Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa
File:                     b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa (raw, json)
Hash identifier:          inlKxhBvphTAmBzD1Nl3lioPCAWguuRmjq+EOyrXBKQ=
Subject key identifier:   44:E8:45:94:82:DF:EA:8D:1E:49:59:74:71:CA:CE:AD:3E:F7:B9:5D
Certificate issuer:       /CN=f49fab42-831a-40b8-9fab-60e159c0409a
Certificate serial:       010D0C9F4328584A814621EFF8C85A2AD4F7A040
Authority key identifier: A0:55:C7:8F:E0:85:7D:B8:95:44:FE:6E:4A:33:BF:3A:B1:68:26:10
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa
Signing time:             Sun 13 Jul 2025 13:01:03 +0000
ROA not before:           Sun 13 Jul 2025 13:01:03 +0000
ROA not after:            Sat 11 Oct 2025 13:01:03 +0000
asID:                     12041
IP address blocks:        199.182.28.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 08 Aug 2025 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:4a:81:46:21:ef:f8:c8:5a:2a:d4:f7:a0:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f49fab42-831a-40b8-9fab-60e159c0409a
        Validity
            Not Before: Jul 13 13:01:03 2025 GMT
            Not After : Oct 11 13:01:03 2025 GMT
        Subject: CN=bb2a7cab-49d9-47ef-a3c7-725002d930a4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:01:b5:cf:ea:12:a0:84:88:ec:7e:e4:ac:c3:
                    c1:a4:09:97:18:99:0e:55:32:a2:eb:d3:1f:a8:3e:
                    52:c7:c3:bf:d5:d1:f0:fe:27:83:ec:46:e5:a6:c5:
                    3b:30:0f:dc:61:a0:a2:71:bc:6d:6d:e0:e7:87:ea:
                    f3:e5:51:53:2f:dd:be:40:92:b3:2c:be:57:25:d9:
                    95:2f:1e:cb:d6:4f:dd:fb:42:98:12:28:a4:b3:c9:
                    33:20:05:fa:60:66:c8:e1:76:4b:1f:b3:fe:f2:97:
                    1d:fa:e4:4a:1f:16:b3:1a:7b:9f:c4:08:e1:14:41:
                    c7:13:90:2e:40:c6:e0:49:a1:5d:1f:2e:1f:bb:02:
                    20:7b:b4:c2:64:a3:38:e3:8c:08:3b:da:1e:0d:26:
                    66:02:31:a0:07:da:1b:3e:ed:ac:f2:b7:1b:c1:db:
                    2c:fb:ed:1a:dd:95:32:6b:07:3e:2b:ec:bf:b4:f6:
                    bf:60:6f:33:d3:a8:be:72:d8:b2:8e:a2:70:a9:0d:
                    9b:e8:85:89:b5:8c:d5:be:b2:4f:0f:40:72:5b:f8:
                    51:c9:af:1a:6c:7c:92:98:96:f2:85:9b:a8:86:b6:
                    a6:45:03:35:b9:05:04:5f:6f:5d:2f:d3:0e:85:bc:
                    11:01:2f:77:c0:d5:11:a1:72:43:87:28:0e:f4:43:
                    32:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:E8:45:94:82:DF:EA:8D:1E:49:59:74:71:CA:CE:AD:3E:F7:B9:5D
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.crl

            X509v3 Authority Key Identifier:
                keyid:A0:55:C7:8F:E0:85:7D:B8:95:44:FE:6E:4A:33:BF:3A:B1:68:26:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  199.182.28.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         35:f2:5f:35:8f:bc:b1:59:c9:2a:91:e8:11:ce:c2:e1:e1:bd:
         9c:7f:49:18:68:a7:ef:82:db:36:53:54:8f:5c:ad:c7:b1:8c:
         40:fb:4d:e8:fc:6f:f7:4f:fb:d1:e1:08:e9:74:cb:37:84:46:
         c2:6e:20:45:63:d4:99:d3:4f:ff:78:ba:95:d2:85:a0:3d:4a:
         53:25:23:76:15:7e:44:92:e7:e3:eb:dd:a7:71:56:f6:43:cf:
         df:d3:86:1e:33:ce:36:75:d9:e6:f8:2e:18:73:56:a9:e6:87:
         e3:17:0a:88:0e:31:44:72:26:d0:60:1b:11:63:9b:70:0c:94:
         35:69:57:a0:f8:aa:97:6b:2f:70:db:3d:c2:c8:82:4c:88:35:
         3a:8d:cc:3f:e2:24:4a:5a:90:07:73:b2:de:87:b9:c0:69:e3:
         cf:e2:44:aa:a1:04:de:81:81:9e:b4:33:0b:d7:1c:34:8e:91:
         d7:cd:5d:8f:25:14:00:a7:9e:ee:50:36:1e:25:f4:e3:98:d6:
         46:a3:b1:f1:bd:c4:27:e2:84:23:3a:16:6e:1e:c8:0b:f9:7c:
         92:78:ca:30:be:ab:dc:58:f9:b5:25:41:0c:34:47:61:3c:f7:
         8f:c4:62:da:40:62:75:42:d2:73:91:4b:a8:e0:99:1e:7f:a6:
         0f:5d:36:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:02:24 2025 by rpki-client