Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/1a78b0ab-c73c-3c8b-8c8f-9670b294844b.roa
File: 1a78b0ab-c73c-3c8b-8c8f-9670b294844b.roa (raw, json)
Hash identifier: aXLJQWa7fHNs5zLb8KkViX+IMCcwyeIx6WW4GatMYFQ=
Subject key identifier: 0A:22:19:43:37:A6:A8:B8:01:E9:C2:71:D6:51:4D:7D:11:A3:16:A0
Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial: 010D0C9F4328584B583C880B5D133FF8DF80FB80
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/1a78b0ab-c73c-3c8b-8c8f-9670b294844b.roa
Signing time: Sun 28 Sep 2025 13:00:41 +0000
ROA not before: Sun 28 Sep 2025 13:00:41 +0000
ROA not after: Sat 27 Dec 2025 14:00:41 +0000
asID: 36732
IP address blocks: 50.222.64.0/19 maxlen: 19
68.86.132.0/23 maxlen: 23
68.86.206.0/23 maxlen: 23
68.87.25.0/24 maxlen: 24
68.87.48.0/21 maxlen: 21
68.87.66.0/23 maxlen: 23
68.87.80.0/21 maxlen: 21
69.139.131.0/24 maxlen: 24
69.139.136.0/23 maxlen: 23
69.139.143.0/24 maxlen: 24
69.139.218.0/24 maxlen: 24
69.139.226.0/23 maxlen: 23
69.139.252.0/23 maxlen: 23
69.241.54.0/23 maxlen: 23
69.241.73.0/24 maxlen: 24
69.252.76.0/22 maxlen: 22
69.252.120.0/23 maxlen: 23
69.252.192.0/22 maxlen: 22
69.252.198.0/23 maxlen: 23
69.252.216.0/22 maxlen: 22
69.252.246.0/23 maxlen: 23
73.164.122.0/23 maxlen: 23
75.150.4.0/22 maxlen: 22
76.26.120.0/21 maxlen: 21
76.96.32.0/21 maxlen: 21
76.96.32.192/27 maxlen: 27
76.96.104.0/21 maxlen: 21
76.96.185.0/24 maxlen: 24
76.96.210.0/24 maxlen: 24
76.96.216.0/24 maxlen: 24
76.96.220.0/24 maxlen: 24
76.96.220.96/28 maxlen: 28
76.96.220.112/28 maxlen: 28
76.96.220.208/28 maxlen: 28
76.96.223.0/24 maxlen: 24
76.96.223.64/26 maxlen: 26
76.96.223.128/26 maxlen: 26
76.96.223.192/26 maxlen: 26
76.96.232.0/24 maxlen: 24
76.96.234.0/23 maxlen: 23
96.108.84.0/22 maxlen: 22
96.108.137.0/24 maxlen: 24
96.108.146.0/23 maxlen: 23
96.108.166.0/23 maxlen: 23
96.108.184.0/22 maxlen: 22
96.109.29.0/24 maxlen: 24
96.110.56.0/22 maxlen: 22
96.110.88.0/22 maxlen: 22
96.110.252.0/22 maxlen: 22
96.113.136.0/21 maxlen: 21
96.114.8.0/21 maxlen: 21
162.150.20.0/22 maxlen: 22
162.150.32.0/20 maxlen: 20
162.150.41.0/24 maxlen: 24
162.150.176.0/21 maxlen: 21
162.151.10.0/23 maxlen: 23
162.151.14.0/24 maxlen: 24
162.151.26.0/23 maxlen: 23
162.151.56.0/23 maxlen: 23
162.151.84.0/23 maxlen: 23
162.151.241.128/25 maxlen: 25
162.151.249.0/25 maxlen: 25
2001:558:d0::/48 maxlen: 48
2001:558:d2::/48 maxlen: 48
2001:558:6010::/48 maxlen: 48
2001:558:fc0e::/48 maxlen: 48
2001:558:fe16::/48 maxlen: 48
2001:559:9000::/36 maxlen: 36
2603:301a::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Tue 21 Oct 2025 10:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4b:58:3c:88:0b:5d:13:3f:f8:df:80:fb:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Validity
