Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa
File:                     bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa (raw, json)
Hash identifier:          0jzdOSpkJ9n43BdBFbQ8S/ebwdJqpr8b7ipmRGyKozc=
Subject key identifier:   0C:A1:BC:25:69:59:A3:40:9E:EB:EA:0F:FB:20:5F:68:5D:CB:C1:25
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584E35FFEB67A8C41AC8DB88FD80
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa
Signing time:             Thu 18 Jun 2026 09:00:12 +0000
ROA not before:           Thu 18 Jun 2026 09:00:12 +0000
ROA not after:            Wed 16 Sep 2026 09:00:12 +0000
asID:                     33668
IP address blocks:        68.59.2.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 20 Jul 2026 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:35:ff:eb:67:a8:c4:1a:c8:db:88:fd:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jun 18 09:00:12 2026 GMT
            Not After : Sep 16 09:00:12 2026 GMT
        Subject: CN=05f0c964-6d6f-44a3-9e9b-8a8e7e7cfb61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:14:2d:3b:9d:b3:ea:ee:df:d5:ec:5f:9d:01:
                    3c:2c:be:08:f1:29:8c:c3:19:c4:5c:43:49:3e:4f:
                    e8:69:8a:92:5e:bc:93:21:ed:48:fc:99:04:14:5e:
                    94:ba:da:21:68:aa:97:09:57:63:f7:cc:87:b7:be:
                    2e:19:d3:f9:7c:a3:b5:b7:b4:61:6e:b5:f5:66:10:
                    11:8b:3f:af:80:f1:bc:dc:7f:f5:b8:a6:b7:d8:4f:
                    a0:ee:09:78:9c:1f:b8:df:49:03:4e:48:70:f9:d2:
                    89:02:e4:b4:10:9e:aa:4d:9c:7a:cf:11:cc:23:b5:
                    6f:50:07:e5:0f:f4:ef:55:e1:46:45:2e:1b:8a:1e:
                    73:75:34:a8:50:7a:a0:1b:a6:2b:c4:e3:a6:9f:b3:
                    2a:b1:be:26:16:5b:15:e9:00:80:8d:b3:48:92:35:
                    7a:02:52:04:8f:97:15:10:6d:7c:83:1f:24:2f:4c:
                    79:8f:6d:03:bb:aa:ce:68:36:b2:28:69:cf:f9:69:
                    e0:2d:00:8a:64:ee:7e:2d:94:ab:78:43:41:40:28:
                    fe:d1:33:4e:de:4e:23:19:13:94:55:31:e5:cf:b5:
                    36:69:80:75:b0:91:18:cc:ce:52:a6:fc:c6:a2:25:
                    98:42:7d:cd:a7:14:b3:d0:8b:4c:b8:80:b4:15:bc:
                    98:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:A1:BC:25:69:59:A3:40:9E:EB:EA:0F:FB:20:5F:68:5D:CB:C1:25
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  68.59.2.0/23

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         7f:fc:cb:86:b3:8b:16:e3:bd:03:9c:4f:d8:97:78:45:1d:47:
         be:8e:7f:6c:93:ec:b3:f6:cc:75:05:94:02:b1:18:53:12:d3:
         27:72:4a:f6:4e:2b:1b:58:f9:da:86:68:3a:5e:21:81:f7:77:
         de:00:ef:1d:4b:6f:69:e7:27:9c:47:c0:21:ea:15:57:8f:bf:
         0f:7a:c1:9a:a6:08:81:46:ea:db:e0:05:e4:64:0a:25:2e:21:
         ba:6e:ce:ce:69:93:f5:98:c0:81:e1:97:f9:95:d4:54:18:6e:
         23:ac:13:99:da:66:28:c8:3a:b5:b2:18:55:96:a8:bd:f2:14:
         93:6d:e5:3c:77:2b:cf:99:00:c1:8d:33:0e:43:e5:03:d1:92:
         2c:87:b1:3f:40:f6:3c:32:df:5a:e0:e4:ca:54:49:38:38:d2:
         d8:b8:b8:76:d1:9d:5a:e9:be:62:1d:51:59:06:b3:b1:d7:91:
         d0:1b:41:75:6a:15:be:c0:56:c7:20:0c:9b:b6:44:37:70:36:
         8b:b8:a9:3f:61:cd:08:bc:1e:04:dc:8b:21:c6:95:85:05:7f:
         1a:f6:4e:2e:6f:94:59:37:1c:29:1e:48:7c:25:80:6d:d4:39:
         b6:13:c8:24:57:04:84:3b:ea:1a:ee:cb:58:eb:78:3a:28:26:
         3b:6a:f9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:05 2026 by rpki-client