Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
File: cb90c805-a9ab-3bdd-afdc-0a026851da93.roa (raw, json)
Hash identifier: S/14CPD188jGQpPMLtiNq287FTt2vIWceHXuTnEOwl8=
Subject key identifier: CB:18:88:DF:85:B4:F7:F4:19:AE:C7:43:6C:59:EA:94:37:F8:9A:6C
Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222
Certificate serial: 010D0C9F4328584D0BDD0E82A268CE9A41777E80
Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
Signing time: Tue 03 Mar 2026 14:00:40 +0000
ROA not before: Tue 03 Mar 2026 14:00:40 +0000
ROA not after: Mon 01 Jun 2026 13:00:40 +0000
asID: 32934
IP address blocks: 69.171.239.0/24 maxlen: 24
69.171.250.0/24 maxlen: 24
69.171.255.0/24 maxlen: 24
129.134.25.0/24 maxlen: 24
129.134.26.0/24 maxlen: 24
129.134.27.0/24 maxlen: 24
129.134.28.0/24 maxlen: 24
129.134.29.0/24 maxlen: 24
129.134.127.0/24 maxlen: 24
157.240.0.0/24 maxlen: 24
157.240.1.0/24 maxlen: 24
157.240.3.0/24 maxlen: 24
157.240.5.0/24 maxlen: 24
157.240.7.0/24 maxlen: 24
157.240.8.0/24 maxlen: 24
157.240.9.0/24 maxlen: 24
157.240.11.0/24 maxlen: 24
157.240.12.0/24 maxlen: 24
157.240.13.0/24 maxlen: 24
157.240.14.0/24 maxlen: 24
157.240.15.0/24 maxlen: 24
157.240.16.0/24 maxlen: 24
157.240.17.0/24 maxlen: 24
157.240.19.0/24 maxlen: 24
157.240.22.0/24 maxlen: 24
157.240.23.0/24 maxlen: 24
157.240.24.0/24 maxlen: 24
157.240.25.0/24 maxlen: 24
157.240.26.0/24 maxlen: 24
157.240.27.0/24 maxlen: 24
157.240.29.0/24 maxlen: 24
157.240.30.0/24 maxlen: 24
157.240.31.0/24 maxlen: 24
157.240.192.0/24 maxlen: 24
157.240.195.0/24 maxlen: 24
157.240.196.0/24 maxlen: 24
157.240.197.0/24 maxlen: 24
157.240.198.0/24 maxlen: 24
157.240.199.0/24 maxlen: 24
157.240.200.0/24 maxlen: 24
157.240.201.0/24 maxlen: 24
157.240.202.0/24 maxlen: 24
157.240.203.0/24 maxlen: 24
157.240.204.0/24 maxlen: 24
157.240.205.0/24 maxlen: 24
157.240.207.0/24 maxlen: 24
157.240.208.0/24 maxlen: 24
157.240.209.0/24 maxlen: 24
157.240.210.0/24 maxlen: 24
157.240.211.0/24 maxlen: 24
157.240.212.0/24 maxlen: 24
157.240.214.0/24 maxlen: 24
157.240.215.0/24 maxlen: 24
157.240.216.0/24 maxlen: 24
157.240.217.0/24 maxlen: 24
157.240.218.0/24 maxlen: 24
157.240.221.0/24 maxlen: 24
157.240.222.0/24 maxlen: 24
157.240.223.0/24 maxlen: 24
157.240.224.0/24 maxlen: 24
157.240.225.0/24 maxlen: 24
157.240.226.0/24 maxlen: 24
157.240.227.0/24 maxlen: 24
157.240.229.0/24 maxlen: 24
157.240.231.0/24 maxlen: 24
157.240.233.0/24 maxlen: 24
157.240.234.0/24 maxlen: 24
157.240.235.0/24 maxlen: 24
157.240.236.0/24 maxlen: 24
157.240.237.0/24 maxlen: 24
157.240.238.0/24 maxlen: 24
157.240.239.0/24 maxlen: 24
157.240.241.0/24 maxlen: 24
157.240.242.0/24 maxlen: 24
157.240.243.0/24 maxlen: 24
157.240.244.0/24 maxlen: 24
157.240.245.0/24 maxlen: 24
157.240.247.0/24 maxlen: 24
157.240.249.0/24 maxlen: 24
157.240.251.0/24 maxlen: 24
157.240.252.0/24 maxlen: 24
157.240.253.0/24 maxlen: 24
157.240.254.0/24 maxlen: 24
2620:0:1cfa::/48 maxlen: 48
