Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
File: 4ccec03b-e500-3150-8eff-15de50817fe6.roa (raw, json)
Hash identifier: 0L07K1ncl+VBbFWIJ3L6caawNZW8hk0ApXDEtaGvEI4=
Subject key identifier: D0:11:8D:27:06:37:C2:17:BB:8D:94:68:F0:28:C1:77:43:DD:AA:B9
Certificate issuer: /CN=cb01b28a-436d-42dd-8750-5361f2309297
Certificate serial: 010D0C9F4328584D524348A4D79C1F5D8F9FA4E0
Authority key identifier: A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
Signing time: Sat 28 Mar 2026 19:13:19 +0000
ROA not before: Sat 28 Mar 2026 19:13:19 +0000
ROA not after: Fri 26 Jun 2026 19:13:19 +0000
asID: 25820
IP address blocks: 43.243.84.0/22 maxlen: 24
45.78.64.0/20 maxlen: 24
46.254.88.0/22 maxlen: 24
64.64.224.0/19 maxlen: 24
65.49.130.0/23 maxlen: 24
65.49.132.0/22 maxlen: 24
65.49.144.0/23 maxlen: 24
65.49.150.0/23 maxlen: 24
65.49.192.0/19 maxlen: 24
65.49.224.0/20 maxlen: 24
66.98.112.0/20 maxlen: 24
67.216.192.0/19 maxlen: 24
67.218.128.0/19 maxlen: 24
67.230.160.0/19 maxlen: 24
68.168.128.0/20 maxlen: 24
69.171.64.0/20 maxlen: 24
69.194.8.0/21 maxlen: 24
74.82.192.0/19 maxlen: 24
74.120.168.0/21 maxlen: 24
74.211.96.0/19 maxlen: 24
80.251.208.0/20 maxlen: 24
89.208.240.0/20 maxlen: 24
93.179.96.0/21 maxlen: 24
93.179.112.0/21 maxlen: 24
93.179.124.0/22 maxlen: 24
94.103.4.0/22 maxlen: 24
95.163.192.0/20 maxlen: 24
95.169.0.0/19 maxlen: 24
95.181.188.0/22 maxlen: 24
96.45.176.0/20 maxlen: 24
97.64.16.0/20 maxlen: 24
97.64.32.0/20 maxlen: 24
97.64.80.0/22 maxlen: 24
97.64.104.0/21 maxlen: 24
97.64.120.0/21 maxlen: 24
98.142.128.0/20 maxlen: 24
104.36.64.0/21 maxlen: 24
104.36.184.0/22 maxlen: 24
104.129.180.0/22 maxlen: 24
104.129.184.0/22 maxlen: 24
104.153.96.0/21 maxlen: 24
104.225.144.0/20 maxlen: 24
104.225.232.0/21 maxlen: 24
104.243.16.0/20 maxlen: 24
104.244.88.0/21 maxlen: 24
104.245.40.0/21 maxlen: 24
104.245.188.0/22 maxlen: 24
107.182.16.0/20 maxlen: 24
144.34.128.0/17 maxlen: 24
150.242.88.0/22 maxlen: 24
162.211.220.0/22 maxlen: 24
162.219.120.0/21 maxlen: 24
162.244.240.0/22 maxlen: 24
172.93.32.0/20 maxlen: 24
172.96.16.0/22 maxlen: 24
172.96.192.0/18 maxlen: 24
173.242.112.0/20 maxlen: 24
174.137.48.0/20 maxlen: 24
176.122.128.0/18 maxlen: 24
184.170.208.0/20 maxlen: 24
185.180.16.0/22 maxlen: 24
185.199.240.0/22 maxlen: 24
185.205.180.0/22 maxlen: 24
185.212.56.0/22 maxlen: 24
192.69.88.0/21 maxlen: 24
198.181.32.0/20 maxlen: 24
198.181.56.0/22 maxlen: 24
199.19.104.0/21 maxlen: 24
199.115.228.0/22 maxlen: 24
199.168.136.0/21 maxlen: 24
199.180.112.0/21 maxlen: 24
199.193.124.0/22 maxlen: 24
206.190.232.0/21 maxlen: 24
216.24.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Tue 31 Mar 2026 20:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4d:52:43:48:a4:d7:9c:1f:5d:8f:9f:a4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb01b28a-436d-42dd-8750-5361f2309297
Validity
Not Before: Mar 28 19:13:19 2026 GMT
Not After : Jun 26 19:13:19 2026 GMT
Subject: CN=e7b2cd4a-4fa9-463e-84bc-85548492aa97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:85:7b:d3:e6:aa:78:5c:9b:f6:73:fd:d8:a4:
