Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa
File:                     820be15f-1ab0-3e6c-8554-951d99d18e99.roa (raw, json)
Hash identifier:          9vYouT/jITAsXYVYhssvP4f348RU2qi4O6s62lHNnvo=
Subject key identifier:   00:EB:61:01:6F:D8:85:17:B4:C1:4F:7A:29:3D:37:76:D4:B9:A9:60
Certificate issuer:       /CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1
Certificate serial:       010D0C9F4328584E6144B96758BAAA3987C65200
Authority key identifier: 67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa
Signing time:             Fri 03 Jul 2026 21:00:11 +0000
ROA not before:           Fri 03 Jul 2026 21:00:11 +0000
ROA not after:            Thu 01 Oct 2026 21:00:11 +0000
asID:                     3555
IP address blocks:        192.31.9.0/24 maxlen: 24
                          198.17.99.0/24 maxlen: 24
                          198.22.152.0/24 maxlen: 24
                          198.137.234.0/23 maxlen: 23
                          199.74.244.0/24 maxlen: 24
                          199.79.216.0/24 maxlen: 24
                          199.89.132.0/23 maxlen: 23
                          199.89.158.0/23 maxlen: 23
                          199.89.160.0/24 maxlen: 24
                          204.89.153.0/24 maxlen: 24
                          204.89.154.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 19 Jul 2026 15:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:61:44:b9:67:58:ba:aa:39:87:c6:52:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1
        Validity
            Not Before: Jul  3 21:00:11 2026 GMT
            Not After : Oct  1 21:00:11 2026 GMT
        Subject: CN=574132b0-cf4c-4cc8-b7f8-13845bed8ee9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:93:14:eb:59:82:f4:49:65:5d:14:3d:1f:44:
                    37:fc:d0:d3:96:0c:46:58:4d:13:ee:10:50:5b:3f:
                    14:64:96:c1:89:c8:83:35:3d:e3:55:9c:20:52:a9:
                    04:e1:09:ed:74:14:b7:05:61:9c:3b:43:96:a5:68:
                    e2:0f:0e:fc:da:70:70:e2:25:2e:03:95:81:2d:9c:
                    b5:a9:9c:f4:4b:f4:39:69:42:c8:b3:ad:59:67:78:
                    11:9e:7e:98:1c:ad:02:69:e6:e1:de:57:dd:02:e1:
                    04:37:48:09:5f:9d:d9:36:9f:13:9a:f0:43:c4:3e:
                    19:0f:33:19:b9:23:8b:ee:52:b6:90:c0:5e:47:25:
                    d9:f3:25:cb:7e:c0:98:70:2c:a4:51:56:3c:78:9e:
                    27:7d:bc:0b:78:30:f5:0e:28:67:a0:72:f4:82:44:
                    04:88:ae:ed:83:88:fd:1e:cc:e2:61:3b:8c:bb:33:
                    90:f0:b6:60:40:ea:77:64:d0:cb:67:06:34:41:4e:
                    b8:28:ac:6b:86:4b:1e:ad:8a:6e:29:75:3f:8e:a7:
                    3e:2c:d8:61:09:90:93:2a:2a:09:44:0b:4b:03:d1:
                    cf:e4:5d:da:61:7c:ca:9f:0b:2a:1e:4f:a6:b7:60:
                    3f:ae:89:3c:48:34:3f:50:65:d2:b0:63:9a:c9:49:
                    b0:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:EB:61:01:6F:D8:85:17:B4:C1:4F:7A:29:3D:37:76:D4:B9:A9:60
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.crl

            X509v3 Authority Key Identifier:
                keyid:67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.31.9.0/24
                  198.17.99.0/24
                  198.22.152.0/24
                  198.137.234.0/23
                  199.74.244.0/24
                  199.79.216.0/24
                  199.89.132.0/23
                  199.89.158.0-199.89.160.255
                  204.89.153.0-204.89.154.255

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         1e:89:95:83:20:b2:a5:fb:99:f3:7e:11:3b:46:a5:52:48:a1:
         8b:18:26:b5:a2:81:a6:0f:e8:1a:7f:50:e3:ad:37:4d:9f:03:
         5f:ba:24:c8:2d:d7:86:34:9d:4b:42:04:7e:c3:69:0a:8b:65:
         8c:4d:b2:b6:9f:8b:f6:da:98:a9:38:ba:ec:af:a6:e3:a2:31:
         af:a6:40:eb:70:0f:5d:f8:79:84:37:e6:51:28:f6:53:d7:ea:
         1f:e8:35:1b:d6:c9:e2:98:67:78:e5:d9:dc:91:2f:d1:3f:4b:
         ff:b5:3d:4f:2e:f3:1d:5f:d8:89:a7:2f:c7:14:58:90:23:8b:
         83:36:7b:fb:95:cf:f0:35:26:3f:cc:88:96:ff:06:b7:6d:5b:
         2b:f0:4d:66:59:45:3d:6f:6f:d3:b4:f8:8e:9c:0d:c9:9f:5c:
         c6:65:67:da:13:6d:10:21:8e:72:e6:75:c1:fd:88:3b:9f:8e:
         2f:33:5b:fa:c6:7f:4e:e4:0d:fb:9e:45:91:64:a1:66:12:a0:
         fa:72:c2:69:0f:c2:b4:7f:9b:0c:38:22:2c:fd:0b:27:26:34:
         4c:bc:15:4c:92:b0:6a:e7:97:13:fd:1f:ff:a1:8e:df:64:0d:
         be:e0:7d:f6:63:95:56:9d:26:4a:d4:e2:ac:ee:62:03:25:25:
         95:95:a5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:32:42 2026 by rpki-client