Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa
File:                     68a50c50-4780-3021-8260-eb38848134d3.roa (raw, json)
Hash identifier:          F0CN4bmyj+Gnpp1rmHmC8oDV5sxpYCXBE06DxDOvvuo=
Subject key identifier:   9C:46:41:F1:18:50:6D:D6:10:8B:20:9D:51:BA:F4:76:8D:D4:29:01
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F43285849FF75AD1FEC1AE15A09BF0140
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa
Signing time:             Wed 28 May 2025 01:00:49 +0000
ROA not before:           Wed 28 May 2025 01:00:49 +0000
ROA not after:            Tue 26 Aug 2025 01:00:49 +0000
asID:                     7725
IP address blocks:        71.204.64.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 05 Jun 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:49:ff:75:ad:1f:ec:1a:e1:5a:09:bf:01:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: May 28 01:00:49 2025 GMT
            Not After : Aug 26 01:00:49 2025 GMT
        Subject: CN=82b4dfe8-d4c6-4b24-a440-3ca08b3a4f14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:85:dd:6e:7d:58:94:41:85:fc:9e:cc:72:b3:
                    48:3e:cb:88:a8:34:b2:74:14:50:76:dd:51:c0:a5:
                    8c:47:36:6a:e0:84:4d:99:6a:ec:70:14:c1:66:49:
                    9f:b7:39:c2:7c:00:35:d6:93:84:69:de:6b:6c:00:
                    48:b5:54:e5:c8:52:38:f7:ae:f0:f2:0f:fe:af:6f:
                    5c:5d:63:01:0a:82:d4:fb:18:5a:3e:88:15:69:1e:
                    6d:b4:a2:34:b0:69:4c:41:17:d2:b5:99:21:cc:d1:
                    21:62:55:43:66:cc:c3:a9:44:62:5f:08:b6:d9:59:
                    20:7e:69:bd:93:8b:57:af:99:2d:9f:47:60:b8:be:
                    72:19:73:ec:83:be:46:f6:ce:a6:dc:4f:95:12:12:
                    6f:12:64:d9:c4:93:f1:37:12:2e:ff:de:62:9b:c8:
                    31:a6:27:fb:43:a6:82:6c:f3:39:89:86:02:e1:01:
                    71:2e:58:3c:8f:23:7d:0e:e7:77:d3:10:d8:e2:de:
                    32:ce:b7:11:52:8d:8a:17:49:5a:4a:30:00:aa:cb:
                    3a:df:82:be:3d:94:2d:fa:fd:d5:7c:a2:57:e1:4e:
                    c7:b0:92:06:fe:61:fe:7d:15:9d:d2:19:0d:10:27:
                    c1:a4:b4:fb:cd:4c:b8:de:f6:d8:6c:70:58:57:f8:
                    00:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:46:41:F1:18:50:6D:D6:10:8B:20:9D:51:BA:F4:76:8D:D4:29:01
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  71.204.64.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         8b:0f:a2:43:6c:1c:ae:f7:e8:01:f9:a9:48:4c:ae:13:51:5c:
         a7:09:34:99:39:48:22:74:c6:6f:0a:8c:b7:7e:19:fc:07:c6:
         86:e1:a1:4b:8e:8c:f0:77:1b:9b:d5:da:a9:55:2e:8e:78:ce:
         06:4c:e8:09:ba:e4:13:15:43:18:c9:17:fa:70:ea:fd:8d:f7:
         d5:8c:8c:91:23:70:82:89:07:3e:9c:58:64:a7:b1:2f:3e:12:
         fa:49:9f:eb:99:33:b9:8a:66:ca:4a:9e:36:84:d8:48:a6:0d:
         e6:82:14:c8:c8:15:88:06:73:c4:30:1a:d9:00:ef:2f:cd:37:
         36:04:20:5b:6c:49:9c:ad:79:b4:03:1c:d5:10:5b:81:c7:22:
         64:70:93:b0:b5:15:bc:97:5b:37:3f:7e:2b:54:4e:f6:3f:bc:
         2c:a9:f6:72:b6:0d:82:60:17:29:70:bf:62:9a:2b:3a:37:85:
         01:4b:e3:5f:55:ad:70:ac:75:00:09:f5:3b:3b:1e:24:fc:b3:
         66:34:85:63:2d:15:0b:cb:1b:ba:2e:1d:20:ef:fe:00:b8:82:
         a8:07:9d:d4:ea:26:2e:08:d9:73:63:79:16:27:19:4f:57:92:
         b0:82:4f:24:4e:26:24:45:a6:32:e9:52:6c:79:e0:ef:0a:74:
         67:82:03:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:10:55 2025 by rpki-client