Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa
File:                     68a50c50-4780-3021-8260-eb38848134d3.roa (raw, json)
Hash identifier:          6OpNZHF8Q/NtSt/RyVntuI8xkkoZ/XLBMJeidLPYgSg=
Subject key identifier:   EF:7B:AD:04:92:BE:37:21:DD:70:04:A0:9B:47:39:37:04:0F:48:AA
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584E61452FF683E414A23D787C00
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa
Signing time:             Fri 03 Jul 2026 21:00:11 +0000
ROA not before:           Fri 03 Jul 2026 21:00:11 +0000
ROA not after:            Thu 01 Oct 2026 21:00:11 +0000
asID:                     7725
IP address blocks:        71.204.64.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Wed 08 Jul 2026 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:61:45:2f:f6:83:e4:14:a2:3d:78:7c:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jul  3 21:00:11 2026 GMT
            Not After : Oct  1 21:00:11 2026 GMT
        Subject: CN=d29de068-fd25-4e1e-afb7-a0e130dd40d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:49:44:37:7f:12:78:2e:3f:f3:03:a6:ea:97:
                    e2:69:2e:e1:99:fe:1c:7a:87:a8:bd:b2:08:ec:22:
                    4b:3c:eb:3c:b3:d8:7b:41:e6:b8:b6:3c:4d:59:6c:
                    c2:00:82:f9:08:fd:2d:07:2a:71:67:c6:eb:e1:6d:
                    d6:8f:29:fc:65:ba:13:a8:cd:4e:6f:19:56:0b:a0:
                    35:4c:53:c9:27:58:75:a1:65:c3:0f:53:9e:ba:8f:
                    1b:ad:3d:04:be:70:28:d5:58:8e:a0:96:0c:9e:00:
                    19:14:6b:45:30:0b:41:c7:ef:2b:c6:6a:d2:19:c0:
                    3e:f5:84:08:88:0c:df:be:59:06:74:82:12:91:92:
                    97:1e:73:b9:dd:33:e9:f2:c1:18:23:cb:fd:dd:2f:
                    3a:41:9b:42:30:b2:49:8a:d4:13:a2:40:6a:2f:b5:
                    cc:70:5f:5d:d9:23:f8:60:2e:59:30:54:91:89:25:
                    89:27:6b:44:e0:8e:6d:78:e5:5e:0c:01:ef:1c:f2:
                    2d:cc:89:2d:ec:1c:65:cc:15:c6:4e:43:eb:5d:d7:
                    9d:56:35:f9:18:ab:0d:2f:e6:5c:61:40:27:42:d2:
                    30:bc:32:53:45:47:b6:79:85:e8:e1:45:68:62:d6:
                    78:a0:61:73:2c:42:42:6d:03:b5:5d:29:a1:2e:c6:
                    2f:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:7B:AD:04:92:BE:37:21:DD:70:04:A0:9B:47:39:37:04:0F:48:AA
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/68a50c50-4780-3021-8260-eb38848134d3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  71.204.64.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         87:ac:b7:34:e3:d8:21:e0:cf:ca:fb:69:f7:ac:fe:ad:f2:75:
         64:e5:62:02:13:5f:83:48:42:d2:74:b5:b6:79:82:10:84:f5:
         72:82:c8:5f:82:84:a1:41:2b:96:d5:0d:6a:21:2f:bd:9a:db:
         41:8b:37:27:57:6d:e6:3f:5d:85:df:dd:31:88:e3:cc:3d:f1:
         82:3e:6b:54:80:e3:1f:64:d2:b0:b6:36:a2:7a:e5:1c:69:d2:
         cc:c5:ca:8a:7b:c6:23:45:18:57:b4:a2:2f:c7:12:61:84:33:
         56:3b:75:c3:a1:d4:ff:d6:b8:59:59:c4:00:48:59:fd:2b:7c:
         da:98:fb:c9:5c:c6:2b:fa:c7:f3:26:4d:dd:c0:4a:3e:bb:36:
         db:7d:5e:b5:75:5c:ae:b3:18:47:56:0b:76:d8:54:5a:36:d4:
         d0:d4:31:5a:83:73:5d:b9:df:e6:a8:61:b5:84:c1:b4:32:63:
         83:96:5c:5e:ce:f7:e1:e7:2a:da:d6:4a:03:f2:7a:9c:66:dc:
         a7:70:b9:8c:34:73:1e:49:a5:14:c8:f5:53:a1:86:95:ff:52:
         9e:e2:df:a3:55:fa:b1:30:6b:f6:a1:b9:9e:0c:22:2b:9c:2d:
         51:f6:e6:c9:1a:61:f3:16:f6:a0:b5:d3:90:95:a6:2d:f3:03:
         03:d7:d4:16
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE5hRS/2g+QUoj14fAAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1
NGY2MB4XDTI2MDcwMzIxMDAxMVoXDTI2MTAwMTIxMDAxMVowLzEtMCsGA1UEAxMk
ZDI5ZGUwNjgtZmQyNS00ZTFlLWFmYjctYTBlMTMwZGQ0MGQ4MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiklEN38SeC4/8wOm6pfiaS7hmf4ceoeovbII
7CJLPOs8s9h7Qea4tjxNWWzCAIL5CP0tBypxZ8br4W3Wjyn8ZboTqM1ObxlWC6A1
TFPJJ1h1oWXDD1Oeuo8brT0EvnAo1ViOoJYMngAZFGtFMAtBx+8rxmrSGcA+9YQI
iAzfvlkGdIISkZKXHnO53TPp8sEYI8v93S86QZtCMLJJitQTokBqL7XMcF9d2SP4
YC5ZMFSRiSWJJ2tE4I5teOVeDAHvHPItzIkt7BxlzBXGTkPrXdedVjX5GKsNL+Zc
YUAnQtIwvDJTRUe2eYXo4UVoYtZ4oGFzLEJCbQO1XSmhLsYvjQIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFO97rQSSvjch3XAEoJtHOTcED0iqMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1
YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvNjhhNTBjNTAtNDc4MC0z
MDIxLTgyNjAtZWIzODg0ODEzNGQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw
ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk
NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5
ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCR8xAMFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBAIestzTj2CHgz8r7afes/q3ydWTlYgITX4NIQtJ0tbZ5ghCE9XKCyF+C
hKFBK5bVDWohL72a20GLNydXbeY/XYXf3TGI48w98YI+a1SA4x9k0rC2NqJ65Rxp
0szFyop7xiNFGFe0oi/HEmGEM1Y7dcOh1P/WuFlZxABIWf0rfNqY+8lcxiv6x/Mm
Td3ASj67Ntt9XrV1XK6zGEdWC3bYVFo21NDUMVqDc1253+aoYbWEwbQyY4OWXF7O
9+HnKtrWSgPyepxm3KdwuYw0cx5JpRTI9VOhhpX/Up7i36NV+rEwa/ahuZ4MIiuc
LVH25skaYfMW9qC105CVpi3zAwPX1BY=
-----END CERTIFICATE-----
Generated at Mon Jul 6 22:37:20 2026 by rpki-client