Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa
File:                     83a687bd-8f33-38a0-b954-7a7150c2e666.roa (raw, json)
Hash identifier:          s/hks2a5Qodpn5EuSTlqBdr/a7CQ/3k1toz1tx8dPLY=
Subject key identifier:   90:03:22:B8:74:C2:9F:01:D1:C3:4B:C4:68:10:D4:71:4C:8B:9E:BD
Certificate issuer:       /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
Certificate serial:       010D0C9F4328584D6AAA85060A29F01F375DCEC0
Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa
Signing time:             Mon 06 Apr 2026 13:00:30 +0000
ROA not before:           Mon 06 Apr 2026 13:00:30 +0000
ROA not after:            Sun 05 Jul 2026 13:00:30 +0000
asID:                     394437
IP address blocks:        209.173.252.0/22 maxlen: 22
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 17 Apr 2026 05:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4d:6a:aa:85:06:0a:29:f0:1f:37:5d:ce:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
        Validity
            Not Before: Apr  6 13:00:30 2026 GMT
            Not After : Jul  5 13:00:30 2026 GMT
        Subject: CN=dcb4b48a-a480-41a1-b48d-f539e7beace7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:5d:cc:1b:35:a4:bd:f5:7e:5a:1f:9a:a5:7e:
                    22:cb:0b:76:a9:f2:f6:8b:17:39:09:fa:ec:22:d8:
                    7e:1f:26:31:39:9a:b7:c9:b7:03:ee:a3:35:b0:d1:
                    b3:f2:fc:b6:69:49:65:6a:32:f3:d6:f9:c5:c6:fa:
                    78:48:7d:77:9f:ca:f9:80:48:bc:7b:d8:ee:19:fc:
                    81:86:87:4b:0d:7e:cc:eb:da:87:4d:1f:ac:48:2d:
                    e0:33:43:57:05:a7:c6:8a:14:8d:a6:cc:df:8c:02:
                    ce:d5:0e:30:cf:fb:25:e7:3b:c2:33:e6:a8:b9:b7:
                    42:a6:5d:43:3e:0f:1d:3c:9a:20:ac:40:1e:15:21:
                    82:e2:3d:6c:d0:36:84:56:4f:7c:54:57:1c:c0:df:
                    a0:c9:b7:07:0b:c0:30:3c:26:69:ae:de:04:8d:3c:
                    5c:fc:42:39:6f:4b:07:11:a9:c3:05:cb:74:3d:2f:
                    c9:96:f6:cd:f7:2f:59:03:f9:09:ff:4e:18:b7:7d:
                    89:d4:03:4f:00:b0:d8:9c:cf:70:1c:5e:cc:c3:03:
                    d4:43:bd:dc:04:b2:7a:3d:28:bc:21:df:78:31:37:
                    2c:da:2c:cf:4e:10:9b:ab:5c:91:99:f6:ae:c9:50:
                    2f:5a:e0:16:a4:23:cb:92:6d:27:ba:c2:ec:f3:4f:
                    15:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:03:22:B8:74:C2:9F:01:D1:C3:4B:C4:68:10:D4:71:4C:8B:9E:BD
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl

            X509v3 Authority Key Identifier:
                keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  209.173.252.0/22

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         2c:96:0c:c8:0b:2d:8f:ee:ae:03:7e:23:ff:4c:a1:1e:16:18:
         aa:ef:b9:18:30:cf:b9:5c:3b:bc:ae:2e:07:d2:95:49:8d:c4:
         0e:7c:8a:0e:de:e7:84:81:3f:f9:61:a9:8e:ce:b0:c7:72:43:
         14:92:a0:1d:3e:0f:e1:c3:02:2b:af:5c:b6:b5:47:8f:c6:51:
         f6:ba:08:d0:84:91:e8:86:7a:05:04:c1:67:25:b8:99:19:50:
         e1:93:63:6d:9f:5c:66:f1:36:94:27:be:46:31:46:9f:5b:1b:
         8d:12:e4:a9:d9:6b:c3:e4:77:f0:73:e2:c7:8e:be:76:0b:10:
         33:d4:b7:d5:f5:7a:2c:a1:81:6b:31:eb:81:a2:47:f0:51:c0:
         a7:ba:20:98:ba:c7:5a:a1:9d:78:59:ea:5b:4c:1b:fd:0a:a4:
         3d:e2:12:23:b4:75:e2:42:07:86:4b:40:3d:57:91:f6:c4:6b:
         66:3f:b1:4c:86:d9:22:b3:6e:c3:48:c7:b8:41:fb:71:0b:cb:
         a3:ea:0e:ff:b4:ac:ac:63:b2:d8:25:b6:7d:a3:9f:0f:9f:aa:
         6c:bc:4a:59:86:4c:63:1a:ce:cf:d6:c7:fa:c4:45:be:b1:72:
         8e:26:5f:7d:5d:03:b0:d3:37:fa:38:53:f2:95:7d:70:9b:e3:
         00:e7:20:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 15 11:23:30 2026 by rpki-client