Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa
File:                     d57da0e6-f691-31f3-9cdb-493375eb5d74.roa (raw, json)
Hash identifier:          GMWw1MNA/tEBjjMKWWbC+oiFSglfrKyo1AFbsvKjCp4=
Subject key identifier:   4F:E4:EB:DC:3D:4B:4B:6B:13:AA:6D:9D:5A:90:EA:3D:A7:8C:6F:B3
Certificate issuer:       /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Certificate serial:       010D0C9F4328584E5FDF65D304F62C211BF796C0
Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa
Signing time:             Fri 03 Jul 2026 09:00:12 +0000
ROA not before:           Fri 03 Jul 2026 09:00:12 +0000
ROA not after:            Thu 01 Oct 2026 09:00:12 +0000
asID:                     7029
IP address blocks:        71.29.252.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Tue 14 Jul 2026 13:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:5f:df:65:d3:04:f6:2c:21:1b:f7:96:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
        Validity
            Not Before: Jul  3 09:00:12 2026 GMT
            Not After : Oct  1 09:00:12 2026 GMT
        Subject: CN=39a76b47-c451-4f52-a943-10ba1e937160
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:3d:e6:5a:2a:ce:d4:fa:a5:72:11:1e:01:a6:
                    87:8b:d3:47:f5:b4:48:bc:92:87:41:05:b8:60:a7:
                    50:04:f3:75:a8:33:fc:33:08:52:aa:87:06:ba:0f:
                    f9:44:dd:bf:c7:fc:7a:18:90:4b:cf:d5:f4:50:4d:
                    3f:dd:2c:90:93:b6:38:10:c7:2f:94:e6:eb:4b:99:
                    3f:09:60:9f:7c:a9:0c:36:76:c9:5a:ae:ed:ef:d4:
                    5f:5a:f6:d1:4b:27:a8:4c:a7:87:17:16:c7:ae:fa:
                    de:21:9f:49:61:33:26:a2:b6:20:63:fb:9a:ab:f1:
                    f7:58:ab:6c:04:2e:79:01:af:84:46:3b:71:4b:21:
                    ea:c6:f0:55:8f:97:06:b1:87:3d:e7:39:d5:43:e8:
                    37:d5:11:40:cb:31:e0:cf:fc:be:99:cc:f2:86:cb:
                    28:43:7f:ec:51:24:f6:a9:8b:71:1c:25:a9:66:62:
                    f4:c5:1f:5f:cb:66:75:2f:b2:87:53:8c:61:fe:2e:
                    8b:50:e8:c0:aa:56:1a:50:c4:f1:76:2d:c2:dd:d2:
                    9e:50:5e:f1:10:6d:7b:64:25:c6:62:98:65:40:3d:
                    80:f6:6d:f9:40:ad:dd:db:00:0a:3c:b0:85:fd:88:
                    8d:b8:a3:84:ce:56:5d:2f:f5:4a:80:1f:14:ed:0a:
                    1e:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:E4:EB:DC:3D:4B:4B:6B:13:AA:6D:9D:5A:90:EA:3D:A7:8C:6F:B3
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl

            X509v3 Authority Key Identifier:
                keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  71.29.252.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         1d:09:a9:b2:58:e5:f2:3b:d6:2c:b4:d1:1a:53:40:1f:19:ef:
         2a:a3:0a:18:48:43:bc:b2:53:7c:56:10:af:29:47:7f:cc:c6:
         6f:4b:4d:ea:d4:2d:e2:1a:22:e5:08:32:58:3d:d6:5e:f2:fe:
         e9:4b:f6:4b:7a:40:3b:f2:09:0f:10:26:c6:9f:02:32:e9:c0:
         dd:47:87:f1:ae:e3:65:8d:c1:3a:31:4c:9e:8c:e0:1e:08:8a:
         17:c2:c8:ad:fc:e7:9c:bb:8c:a8:2a:98:7e:58:2f:1b:87:87:
         30:6e:2b:f9:0d:e9:64:21:3f:2b:23:e0:74:7c:87:af:45:9f:
         10:da:f4:f9:25:d6:41:93:b3:ed:31:ad:2d:16:8d:cf:cf:5a:
         59:2a:ad:3d:bb:2d:77:56:7f:7c:86:9e:62:aa:6c:33:7a:98:
         6e:d7:e7:59:9d:db:b0:5b:2b:df:8f:d0:24:c4:80:29:af:66:
         50:f5:df:1b:e9:0f:15:ff:71:de:c8:84:00:0c:f4:82:dc:d6:
         8c:84:73:cd:79:c0:7d:f0:02:27:55:70:c6:6e:ec:37:0b:2e:
         b2:52:4a:af:12:77:f0:22:96:a0:05:e1:8b:c2:0a:1b:84:28:
         88:48:23:ca:51:62:dc:6d:03:bb:06:5a:bd:ce:1c:ab:77:8d:
         26:37:2d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 07:24:10 2026 by rpki-client