Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/50652325-5bc5-38ed-9548-784be2a54eb9.roa
File:                     50652325-5bc5-38ed-9548-784be2a54eb9.roa (raw, json)
Hash identifier:          12Erp6vRlZ8Gltv4IJ5aDjcFZbPT2oOfhlmt4XdPv7Y=
Subject key identifier:   EF:E3:DD:37:54:16:71:DD:3D:D1:1A:C3:3E:17:52:F3:AA:88:E9:C3
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584B95A8AF796E7D9D2338AD8640
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/50652325-5bc5-38ed-9548-784be2a54eb9.roa
Signing time:             Mon 20 Oct 2025 13:00:38 +0000
ROA not before:           Mon 20 Oct 2025 13:00:38 +0000
ROA not after:            Sun 18 Jan 2026 14:00:38 +0000
asID:                     33668
IP address blocks:        68.34.62.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 23 Oct 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4b:95:a8:af:79:6e:7d:9d:23:38:ad:86:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Oct 20 13:00:38 2025 GMT
            Not After : Jan 18 14:00:38 2026 GMT
        Subject: CN=83515e47-94cc-4bab-966e-39343e19b820
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:5f:45:bf:af:9d:7b:2a:46:cd:af:8e:0f:f7:
                    21:f2:b3:d7:92:1e:c8:cd:92:cc:ca:ba:33:ec:f8:
                    2b:15:30:1e:33:6a:59:81:2a:7d:93:55:86:02:95:
                    d4:11:a5:1a:9a:0a:7a:df:c7:c4:cb:b9:70:e8:b2:
                    ae:1d:90:3b:a1:e0:78:d5:98:c6:fe:02:34:98:d1:
                    79:5a:16:a3:40:67:e3:f8:c6:0d:44:db:77:3c:01:
                    4a:82:5a:49:65:68:d5:4d:cd:ff:c6:41:fb:8e:5c:
                    f7:6b:95:54:81:23:80:a8:bc:ad:12:cb:e6:fd:85:
                    c7:64:9c:07:c6:7f:d9:48:87:b9:a3:68:44:06:06:
                    9f:3b:83:6e:df:aa:da:7e:b5:e0:d8:39:31:de:fa:
                    f1:da:65:f5:d1:9a:aa:c3:14:80:a1:17:2f:ab:cd:
                    7a:28:78:9b:4d:04:7f:5d:7e:c0:33:34:9d:3d:6d:
                    8e:96:ec:8b:30:41:8a:3d:b9:dc:aa:58:75:d2:6b:
                    f2:0c:6c:53:9b:6a:a5:33:a5:21:ae:e7:cd:73:45:
                    15:81:d4:5e:a2:9b:76:00:c1:38:0b:07:6d:e2:e7:
                    b4:dd:0d:63:47:ea:36:7b:33:01:af:b2:3b:b1:23:
                    83:cf:0f:32:a8:34:6c:14:3d:76:9a:a8:89:92:1e:
                    02:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:E3:DD:37:54:16:71:DD:3D:D1:1A:C3:3E:17:52:F3:AA:88:E9:C3
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/50652325-5bc5-38ed-9548-784be2a54eb9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  68.34.62.0/23

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         5f:7c:d9:28:19:94:a5:c4:4b:dd:e1:23:b6:b5:df:46:db:3d:
         1d:df:22:5b:0e:57:ab:25:3f:98:58:9b:00:a6:d6:98:a4:6c:
         ff:4d:42:10:48:36:9f:96:0e:76:e2:97:6d:34:4e:d1:e6:01:
         75:ea:f5:57:e3:19:ff:46:a1:29:4f:77:f3:af:22:6a:64:9a:
         59:43:51:70:3a:1c:94:73:cf:26:c0:75:f2:52:b5:24:7b:64:
         5f:d6:b6:fb:bd:97:3a:2d:75:c4:86:76:9d:2f:cb:27:3e:4b:
         98:e4:ba:23:3f:69:cb:07:b5:e9:3b:7f:77:3b:4a:d2:c0:82:
         5c:d6:89:68:13:18:1f:88:05:3b:7a:33:22:c8:9c:a1:bd:ae:
         4e:b6:5d:0d:a3:96:22:94:94:34:70:14:08:72:82:64:70:3f:
         06:d1:c4:14:88:e4:df:56:29:4e:b9:8e:17:9f:a5:6d:0b:33:
         30:0d:67:8d:c0:11:21:df:15:ce:5f:3e:d0:20:7e:88:3a:ab:
         e2:a3:83:25:f3:4b:d6:79:d9:3e:33:3f:7c:85:0f:ea:4d:20:
         39:5c:12:b1:62:eb:f2:ce:09:0b:d6:77:78:c6:d0:5c:7e:4f:
         56:fc:bd:54:2b:35:8f:a8:41:6c:d1:11:e2:40:8e:2f:cc:9f:
         83:65:5e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 19:45:06 2025 by rpki-client