2620:0:1cff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Sat 21 Mar 2026 21:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4d:0b:dd:0e:82:a2:68:ce:9a:41:77:7e:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222
Validity
Not Before: Mar 3 14:00:40 2026 GMT
Not After : Jun 1 13:00:40 2026 GMT
Subject: CN=da98b613-4d3a-4356-a8d8-5ee0791433ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4f:55:e2:cd:1b:a2:47:b6:1e:0a:03:c2:3d:
a4:98:7b:77:16:0c:1e:fb:1c:aa:9f:ab:b3:13:69:
b0:b1:62:34:ea:e1:14:90:d7:af:1f:82:8f:43:ac:
24:6b:da:84:f5:6f:8c:6a:94:f6:73:97:7e:82:f8:
c8:31:48:ff:dc:8d:5c:55:e3:90:f3:b3:1d:f4:b1:
a0:11:ee:e8:64:11:14:2f:f9:88:08:7f:2d:11:da:
b4:98:5e:72:23:5f:29:ce:c0:74:51:3a:d9:b0:97:
ca:a7:1a:49:8f:8e:ee:dd:4d:a0:b8:03:1b:d3:6d:
25:25:9d:38:02:bf:4b:76:9c:e7:35:88:33:73:6a:
90:6e:1e:49:b4:2b:db:40:09:83:8f:fb:b6:d8:fb:
a8:a2:d4:d6:8e:7b:30:cc:d5:12:c4:e3:c9:a5:36:
28:a5:77:8f:4d:6d:ec:26:d6:54:b6:24:d0:91:ba:
14:43:85:f4:aa:bf:ab:08:7b:06:54:ec:67:c4:4b:
96:98:55:a9:a9:ea:90:df:dd:a4:f2:ed:06:f5:a6:
f3:20:41:0f:30:ab:19:3d:f1:68:7b:69:41:ae:7b:
f1:3c:7b:6c:2e:82:83:7e:e6:9c:91:25:07:8f:34:
b2:e6:a7:f5:5e:f0:0a:e7:22:42:c5:62:e2:65:a0:
93:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:18:88:DF:85:B4:F7:F4:19:AE:C7:43:6C:59:EA:94:37:F8:9A:6C
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
X509v3 Authority Key Identifier:
keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
sbgp-ipAddrBlock: critical
IPv4:
69.171.239.0/24
69.171.250.0/24
69.171.255.0/24
129.134.25.0-129.134.29.255
129.134.127.0/24
157.240.0.0/23
157.240.3.0/24
157.240.5.0/24
157.240.7.0-157.240.9.255
157.240.11.0-157.240.17.255
157.240.19.0/24
157.240.22.0-157.240.27.255
157.240.29.0-157.240.31.255
157.240.192.0/24
157.240.195.0-157.240.205.255
157.240.207.0-157.240.212.255
157.240.214.0-157.240.218.255
157.240.221.0-157.240.227.255
157.240.229.0/24
157.240.231.0/24
157.240.233.0-157.240.239.255
157.240.241.0-157.240.245.255
157.240.247.0/24
157.240.249.0/24
157.240.251.0-157.240.254.255
IPv6:
2620:0:1cfa::/48
2620:0:1cff::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
4b:a5:ee:be:10:e3:3e:f9:7d:49:49:5b:34:e3:e3:aa:92:0e:
bc:c3:16:13:30:a2:83:b4:1f:42:2e:f6:d3:bf:1f:2d:db:bb:
53:bf:3f:fc:ee:99:fe:b7:03:3b:0b:22:bc:b0:ac:f9:9b:a2:
0b:73:d3:b3:a5:41:cf:86:3c:8b:4e:4b:24:4e:c6:62:e6:05:
ff:45:f7:b9:69:d7:9b:07:9f:f2:48:79:ff:a1:13:de:88:9b:
eb:8b:d6:b3:73:5b:61:c4:eb:b1:f6:b4:8e:81:ef:fc:47:d9:
8e:0e:93:bc:2d:4b:17:15:82:8a:50:26:29:30:e8:29:25:b6:
eb:43:c7:78:d9:71:b1:18:25:4b:26:fd:fd:78:28:30:82:e0:
d3:66:b7:01:75:15:6b:8c:ff:1b:e1:f8:0c:5e:d3:e1:29:a1:
c7:6b:7f:bd:37:69:bc:2e:78:8a:56:c0:2b:f2:b6:14:71:9c:
a3:b4:70:c2:b4:c9:da:4f:08:fe:80:7e:fc:4d:7e:f7:69:c5:
39:2e:1e:b4:6b:14:f8:1e:e7:50:ab:91:bf:bd:db:2d:cf:7d:
85:dc:a3:de:47:1e:f0:7a:fa:2a:9c:df:7e:13:fd:9d:d7:a1:
8e:eb:41:12:e5:c2:f0:1d:40:66:73:b0:04:97:a9:df:4a:4c:
35:7e:89:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 19:23:53 2026 by rpki-client