This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa
File:                     3311aef9-8ac3-3227-ae15-f68204bedd03.roa (raw, json)
Hash identifier:          XoPQK0quGgZLMiJuexiY7NRG4zAYxlHcqFoQ6PFeUqQ=
Subject key identifier:   53:08:3F:67:6F:4B:05:A6:4F:94:20:17:C8:D3:66:54:EE:B4:44:DA
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584C751EF241DC74E3167900E280
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa
Signing time:             Thu 08 Jan 2026 14:00:39 +0000
ROA not before:           Thu 08 Jan 2026 14:00:39 +0000
ROA not after:            Wed 08 Apr 2026 13:00:39 +0000
asID:                     33668
IP address blocks:        68.49.12.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 23 Jan 2026 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4c:75:1e:f2:41:dc:74:e3:16:79:00:e2:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jan  8 14:00:39 2026 GMT
            Not After : Apr  8 13:00:39 2026 GMT
        Subject: CN=e8cbdf35-caa3-4892-a5fe-99132f95a70d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:4d:e5:9f:dc:01:ce:11:66:3e:a0:0c:b6:57:
                    a0:17:de:69:bc:4a:c2:41:60:66:e0:e7:ef:92:a0:
                    ed:4c:60:d8:0b:4b:9e:57:8b:9e:9b:0f:09:97:13:
                    16:a7:55:85:75:20:20:ef:07:cf:78:51:0a:fa:ac:
                    d5:1a:7c:d3:41:23:86:fe:2a:24:b0:6f:83:81:6b:
                    1c:37:dd:5a:b1:88:7d:c5:52:fe:29:df:bc:b0:38:
                    c6:9d:71:77:a6:34:6b:88:da:f0:71:26:ce:1a:31:
                    52:f0:2b:56:65:43:32:34:81:40:cf:6b:97:7c:98:
                    fa:a7:99:85:59:06:ee:01:aa:d8:5f:69:86:32:6e:
                    66:2c:e3:57:46:5a:01:04:7c:f4:b5:cf:d2:e5:92:
                    64:31:c2:ae:b2:bc:78:32:77:01:d5:32:14:bd:29:
                    61:f7:f4:c1:60:60:79:3c:41:00:62:3c:7e:3e:b4:
                    22:bd:20:97:20:35:d1:78:ba:c7:8e:59:f4:f5:d8:
                    1b:0b:49:da:94:5e:39:c1:f8:72:56:cc:f3:cd:20:
                    dd:65:b9:b5:29:78:c6:84:a2:f3:00:12:89:ac:e2:
                    47:61:cc:06:66:e0:c1:a7:d3:02:3a:c2:aa:5e:41:
                    ca:96:c6:08:21:f5:a3:14:39:35:f3:71:f6:5a:3c:
                    2d:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:08:3F:67:6F:4B:05:A6:4F:94:20:17:C8:D3:66:54:EE:B4:44:DA
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  68.49.12.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         cf:23:b2:e2:66:0e:4e:81:1a:c1:8f:03:54:73:15:97:0f:1f:
         aa:3e:e0:f9:44:4a:c5:c6:c8:7d:4a:e2:66:b7:ec:62:19:83:
         50:13:7a:f4:84:de:78:84:f3:fb:dd:83:82:61:63:bc:4f:a6:
         d9:22:f8:e4:f9:d5:b3:1f:d4:15:94:d7:9d:bb:77:72:58:da:
         93:da:d3:b1:ee:2b:b2:7e:2b:8b:dd:0c:84:05:92:0d:cc:42:
         31:39:98:58:b4:ec:3e:0c:4c:65:6d:66:8f:5a:c4:c1:54:fb:
         62:e1:56:01:c2:44:20:48:ff:8d:ce:8b:52:d2:bb:a6:01:aa:
         82:6a:27:59:ed:12:2c:f3:2b:b8:fc:d6:8d:c9:d4:bc:02:b2:
         64:56:d5:08:a9:40:cc:b7:7a:9e:05:c3:54:da:fe:a6:66:22:
         be:f9:2d:dd:fa:e4:3d:95:35:7f:6b:ab:05:41:c1:ab:bc:a5:
         11:88:3f:83:cd:a5:22:bb:f4:4c:a1:31:64:1f:27:00:21:c3:
         d1:20:44:82:98:50:fa:6b:4e:4e:6e:62:96:f6:a4:03:f3:5a:
         88:df:f3:4a:20:d4:4a:45:88:c8:9c:69:90:05:74:65:32:4c:
         40:03:bc:64:97:ee:d9:fc:b7:e7:b0:4d:c6:68:03:c5:fa:d5:
         7b:3e:59:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----