3bIVlkZ5vmzTPuhVBHzCYPz4kLC9/TPR/tX4
UQ12LNxxCH2XOJNH71iBOyvEE7UWdvjFHHnHMTDluHzla3dQl4oCr9g3AkzHQSF5
U0AkRSGzkCsXHyKaC7kYCysU5lerAAfqVqtMXUYzGHUzA8L7IVHPFPbTxouyqoXJ
J5B1qhXbEnoSbkBFQcJdItaEZpR+TmngWXF7YIS72XVo2laDwSix8zdLKVLOvIsu
MnXZ8gqmTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKp3EgHPLajNlFv5U9/n1aE
fUbNMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE
AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l
dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv
QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG
CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu
Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut
YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi
MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj
MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j
ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz
LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj
YjJiYWMvMC9BUzcwMTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNwYI
KwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABo6kkDBABo6lMDBABo6noDBAFo6tAD
BABo6vowDQYJKoZIhvcNAQELBQADggEBAFLej1gyKkW+xm01eJ3LAn1dADQDsxgk
sLcOrOd6/H2ba1z725rxAcsa6b+XQFI3O4PEw48zIIe2yMjac/TcM9+nsJPwee7S
uva0CS3ZEqYgLYHa/QtDGOBhTy3KJpTcjZjwxBG9thiyWqYTYExDrrYeWv52Ul+Q
oNNyQPCFbwOhKvBIFTO3a91/ACzcWQIiSCJtOkAsm3JL2G3ir5x60McjBa78yc3s
cpUyK+B0IP/skpab1NhxSKcblXuJtvDjYTq+MCMNOpJaEWEHmsRWQSCZsP9oKtva
xXNOZvID1T41bF+EAbwbwXlw5lCBsoLRVzjRpOY7chC9xZsyOuK6QeQ=
-----END CERTIFICATE-----
Generated at Sat Jul 18 00:15:09 2026 by rpki-client