Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa
File:                     d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa (raw, json)
Hash identifier:          8arzse2oKhV0u8LLKANkABMbVgPbaI6edaw79kEBjCc=
Subject key identifier:   FF:D1:95:84:23:68:22:7C:76:EC:D0:E1:BF:17:C7:CA:F3:F9:2F:8A
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F4328584E35FFE8F4F5BAEB5B223944E0
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa
Signing time:             Thu 18 Jun 2026 09:00:12 +0000
ROA not before:           Thu 18 Jun 2026 09:00:12 +0000
ROA not after:            Wed 16 Sep 2026 09:00:12 +0000
asID:                     33668
IP address blocks:        68.56.16.0/21 maxlen: 21
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 20 Jul 2026 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:35:ff:e8:f4:f5:ba:eb:5b:22:39:44:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jun 18 09:00:12 2026 GMT
            Not After : Sep 16 09:00:12 2026 GMT
        Subject: CN=8e883a50-4f7a-4b49-a31b-dd0b7374693d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:10:bc:ea:85:2a:a8:b4:06:1c:89:f5:26:0a:
                    2e:41:fb:b5:75:20:24:37:d7:03:52:6a:ec:f0:c3:
                    19:7d:61:c2:5e:59:dc:08:54:2d:8e:89:df:04:f2:
                    5c:9b:26:70:51:58:a9:03:c3:9d:ef:b9:96:77:49:
                    8a:a5:31:a1:86:48:d2:14:49:40:42:27:61:15:5b:
                    65:6e:c7:2e:be:d1:01:c5:fd:39:eb:24:3d:18:5d:
                    b7:f7:22:e9:ea:03:78:72:c6:99:0e:1e:75:61:81:
                    7d:02:58:ea:ac:3b:e2:d3:e3:2b:88:9d:04:02:18:
                    bf:f7:14:02:99:92:ab:8e:11:6c:70:1f:d8:9f:6d:
                    2b:ff:67:b0:0c:66:73:2f:0f:7b:a2:fb:65:4c:1d:
                    57:df:0b:d0:3c:2b:5f:55:df:e9:33:66:14:93:95:
                    c7:d7:c2:3d:90:cd:b2:be:a7:21:8e:83:20:d8:6c:
                    a8:11:96:84:95:48:36:46:80:76:bc:d0:4e:71:5c:
                    65:6a:f9:6f:02:77:79:65:42:f3:de:2f:2c:50:e0:
                    7f:1e:8d:8d:0e:33:29:66:3d:35:67:39:38:f4:6c:
                    76:84:88:b7:98:4b:6b:da:4f:72:a4:6e:cb:05:a1:
                    04:79:97:44:ea:d2:7d:9c:d0:ca:01:93:c8:90:45:
                    1d:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:D1:95:84:23:68:22:7C:76:EC:D0:E1:BF:17:C7:CA:F3:F9:2F:8A
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  68.56.16.0/21

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         61:fa:73:e2:90:59:03:e4:c5:43:73:4e:2c:ff:59:07:59:23:
         87:13:77:4c:a9:81:56:e8:51:11:17:25:24:e9:98:fa:2c:90:
         ba:1d:28:c7:ae:20:77:1d:26:61:d2:fe:7b:3e:9a:39:77:7b:
         c8:d1:24:dc:19:18:60:08:38:1b:1e:5a:0d:cc:c3:b5:49:2d:
         f0:f4:e6:60:5f:fe:09:90:31:36:71:fb:24:1a:10:32:69:a2:
         dc:36:d9:45:18:15:b4:28:45:f1:1c:e9:15:13:86:e7:9c:62:
         9a:c1:ff:85:35:e9:6f:da:06:0d:34:9f:2b:21:34:84:57:c9:
         0d:ed:1b:3a:5b:1a:f0:e7:27:1e:62:88:06:4f:ae:83:bf:ff:
         b3:04:67:5b:84:15:95:ca:be:aa:3d:d0:5e:91:09:b5:90:44:
         3b:41:78:cc:89:fd:c5:03:84:b7:f6:c7:c6:b4:d8:c7:d2:59:
         34:44:c2:e2:c6:d6:5c:a0:b7:73:b5:2e:7d:52:af:2c:4c:40:
         ed:fd:53:78:f4:b9:42:56:d7:b9:06:f3:fd:3b:89:fc:ea:29:
         e0:14:a0:19:8b:5f:2b:e4:93:62:b6:ed:33:a2:d4:42:aa:eb:
         17:a1:e3:f8:da:cb:e3:f0:c4:66:54:2c:05:e9:6a:26:0d:bf:
         6c:17:28:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:29:24 2026 by rpki-client