Not Before: Sep 28 13:00:41 2025 GMT
Not After : Dec 27 14:00:41 2025 GMT
Subject: CN=0cbcb1f9-72ec-4f4e-a4c1-ec1402ba0ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:59:35:43:b5:3c:f2:b8:ff:c2:74:93:e7:41:
73:8e:ab:58:89:70:99:1f:b2:63:a6:da:5c:ab:06:
35:00:06:43:74:9f:1e:d1:74:8d:b9:99:19:21:5f:
ef:a4:5a:8a:2e:07:bb:d7:7e:33:6d:1d:dc:78:44:
fc:73:35:6a:ff:aa:15:92:e6:63:57:bf:37:7e:5d:
33:a9:7e:ab:a6:50:6e:ed:6d:c4:68:45:a6:58:c6:
83:79:e7:07:3a:91:fb:7b:20:1b:41:c4:4d:eb:05:
39:82:55:5c:95:82:18:79:d8:40:7a:0e:96:e9:aa:
2a:51:74:dc:58:8c:fc:0b:bd:ab:d2:1c:c7:f7:48:
84:d3:04:e8:a8:d8:75:50:98:b0:c1:4f:21:7a:03:
0c:64:0c:6a:c7:58:5b:58:1f:c7:c0:a9:5d:1f:61:
a3:e2:d6:cd:21:26:97:0e:69:e2:70:6b:c0:ca:f8:
43:b6:9f:4b:27:46:80:4b:af:27:3a:cc:34:89:71:
b4:cb:ae:39:86:b7:41:b3:06:3c:4f:3f:14:1c:d1:
68:dc:95:21:d4:4d:87:64:9a:25:72:61:d7:20:e2:
98:95:c1:94:bc:cd:09:fb:92:0a:be:62:61:2d:01:
8d:37:2a:c5:cf:b0:21:37:27:29:b9:e9:3f:d7:19:
e5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:22:19:43:37:A6:A8:B8:01:E9:C2:71:D6:51:4D:7D:11:A3:16:A0
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/1a78b0ab-c73c-3c8b-8c8f-9670b294844b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
X509v3 Authority Key Identifier:
keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
sbgp-ipAddrBlock: critical
IPv4:
50.222.64.0/19
68.86.132.0/23
68.86.206.0/23
68.87.25.0/24
68.87.48.0/21
68.87.66.0/23
68.87.80.0/21
69.139.131.0/24
69.139.136.0/23
69.139.143.0/24
69.139.218.0/24
69.139.226.0/23
69.139.252.0/23
69.241.54.0/23
69.241.73.0/24
69.252.76.0/22
69.252.120.0/23
69.252.192.0/22
69.252.198.0/23
69.252.216.0/22
69.252.246.0/23
73.164.122.0/23
75.150.4.0/22
76.26.120.0/21
76.96.32.0/21
76.96.104.0/21
76.96.185.0/24
76.96.210.0/24
76.96.216.0/24
76.96.220.0/24
76.96.223.0/24
76.96.232.0/24
76.96.234.0/23
96.108.84.0/22
96.108.137.0/24
96.108.146.0/23
96.108.166.0/23
96.108.184.0/22
96.109.29.0/24
96.110.56.0/22
96.110.88.0/22
96.110.252.0/22
96.113.136.0/21
96.114.8.0/21
162.150.20.0/22
162.150.32.0/20
162.150.176.0/21
162.151.10.0/23
162.151.14.0/24
162.151.26.0/23
162.151.56.0/23
162.151.84.0/23
162.151.241.128/25
162.151.249.0/25
IPv6:
2001:558:d0::/48
2001:558:d2::/48
2001:558:6010::/48
2001:558:fc0e::/48
2001:558:fe16::/48
2001:559:9000::/36
2603:301a::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
06:77:96:aa:5d:04:52:03:95:42:f2:f8:45:c5:7f:6d:ec:0f:
df:0e:ca:c1:fa:0d:0e:12:5a:4e:2f:7e:4d:70:dd:17:69:2e:
e1:3f:b1:e7:eb:1d:93:7a:76:7d:d5:9a:e5:47:b6:99:31:5e:
29:e1:93:d8:5f:1d:49:85:eb:ec:19:05:6d:a8:4c:32:e4:55:
93:94:b7:50:e6:51:77:8d:5c:89:c0:34:a5:f7:12:4b:5a:bc:
