Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa
File:                     14a619d0-4751-3dd0-8357-da775049c7ff.roa (raw, json)
Hash identifier:          Tm60Wn1f3kKg713DOfDk+a5GUAtI4u3F6Y0wh/GBEug=
Subject key identifier:   E7:29:DE:54:B9:90:DA:34:AB:2B:F7:79:B3:02:0F:95:DA:38:AB:73
Certificate issuer:       /CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24
Certificate serial:       010D0C9F4328584E016B2CD9AF2D39B81A078700
Authority key identifier: BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa
Signing time:             Sat 30 May 2026 13:00:10 +0000
ROA not before:           Sat 30 May 2026 13:00:10 +0000
ROA not after:            Fri 28 Aug 2026 13:00:10 +0000
asID:                     26554
IP address blocks:        65.23.88.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 15 Jun 2026 19:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4e:01:6b:2c:d9:af:2d:39:b8:1a:07:87:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24
        Validity
            Not Before: May 30 13:00:10 2026 GMT
            Not After : Aug 28 13:00:10 2026 GMT
        Subject: CN=c3e24b04-71b4-4aa8-9a9d-760427947bf8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:75:55:5b:1f:39:15:4e:b1:65:eb:00:66:54:
                    a1:62:40:72:be:c9:dc:3f:21:23:e2:35:a1:e2:ae:
                    07:08:cd:57:c7:70:21:89:d3:c5:d8:5e:a1:5a:af:
                    fe:cd:cc:91:e8:bc:f9:6a:bf:11:db:2c:91:a1:07:
                    27:a5:d2:2a:39:92:64:60:7d:53:48:9c:34:0c:7e:
                    5f:18:02:dc:52:34:ef:50:f1:f5:b6:ad:6a:bf:56:
                    2d:03:a1:dd:00:8c:d3:78:a7:43:ca:a1:4f:62:0d:
                    e5:de:ae:c4:c2:c8:83:73:e9:5f:d2:c8:9f:81:11:
                    87:6e:bc:55:e1:2e:d8:83:d9:59:b6:77:31:da:e4:
                    6d:31:18:a0:4f:da:d5:3f:15:58:5f:02:82:c1:12:
                    79:a1:1e:37:a7:e2:33:e3:87:34:f4:aa:e9:e7:c2:
                    3c:7e:e6:c4:82:c4:66:d9:cf:b0:ce:58:0f:55:a2:
                    aa:d3:c6:9a:f9:ee:3a:b6:5e:2c:c6:81:84:fd:f8:
                    7d:a4:07:54:3d:8d:6b:db:6e:2a:c0:e6:14:f1:e8:
                    6e:ea:d2:ab:bd:74:cb:13:00:c1:ee:9b:f6:ad:61:
                    3d:39:c7:a9:3b:7c:56:78:b4:9c:83:cb:b9:3a:bb:
                    15:81:8f:39:15:c0:3d:a9:63:8c:94:6c:91:8f:6a:
                    a1:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:29:DE:54:B9:90:DA:34:AB:2B:F7:79:B3:02:0F:95:DA:38:AB:73
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl

            X509v3 Authority Key Identifier:
                keyid:BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  65.23.88.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         03:29:d4:7f:fa:7d:29:42:99:03:6a:2a:c6:ac:ca:d8:b0:e2:
         e0:a9:45:e3:85:15:c3:d8:16:42:b8:13:11:ab:b2:1b:73:76:
         06:34:18:9c:94:7f:a4:ae:90:38:15:7a:b8:a5:6a:c7:0d:c5:
         84:d4:d1:ef:70:a0:94:37:5c:ea:c3:bf:15:ce:96:44:86:d1:
         95:d4:b8:38:51:ac:ce:d1:46:d1:cc:8d:f3:44:2c:45:ae:a3:
         38:43:82:4a:18:8b:9f:be:47:f3:bf:db:d9:06:33:d5:f7:d1:
         b7:19:34:a7:ad:91:46:b3:f2:85:81:ed:1f:e7:41:a6:e3:96:
         fc:00:81:ee:2a:06:28:fb:cf:80:ce:d6:c1:74:f2:d0:aa:20:
         19:be:c3:2b:38:45:85:e0:57:e7:6f:47:81:e6:83:df:84:20:
         97:0e:15:bd:30:74:91:c4:9e:ba:b0:75:f1:6b:f3:43:69:0a:
         d8:73:f1:9d:1a:23:89:3e:b9:08:04:84:f3:a3:76:14:76:70:
         b3:50:b5:55:5e:b1:68:01:e7:98:d9:76:06:e6:63:f1:1a:37:
         63:2a:bf:c0:f9:02:94:29:3c:b9:c9:34:37:85:aa:36:a1:28:
         6d:91:c9:eb:ba:38:46:8d:f9:87:63:e8:b2:d7:1a:b1:40:45:
         75:e6:8e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:12:11 2026 by rpki-client