This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/9aa7958f-f196-3a7a-b81c-c403cd9be274.roa
File:                     9aa7958f-f196-3a7a-b81c-c403cd9be274.roa (raw, json)
Hash identifier:          WbfNt2vSZTPl08NGi9bNUdM5LROqZw3JaWvTVQIW5ug=
Subject key identifier:   4E:8A:1C:05:3E:3F:9A:7C:98:5C:7A:C0:B9:0B:ED:D4:4D:31:69:89
Certificate issuer:       /CN=10aa04f0-7421-4813-bfda-269303d05d1d
Certificate serial:       010D0C9F4328584C8476EBBA8E5A0B918A092DE0
Authority key identifier: 4C:67:C6:2B:93:24:A6:E4:6A:F7:D6:8B:AA:7D:A5:9F:6A:13:7E:02
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/9aa7958f-f196-3a7a-b81c-c403cd9be274.roa
Signing time:             Wed 14 Jan 2026 02:00:31 +0000
ROA not before:           Wed 14 Jan 2026 02:00:31 +0000
ROA not after:            Tue 14 Apr 2026 01:00:31 +0000
asID:                     77
IP address blocks:        204.9.130.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/10aa04f0-7421-4813-bfda-269303d05d1d.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/10aa04f0-7421-4813-bfda-269303d05d1d.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 06 Feb 2026 06:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4c:84:76:eb:ba:8e:5a:0b:91:8a:09:2d:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10aa04f0-7421-4813-bfda-269303d05d1d
        Validity
            Not Before: Jan 14 02:00:31 2026 GMT
            Not After : Apr 14 01:00:31 2026 GMT
        Subject: CN=d5b20cfc-ab35-4488-892f-87cc046ccc7e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:f6:bf:5f:e9:52:59:e0:90:fe:1a:79:5c:7a:
                    a3:e6:19:0a:91:f9:e2:1d:e9:fc:f7:4b:a5:9b:cb:
                    91:99:7d:d4:59:ec:b6:05:90:1b:2c:98:6a:e9:5d:
                    3c:ca:e0:c8:88:a4:21:0f:ce:76:77:89:3f:50:48:
                    18:49:d1:a9:bb:4d:85:7e:ae:90:07:ee:af:96:c7:
                    9e:0c:98:a9:37:0b:c8:3c:4a:b1:52:f9:1c:fb:e7:
                    1e:7d:7c:9d:da:20:f4:4c:df:56:94:2e:c3:36:aa:
                    f1:b6:43:79:ea:10:48:ce:22:2c:06:ae:ae:de:19:
                    3e:e2:66:cf:c8:b9:e6:7b:b4:ce:d4:31:a4:12:3f:
                    97:d0:5d:53:07:3a:28:76:75:37:1c:7a:10:62:6e:
                    ac:d2:c0:5a:9c:3d:e8:69:56:ca:5d:76:1f:45:0e:
                    70:c9:9c:1c:65:4d:17:12:63:69:c9:a2:36:b1:af:
                    de:86:4f:c5:c5:2e:d6:e4:43:f8:2c:73:05:62:0b:
                    83:63:2a:a3:35:09:b7:a6:4c:1e:d3:39:92:b5:ae:
                    df:3c:85:7a:52:57:6d:ed:4c:c5:c5:10:57:ac:80:
                    9b:ea:35:cb:ae:22:3e:8f:b8:55:9f:87:44:98:2b:
                    be:26:cc:55:b5:e4:8a:95:09:d1:7e:65:23:53:bc:
                    70:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:8A:1C:05:3E:3F:9A:7C:98:5C:7A:C0:B9:0B:ED:D4:4D:31:69:89
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/9aa7958f-f196-3a7a-b81c-c403cd9be274.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d/10aa04f0-7421-4813-bfda-269303d05d1d.crl

            X509v3 Authority Key Identifier:
                keyid:4C:67:C6:2B:93:24:A6:E4:6A:F7:D6:8B:AA:7D:A5:9F:6A:13:7E:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/10aa04f0-7421-4813-bfda-269303d05d1d.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  204.9.130.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         cb:90:95:f0:0b:a3:12:b7:70:96:86:9b:c4:fb:47:a4:d3:65:
         03:26:e4:3e:05:73:b8:be:1d:94:1d:4d:85:78:d5:29:12:4d:
         40:67:b2:2c:71:e2:1e:d0:97:c0:00:d6:58:16:da:83:87:91:
         97:e6:ef:38:b2:6c:47:60:67:de:93:3a:8f:43:c2:4f:a3:7a:
         0f:b1:50:da:51:ec:0d:2c:7b:b1:9a:ce:4e:ba:b8:b3:2f:4d:
         83:ab:06:59:0f:74:4b:c9:c4:54:90:27:2d:2b:ee:16:ab:14:
         5a:6d:a3:a1:7e:45:1d:bc:35:39:98:f1:78:bc:93:5b:26:c7:
         50:d5:4a:af:d7:2d:a7:fa:c9:78:2d:3f:93:bb:12:22:03:53:
         7b:b9:50:60:89:af:dc:5b:9c:60:3e:98:01:68:23:13:a6:16:
         9a:0e:f4:31:81:75:bc:1a:34:4a:2f:9c:09:c0:3a:89:90:69:
         8b:85:30:0d:23:5f:eb:d1:71:4e:f5:0a:72:30:87:5a:2a:8e:
         c3:b7:09:39:8e:03:e2:20:b9:fc:50:3c:53:eb:ee:fc:b2:91:
         98:d9:4b:d9:e3:65:88:53:6c:ba:bf:b7:79:27:2f:09:fd:02:
         2b:05:8a:48:2f:4e:2c:64:07:74:a1:60:d2:40:ab:c6:ea:00:
         a9:df:f1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----