8a:98:ed:9b:dc:bc:cb:a0:f4:83:1f:b3:b3:fc:29:ae:b6:8c:
d7:1e:41:25:ac:71:8e:88:b1:2f:db:24:2a:5e:d4:12:55:ef:
c4:08:22:bf:6d:ed:60:bb:b9:45:4d:66:06:cb:69:c6:6e:91:
81:68:b7:da:75:61:54:a1:0c:db:1a:a8:c0:35:18:68:ae:d8:
6c:df:d5:f6:2b:30:50:07:b3:6d:f6:b7:63:e7:2a:c6:77:8d:
0a:24:1b:b1:05:35:cc:c1:1c:09:70:18:d4:6d:01:47:63:43:
54:fc:99:bd:0a:e1:2a:69:94:c6:85:eb:39:86:86:cf:82:05:
ea:6f:59:2e:00:1d:b2:b6:66:f8:4e:4d:25:87:7d:4f:0f:17:
66:4b:a6:32:3f:9a:75:d4:2b:cb:d1:3c:ec:f3:96:92:28:a3:
4a:71:58:4a
-----BEGIN CERTIFICATE-----
MIIH0TCCBrmgAwIBAgIUAQ0Mn0MoWEtYPIgLXRM/+N+A+4AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1
NGY2MB4XDTI1MDkyODEzMDA0MVoXDTI1MTIyNzE0MDA0MVowLzEtMCsGA1UEAxMk
MGNiY2IxZjktNzJlYy00ZjRlLWE0YzEtZWMxNDAyYmEwZWU5MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVk1Q7U88rj/wnST50FzjqtYiXCZH7Jjptpc
qwY1AAZDdJ8e0XSNuZkZIV/vpFqKLge7134zbR3ceET8czVq/6oVkuZjV783fl0z
qX6rplBu7W3EaEWmWMaDeecHOpH7eyAbQcRN6wU5glVclYIYedhAeg6W6aoqUXTc
WIz8C72r0hzH90iE0wToqNh1UJiwwU8hegMMZAxqx1hbWB/HwKldH2Gj4tbNISaX
DmnicGvAyvhDtp9LJ0aAS68nOsw0iXG0y645hrdBswY8Tz8UHNFo3JUh1E2HZJol
cmHXIOKYlcGUvM0J+5IKvmJhLQGNNyrFz7AhNycpuek/1xnlgwIDAQABo4IE4zCC
BN8wHQYDVR0OBBYEFAoiGUM3pqi4AenCcdZRTX0RoxagMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1
YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMWE3OGIwYWItYzczYy0z
YzhiLThjOGYtOTY3MGIyOTQ4NDRiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw
ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk
NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5
ODA5ZDU0ZjYuY2VyMIIBqwYIKwYBBQUHAQcBAf8EggGaMIIBljCCAU4EAgABMIIB
RgMEBTLeQAMEAURWhAMEAURWzgMEAERXGQMEA0RXMAMEAURXQgMEA0RXUAMEAEWL
gwMEAUWLiAMEAEWLjwMEAEWL2gMEAUWL4gMEAUWL/AMEAUXxNgMEAEXxSQMEAkX8
TAMEAUX8eAMEAkX8wAMEAUX8xgMEAkX82AMEAUX89gMEAUmkegMEAkuWBAMEA0wa
eAMEA0xgIAMEA0xgaAMEAExguQMEAExg0gMEAExg2AMEAExg3AMEAExg3wMEAExg
6AMEAUxg6gMEAmBsVAMEAGBsiQMEAWBskgMEAWBspgMEAmBsuAMEAGBtHQMEAmBu
OAMEAmBuWAMEAmBu/AMEA2BxiAMEA2ByCAMEAqKWFAMEBKKWIAMEA6KWsAMEAaKX
CgMEAKKXDgMEAaKXGgMEAaKXOAMEAaKXVAMFB6KX8YADBQeil/kAMEIEAgACMDwD
BwAgAQVYANADBwAgAQVYANIDBwAgAQVYYBADBwAgAQVY/A4DBwAgAQVY/hYDBgQg
AQVZkAMFACYDMBowVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUF
BwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRt
bDANBgkqhkiG9w0BAQsFAAOCAQEABneWql0EUgOVQvL4RcV/bewP3w7KwfoNDhJa
Ti9+TXDdF2ku4T+x5+sdk3p2fdWa5Ue2mTFeKeGT2F8dSYXr7BkFbahMMuRVk5S3
UOZRd41cicA0pfcSS1q8ipjtm9y8y6D0gx+zs/wprraM1x5BJaxxjoixL9skKl7U
ElXvxAgiv23tYLu5RU1mBstpxm6RgWi32nVhVKEM2xqowDUYaK7YbN/V9iswUAez
bfa3Y+cqxneNCiQbsQU1zMEcCXAY1G0BR2NDVPyZvQrhKmmUxoXrOYaGz4IF6m9Z
LgAdsrZm+E5NJYd9Tw8XZkumMj+addQry9E87POWkiijSnFYSg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 06:28:40 2025 by rpki-client