Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
File: cb90c805-a9ab-3bdd-afdc-0a026851da93.roa (raw, json)
Hash identifier: Puba+Pz70GbkZ+73JKIc0t5lFIBlCEoyFBp3q374Kpg=
Subject key identifier: 92:52:D3:3B:B8:14:27:46:C0:57:6A:37:24:D6:FF:DD:62:DB:04:09
Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222
Certificate serial: 010D0C9F4328584B4BAC622A0BE620DBF0CF8F80
Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
Signing time: Wed 24 Sep 2025 01:00:31 +0000
ROA not before: Wed 24 Sep 2025 01:00:31 +0000
ROA not after: Tue 23 Dec 2025 02:00:31 +0000
asID: 32934
IP address blocks: 69.171.239.0/24 maxlen: 24
69.171.250.0/24 maxlen: 24
69.171.255.0/24 maxlen: 24
129.134.25.0/24 maxlen: 24
129.134.26.0/24 maxlen: 24
129.134.27.0/24 maxlen: 24
129.134.28.0/24 maxlen: 24
129.134.29.0/24 maxlen: 24
129.134.127.0/24 maxlen: 24
157.240.0.0/24 maxlen: 24
157.240.1.0/24 maxlen: 24
157.240.3.0/24 maxlen: 24
157.240.5.0/24 maxlen: 24
157.240.7.0/24 maxlen: 24
157.240.8.0/24 maxlen: 24
157.240.9.0/24 maxlen: 24
157.240.11.0/24 maxlen: 24
157.240.12.0/24 maxlen: 24
157.240.13.0/24 maxlen: 24
157.240.14.0/24 maxlen: 24
157.240.15.0/24 maxlen: 24
157.240.16.0/24 maxlen: 24
157.240.17.0/24 maxlen: 24
157.240.19.0/24 maxlen: 24
157.240.22.0/24 maxlen: 24
157.240.23.0/24 maxlen: 24
157.240.24.0/24 maxlen: 24
157.240.25.0/24 maxlen: 24
157.240.26.0/24 maxlen: 24
157.240.27.0/24 maxlen: 24
157.240.29.0/24 maxlen: 24
157.240.30.0/24 maxlen: 24
157.240.31.0/24 maxlen: 24
157.240.192.0/24 maxlen: 24
157.240.195.0/24 maxlen: 24
157.240.196.0/24 maxlen: 24
157.240.197.0/24 maxlen: 24
157.240.198.0/24 maxlen: 24
157.240.199.0/24 maxlen: 24
157.240.200.0/24 maxlen: 24
157.240.201.0/24 maxlen: 24
157.240.202.0/24 maxlen: 24
157.240.203.0/24 maxlen: 24
157.240.204.0/24 maxlen: 24
157.240.205.0/24 maxlen: 24
157.240.207.0/24 maxlen: 24
157.240.208.0/24 maxlen: 24
157.240.209.0/24 maxlen: 24
157.240.210.0/24 maxlen: 24
157.240.211.0/24 maxlen: 24
157.240.212.0/24 maxlen: 24
157.240.214.0/24 maxlen: 24
157.240.215.0/24 maxlen: 24
157.240.216.0/24 maxlen: 24
157.240.217.0/24 maxlen: 24
157.240.218.0/24 maxlen: 24
157.240.221.0/24 maxlen: 24
157.240.222.0/24 maxlen: 24
157.240.223.0/24 maxlen: 24
157.240.224.0/24 maxlen: 24
157.240.225.0/24 maxlen: 24
157.240.226.0/24 maxlen: 24
157.240.227.0/24 maxlen: 24
157.240.229.0/24 maxlen: 24
157.240.231.0/24 maxlen: 24
157.240.233.0/24 maxlen: 24
157.240.234.0/24 maxlen: 24
157.240.235.0/24 maxlen: 24
157.240.236.0/24 maxlen: 24
157.240.237.0/24 maxlen: 24
157.240.238.0/24 maxlen: 24
157.240.239.0/24 maxlen: 24
157.240.241.0/24 maxlen: 24
157.240.242.0/24 maxlen: 24
157.240.243.0/24 maxlen: 24
