Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa
File:                     290299e5-0f22-3823-b566-33f7489de718.roa (raw, json)
Hash identifier:          Nuw/aN8iEHAYBcLE7iDEpE3TR5zuIo4TlNzM5VOeDRo=
Subject key identifier:   69:21:E4:13:10:2C:0E:59:DF:A1:1F:CB:28:43:F1:2D:66:03:20:05
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584E35FFD970736B4712A6BC04C0
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa
Signing time:             Thu 18 Jun 2026 09:00:12 +0000
ROA not before:           Thu 18 Jun 2026 09:00:12 +0000
ROA not after:            Wed 16 Sep 2026 09:00:12 +0000
asID:                     33668
IP address blocks:        68.37.218.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 20 Jul 2026 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:35:ff:d9:70:73:6b:47:12:a6:bc:04:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jun 18 09:00:12 2026 GMT
            Not After : Sep 16 09:00:12 2026 GMT
        Subject: CN=087ed60e-286a-4a3f-9930-7ee3fa14b7e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:f2:11:4b:d4:c6:a9:ea:83:76:09:5a:c7:72:
                    66:52:7a:47:4c:c7:ca:f7:36:28:0d:79:73:2a:c1:
                    30:02:4d:79:f9:a0:3a:ff:14:63:b3:fc:76:7d:3c:
                    ca:71:7b:1b:e8:46:6a:ea:b6:f8:be:33:6c:8a:88:
                    c5:20:50:54:1a:c8:bb:b1:c8:e4:9a:38:28:de:1e:
                    3d:79:48:cd:6e:ea:81:a7:4d:54:23:b4:86:7f:a6:
                    18:c9:57:56:44:ec:0c:bb:60:81:7b:e4:17:5c:33:
                    4a:76:4b:09:ac:19:2b:57:eb:bc:82:8e:4b:d4:87:
                    ae:02:4a:25:03:d4:b7:01:5e:7e:58:bd:7d:13:87:
                    a7:32:99:f7:15:90:90:e2:02:9f:85:c7:be:c3:35:
                    72:70:13:c5:3b:92:c0:38:c2:a7:af:3d:39:6b:aa:
                    e3:e8:64:a7:90:18:f4:2b:17:f4:d9:f0:4a:04:59:
                    2f:79:ce:a5:f9:92:98:0b:af:af:c3:d6:ab:16:86:
                    6d:42:f7:a0:35:f1:9d:c3:8a:04:51:96:1c:6c:6f:
                    14:d1:d2:e0:82:b8:a1:db:30:b9:bb:19:e0:82:1e:
                    1e:a9:65:90:46:f2:0a:c9:d4:91:09:91:46:50:f3:
                    64:32:c3:4b:f5:d7:e8:8c:10:74:c8:93:7e:9f:73:
                    6e:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:21:E4:13:10:2C:0E:59:DF:A1:1F:CB:28:43:F1:2D:66:03:20:05
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  68.37.218.0/23

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         50:bd:dd:0d:d8:41:b5:e9:95:49:93:8b:6f:07:5f:71:30:62:
         02:35:a7:22:b1:22:a7:77:0c:2e:f7:36:53:35:16:99:e8:bf:
         b9:05:93:0b:ef:d9:fe:36:87:51:cd:86:77:c2:48:43:63:85:
         3b:78:cb:f6:08:85:bc:a0:32:54:08:56:4a:83:95:9a:5d:85:
         5c:d1:3c:ef:16:08:0d:cb:87:ac:3c:c4:dd:fb:f6:b1:26:ba:
         70:a5:ce:ca:8d:cf:d2:d4:6b:97:e8:db:d9:e4:94:0f:6e:fb:
         bf:70:a8:d9:1d:84:af:aa:1c:11:a2:5e:01:72:47:6f:c5:0b:
         4d:ea:01:f7:f9:de:79:48:fc:ac:3a:f9:36:46:18:38:e0:2d:
         c2:d4:77:9e:67:a6:a2:81:ce:74:7d:6b:29:f7:ed:ed:89:c3:
         21:15:04:f1:b5:b0:5b:09:48:1c:80:f6:97:58:83:41:65:9a:
         4b:17:32:cd:d0:4a:55:e8:82:ca:93:4f:f8:43:5d:23:32:51:
         05:0a:8b:d8:42:58:e2:0b:63:e6:d6:41:fe:87:b2:01:f6:81:
         1d:84:5e:54:46:2a:6a:73:b8:8d:81:1e:24:4a:12:da:b9:05:
         8d:7c:ae:16:c0:ba:6a:07:ee:ee:f8:2b:82:24:ef:dd:3a:3b:
         bb:42:9c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:49 2026 by rpki-client