6c:8a:c9:3d:ea:78:92:66:b6:0e:e9:c4:85:8f:87:
33:81:ff:d7:68:14:40:e5:df:ce:ef:c9:93:a5:31:
58:51:b0:1a:8b:da:5a:c2:65:e3:0c:38:17:5f:f5:
7c:6d:04:73:45:15:0b:81:2d:a6:91:8d:b5:db:45:
ef:bf:7b:19:f8:52:7b:70:db:6b:8f:c7:4a:c6:a5:
30:43:da:fb:47:2b:79:8f:6e:1c:7f:bd:ac:3c:75:
0c:a0:7f:c5:65:7f:19:a9:b2:22:49:26:34:8e:85:
74:f2:27:5d:72:21:52:bf:16:00:dd:1f:e8:ab:fe:
6a:cb:e4:50:8d:55:cf:1d:8b:5f:f7:b2:77:43:7b:
31:c7:70:ac:f7:5e:a5:30:af:0b:d9:e8:2c:9d:3f:
ca:24:af:ac:be:60:d4:d6:ce:1f:68:d9:90:41:5c:
86:26:d3:46:12:81:47:1f:8e:a8:6c:6e:73:b8:90:
0f:8e:2c:63:4a:b4:5f:c6:7c:57:33:51:5a:ec:3d:
44:95:a9:1f:e3:ed:79:a0:05:0f:a2:f4:30:da:d9:
f3:6f:46:72:bd:63:a7:c9:42:8d:8c:cb:ff:8c:ea:
b2:31:2f:27:68:74:4a:b3:07:d5:19:dc:4f:9d:d6:
16:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:11:8D:27:06:37:C2:17:BB:8D:94:68:F0:28:C1:77:43:DD:AA:B9
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
X509v3 Authority Key Identifier:
keyid:A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
sbgp-ipAddrBlock: critical
IPv4:
43.243.84.0/22
45.78.64.0/20
46.254.88.0/22
64.64.224.0/19
65.49.130.0-65.49.135.255
65.49.144.0/23
65.49.150.0/23
65.49.192.0-65.49.239.255
66.98.112.0/20
67.216.192.0/19
67.218.128.0/19
67.230.160.0/19
68.168.128.0/20
69.171.64.0/20
69.194.8.0/21
74.82.192.0/19
74.120.168.0/21
74.211.96.0/19
80.251.208.0/20
89.208.240.0/20
93.179.96.0/21
93.179.112.0/21
93.179.124.0/22
94.103.4.0/22
95.163.192.0/20
95.169.0.0/19
95.181.188.0/22
96.45.176.0/20
97.64.16.0-97.64.47.255
97.64.80.0/22
97.64.104.0/21
97.64.120.0/21
98.142.128.0/20
104.36.64.0/21
104.36.184.0/22
104.129.180.0-104.129.187.255
104.153.96.0/21
104.225.144.0/20
104.225.232.0/21
104.243.16.0/20
104.244.88.0/21
104.245.40.0/21
104.245.188.0/22
107.182.16.0/20
144.34.128.0/17
150.242.88.0/22
162.211.220.0/22
162.219.120.0/21
162.244.240.0/22
172.93.32.0/20
172.96.16.0/22
172.96.192.0/18
173.242.112.0/20
174.137.48.0/20
176.122.128.0/18
184.170.208.0/20
185.180.16.0/22
185.199.240.0/22
185.205.180.0/22
185.212.56.0/22
192.69.88.0/21
198.181.32.0/20
198.181.56.0/22
199.19.104.0/21
199.115.228.0/22
199.168.136.0/21
199.180.112.0/21
199.193.124.0/22
206.190.232.0/21
216.24.176.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
6f:39:a6:55:ee:53:f7:60:50:ec:03:66:53:2a:6c:aa:63:8c:
d4:55:59:71:f9:f7:02:41:8f:57:28:7e:eb:da:35:07:81:02:
9f:c8:e7:ee:88:3c:60:45:63:ec:3f:78:f6:10:96:86:1a:cb:
b6:57:f1:18:9e:08:24:65:dc:82:e4:51:85:01:e2:3d:2c:a9:
70:d3:81:bb:06:82:ad:1f:04:b6:e3:6b:5d:aa:a2:17:42:90:
b0:d6:af:b5:10:a5:5f:cf:42:47:99:3d:36:61:40:e2:f4:98:
a6:ac:e9:0a:0e:96:35:fe:be:e7:85:88:c2:0c:48:8f:47:f6:
26:ea:e1:14:c2:36:a4:fe:7e:c1:6d:63:3f:08:1c:a4:63:c4:
94:6a:5b:93:5b:2c:7a:1b:68:8c:5b:4a:f3:8d:44:2f:58:4b:
ef:01:ef:da:b5:15:90:48:28:2b:60:fd:85:cf:c7:20:33:ce:
8f:22:09:ca:33:2e:2a:d1:cd:89:a0:29:c8:5e:20:32:93:33:
29:0c:9b:4c:0c:79:b4:fc:cd:64:08:8a:2e:19:ae:f1:3a:cd:
9b:8a:df:4d:ae:0d:83:0e:f5:66:4f:e2:07:1d:b5:b1:7e:1d:
de:49:96:5c:97:54:38:a2:30:c3:82:5c:03:27:1e:5e:57:2f:
f8:97:40:19
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:50:03 2026 by rpki-client