157.240.244.0/24 maxlen: 24
157.240.245.0/24 maxlen: 24
157.240.247.0/24 maxlen: 24
157.240.249.0/24 maxlen: 24
157.240.251.0/24 maxlen: 24
157.240.252.0/24 maxlen: 24
157.240.253.0/24 maxlen: 24
157.240.254.0/24 maxlen: 24
2620:0:1cfa::/48 maxlen: 48
2620:0:1cff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Tue 21 Oct 2025 14:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4b:4b:ac:62:2a:0b:e6:20:db:f0:cf:8f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222
Validity
Not Before: Sep 24 01:00:31 2025 GMT
Not After : Dec 23 02:00:31 2025 GMT
Subject: CN=bed95981-3917-45d0-bbd9-71c2be0d3fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fe:19:74:e3:ea:c3:74:dd:f3:b5:b4:45:9a:
99:c6:9a:93:2e:fb:cb:dd:bb:18:91:12:a8:fa:f3:
19:e8:bc:1b:60:fe:a9:fa:ad:c4:17:e2:74:27:0f:
03:4f:1c:52:00:05:52:c5:2d:0e:34:3d:b1:36:39:
7b:db:ca:f4:fe:d2:e2:23:88:c4:92:91:47:ba:13:
93:7c:26:9c:8c:b0:2b:91:a3:47:76:71:f3:04:2f:
b3:41:ff:f0:4e:1f:10:74:aa:22:70:7a:10:21:95:
17:d6:93:7a:c4:e0:d7:00:06:7a:69:0d:7e:45:bc:
01:bd:34:93:39:9b:05:cc:52:58:6e:e4:e2:6f:18:
d1:46:5b:0d:e7:0b:9a:9c:5b:55:bd:44:bc:e4:72:
47:e0:29:fd:b3:3e:fe:03:9c:4a:ba:a9:c7:72:39:
7c:46:71:68:a3:43:c8:a5:64:a6:36:44:30:7e:91:
e3:45:e4:d3:0d:b1:b0:4e:43:a5:39:53:2d:5f:e4:
cd:f8:36:15:b6:99:01:d7:2d:ba:7f:61:51:b5:62:
f3:51:57:2f:6f:8d:d6:6a:36:7d:9b:5a:d2:98:d6:
e6:9f:b0:81:13:9e:8f:71:a7:78:89:1d:d4:41:04:
56:75:9f:7f:61:ba:c2:d5:47:ac:09:ed:17:4a:5b:
1e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:52:D3:3B:B8:14:27:46:C0:57:6A:37:24:D6:FF:DD:62:DB:04:09
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
X509v3 Authority Key Identifier:
keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
sbgp-ipAddrBlock: critical
IPv4:
69.171.239.0/24
69.171.250.0/24
69.171.255.0/24
129.134.25.0-129.134.29.255
129.134.127.0/24
157.240.0.0/23
157.240.3.0/24
157.240.5.0/24
157.240.7.0-157.240.9.255
157.240.11.0-157.240.17.255
157.240.19.0/24
157.240.22.0-157.240.27.255
157.240.29.0-157.240.31.255
157.240.192.0/24
157.240.195.0-157.240.205.255
157.240.207.0-157.240.212.255
157.240.214.0-157.240.218.255
157.240.221.0-157.240.227.255
157.240.229.0/24
157.240.231.0/24
157.240.233.0-157.240.239.255
157.240.241.0-157.240.245.255
157.240.247.0/24
157.240.249.0/24
157.240.251.0-157.240.254.255
IPv6:
2620:0:1cfa::/48
2620:0:1cff::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
83:c7:03:b4:14:85:91:25:8c:01:44:83:5f:1d:8c:a2:7f:3a:
0c:d0:67:cc:bd:71:08:b8:d5:84:c4:93:90:eb:0b:94:bc:6d:
22:bc:0a:63:30:90:cd:32:06:c8:fa:f7:7a:44:e8:29:f9:e1:
7e:e8:a8:9b:50:e5:84:9f:69:68:9f:92:0b:52:01:37:cd:e4:
e7:ae:fc:08:29:03:e0:d7:98:70:be:dc:35:09:be:bf:8d:71:
ec:25:f6:05:d2:2e:cd:90:11:6e:57:c3:fe:69:2a:cb:8f:e4:
1f:8f:f2:ca:3c:b2:61:44:bd:8a:37:02:fa:e5:08:51:b4:f4:
62:2c:76:23:5e:97:b2:6a:4c:cf:93:e4:c0:e4:d6:2b:3f:e6:
92:e2:1a:4d:63:e0:c0:21:63:2e:5f:56:b8:1e:b4:1f:39:95:
71:c9:60:1d:21:96:17:92:09:9d:f8:9d:b0:2e:bc:6a:a7:ea:
14:56:ca:f2:5d:65:61:f9:7f:d3:75:81:49:9b:67:4b:8c:0b:
97:98:65:12:a9:bd:9c:fe:77:f8:97:07:79:ec:30:50:0d:23:
e2:51:41:59:6e:c4:32:40:53:f9:74:35:31:f9:e5:9b:3e:cc:
23:12:c1:76:bd:d0:21:2a:41:fd:94:91:af:c3:fc:1e:46:28:
dd:05:72:74
-----BEGIN CERTIFICATE-----
MIIHVTCCBj2gAwIBAgIUAQ0Mn0MoWEtLrGIqC+Yg2/DPj4AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMmFhNDM4YzktMGNiYi00MzY0LTk0NmQtOTcxNDI0OWE4
MjIyMB4XDTI1MDkyNDAxMDAzMVoXDTI1MTIyMzAyMDAzMVowLzEtMCsGA1UEAxMk
YmVkOTU5ODEtMzkxNy00NWQwLWJiZDktNzFjMmJlMGQzZmEwMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhP4ZdOPqw3Td87W0RZqZxpqTLvvL3bsYkRKo
+vMZ6LwbYP6p+q3EF+J0Jw8DTxxSAAVSxS0OND2xNjl728r0/tLiI4jEkpFHuhOT
fCacjLArkaNHdnHzBC+zQf/wTh8QdKoicHoQIZUX1pN6xODXAAZ6aQ1+RbwBvTST
OZsFzFJYbuTibxjRRlsN5wuanFtVvUS85HJH4Cn9sz7+A5xKuqnHcjl8RnFoo0PI
pWSmNkQwfpHjReTTDbGwTkOlOVMtX+TN+DYVtpkB1y26f2FRtWLzUVcvb43WajZ9
m1rSmNbmn7CBE56Pcad4iR3UQQRWdZ9/YbrC1UesCe0XSlsePwIDAQABo4IEZzCC
BGMwHQYDVR0OBBYEFJJS0zu4FCdGwFdqNyTW/91i2wQJMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0
MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0MjQ5YTgyMjIvY2I5MGM4MDUtYTlhYi0z
YmRkLWFmZGMtMGEwMjY4NTFkYTkzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMmFhNDM4YzktMGNiYi00MzY0LTk0
NmQtOTcxNDI0OWE4MjIyLzJhYTQzOGM5LTBjYmItNDM2NC05NDZkLTk3MTQyNDlh
ODIyMi5jcmwwHwYDVR0jBBgwFoAUBSPfkxv/OUKcKv57/3pLM1boXrAwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0
MjQ5YTgyMjIuY2VyMIIBLwYIKwYBBQUHAQcBAf8EggEeMIIBGjCB/QQCAAEwgfYD
BABFq+8DBABFq/oDBABFq/8wDAMEAIGGGQMEAYGGHAMEAIGGfwMEAZ3wAAMEAJ3w
AwMEAJ3wBTAMAwQAnfAHAwQBnfAIMAwDBACd8AsDBAGd8BADBACd8BMwDAMEAZ3w
FgMEAp3wGDAMAwQAnfAdAwQFnfAAAwQAnfDAMAwDBACd8MMDBAGd8MwwDAMEAJ3w
zwMEAJ3w1DAMAwQBnfDWAwQAnfDaMAwDBACd8N0DBAKd8OADBACd8OUDBACd8Ocw
DAMEAJ3w6QMEBJ3w4DAMAwQAnfDxAwQBnfD0AwQAnfD3AwQAnfD5MAwDBACd8PsD
BACd8P4wGAQCAAIwEgMHACYgAAAc+gMHACYgAAAc/zBUBgNVHSABAf8ESjBIMEYG
CCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jl
c291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUAA4IBAQCDxwO0FIWR
JYwBRINfHYyifzoM0GfMvXEIuNWExJOQ6wuUvG0ivApjMJDNMgbI+vd6ROgp+eF+
6KibUOWEn2lon5ILUgE3zeTnrvwIKQPg15hwvtw1Cb6/jXHsJfYF0i7NkBFuV8P+
aSrLj+Qfj/LKPLJhRL2KNwL65QhRtPRiLHYjXpeyakzPk+TA5NYrP+aS4hpNY+DA
IWMuX1a4HrQfOZVxyWAdIZYXkgmd+J2wLrxqp+oUVsryXWVh+X/TdYFJm2dLjAuX
mGUSqb2c/nf4lwd57DBQDSPiUUFZbsQyQFP5dDUx+eWbPswjEsF2vdAhKkH9lJGv
w/weRijdBXJ0
-----END CERTIFICATE-----
Generated at Mon Oct 20 10:09:02 2025 by rpki-client