Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa
File:                     83a687bd-8f33-38a0-b954-7a7150c2e666.roa (raw, json)
Hash identifier:          Aq6HQK7ch34QDVyvBdSmLnU2B8LyKfzTEFCjri45hts=
Subject key identifier:   CB:8D:99:93:44:29:12:9B:CD:46:93:F8:81:A3:2D:69:53:43:3B:C5
Certificate issuer:       /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
Certificate serial:       010D0C9F43285849E91FA5E845DED5D7E1942B00
Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa
Signing time:             Tue 20 May 2025 01:00:49 +0000
ROA not before:           Tue 20 May 2025 01:00:49 +0000
ROA not after:            Mon 18 Aug 2025 01:00:49 +0000
asID:                     394437
IP address blocks:        209.173.252.0/22 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 13 Jul 2025 05:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:49:e9:1f:a5:e8:45:de:d5:d7:e1:94:2b:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
        Validity
            Not Before: May 20 01:00:49 2025 GMT
            Not After : Aug 18 01:00:49 2025 GMT
        Subject: CN=f169dc88-176b-4a84-8120-5841b0eba7f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:2d:71:64:8d:f0:c7:4d:b4:3b:34:51:6f:b5:
                    23:9f:d3:c5:73:cd:33:04:7b:ac:97:04:eb:9d:0d:
                    43:ee:05:d9:dd:4c:10:2c:6c:87:59:33:79:86:0f:
                    d3:dc:01:f8:c9:6d:a6:e1:c4:ad:cd:a7:4a:b5:45:
                    4e:a5:72:2e:27:86:d1:58:4a:68:1e:5e:98:1c:3c:
                    9f:18:f6:6b:4b:93:7a:61:a8:e4:d1:37:18:d7:45:
                    5b:77:31:9a:63:aa:08:54:a1:b5:52:2e:72:92:52:
                    78:d6:98:71:d4:f6:64:ba:59:a2:6c:63:4b:a6:32:
                    1d:9a:6d:e8:48:86:69:63:85:62:23:f8:17:c7:64:
                    99:12:80:e1:8f:3b:6b:aa:07:75:43:ca:17:9e:00:
                    98:64:c3:9e:d6:1d:85:a2:ac:2d:2f:98:a3:74:0b:
                    f3:77:fe:54:b5:15:37:39:e3:8a:32:98:f6:10:b5:
                    8c:d0:33:3f:a1:19:fa:3d:22:38:f7:c7:50:c2:e0:
                    21:45:c4:97:77:0c:86:d6:4f:91:1e:6e:a1:17:cf:
                    8a:7c:67:a6:0e:0e:7d:ab:a9:c1:08:6c:50:96:db:
                    75:80:dc:a3:95:74:8c:db:3e:11:63:51:03:e2:cf:
                    5f:2e:f0:50:43:cf:c4:77:ea:02:73:69:f2:34:55:
                    5f:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:8D:99:93:44:29:12:9B:CD:46:93:F8:81:A3:2D:69:53:43:3B:C5
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl

            X509v3 Authority Key Identifier:
                keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  209.173.252.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         af:c4:8e:a6:69:ab:f2:60:94:97:76:d8:51:a2:c6:7e:f6:1b:
         60:40:d7:23:77:23:e7:eb:9b:ac:83:7d:3d:37:fa:1e:b6:f2:
         79:a7:53:5b:93:d0:1e:8d:25:47:aa:01:5a:ae:a5:ec:70:a6:
         a0:98:5a:97:96:c2:83:bb:14:75:8c:be:26:50:50:9d:b0:b8:
         e4:67:66:41:69:7a:1d:81:43:fd:51:d2:39:0f:4d:b3:60:06:
         7f:2d:cb:b7:a3:51:b4:16:bd:12:5a:e5:4c:14:aa:b8:5f:ee:
         68:ca:c9:c5:a8:73:b6:56:7a:30:45:53:e8:71:aa:4d:48:00:
         c8:d9:2f:75:d0:24:0c:ce:0d:20:88:56:d8:16:5c:f7:fd:c3:
         73:3e:d5:b8:68:54:8d:6e:94:e7:c4:28:f0:ac:95:54:90:e9:
         a4:66:1b:13:46:4b:3e:a4:9f:21:95:7c:6d:6d:32:db:6f:52:
         a0:c6:36:d5:27:ad:56:4c:91:e4:93:1b:c7:7c:85:af:b7:ff:
         a2:2e:75:da:bf:1c:10:ba:71:ca:64:87:fb:73:08:4a:96:de:
         68:88:22:2b:9c:1d:7c:22:b8:54:10:0b:da:2e:6d:31:f4:b5:
         6c:ec:53:58:a7:c1:93:bf:46:b6:73:a6:64:f9:2b:b9:e2:d8:
         13:f2:66:71
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnpH6XoRd7V1+GUKwAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi
MjRmMB4XDTI1MDUyMDAxMDA0OVoXDTI1MDgxODAxMDA0OVowLzEtMCsGA1UEAxMk
ZjE2OWRjODgtMTc2Yi00YTg0LTgxMjAtNTg0MWIwZWJhN2Y2MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhS1xZI3wx020OzRRb7Ujn9PFc80zBHuslwTr
nQ1D7gXZ3UwQLGyHWTN5hg/T3AH4yW2m4cStzadKtUVOpXIuJ4bRWEpoHl6YHDyf
GPZrS5N6Yajk0TcY10VbdzGaY6oIVKG1Ui5yklJ41phx1PZkulmibGNLpjIdmm3o
SIZpY4ViI/gXx2SZEoDhjztrqgd1Q8oXngCYZMOe1h2FoqwtL5ijdAvzd/5UtRU3
OeOKMpj2ELWM0DM/oRn6PSI498dQwuAhRcSXdwyG1k+RHm6hF8+KfGemDg59q6nB
CGxQltt1gNyjlXSM2z4RY1ED4s9fLvBQQ8/Ed+oCc2nyNFVfAQIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFMuNmZNEKRKbzUaT+IGjLWlTQzvFMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh
MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvODNhNjg3YmQtOGYzMy0z
OGEwLWI5NTQtN2E3MTUwYzJlNjY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk
NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj
YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx
ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0a38MFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBAK/EjqZpq/JglJd22FGixn72G2BA1yN3I+frm6yDfT03+h628nmnU1uT
0B6NJUeqAVqupexwpqCYWpeWwoO7FHWMviZQUJ2wuORnZkFpeh2BQ/1R0jkPTbNg
Bn8ty7ejUbQWvRJa5UwUqrhf7mjKycWoc7ZWejBFU+hxqk1IAMjZL3XQJAzODSCI
VtgWXPf9w3M+1bhoVI1ulOfEKPCslVSQ6aRmGxNGSz6knyGVfG1tMttvUqDGNtUn
rVZMkeSTG8d8ha+3/6Iuddq/HBC6ccpkh/tzCEqW3miIIiucHXwiuFQQC9oubTH0
tWzsU1inwZO/RrZzpmT5K7ni2BPyZnE=
-----END CERTIFICATE-----
Generated at Thu Jul 10 17:42:13 2025 by rpki-client