Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa
File:                     8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa (raw, json)
Hash identifier:          lYkQTDLJazR68k2TY8QJqu4IEx7iL3FR0lL5ZhR6aOo=
Subject key identifier:   62:65:7A:BC:FA:62:E8:64:67:D5:C0:13:72:03:94:F7:AA:42:6F:D3
Certificate issuer:       /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial:       6942845C74C9D88B958FC39D71ACA8884F1E3662
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa
Signing time:             Tue 28 May 2024 00:00:00 +0000
ROA not before:           Tue 28 May 2024 00:00:00 +0000
ROA not after:            Tue 02 Jul 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        2605:9cc0:396::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Tue 18 Jun 2024 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:42:84:5c:74:c9:d8:8b:95:8f:c3:9d:71:ac:a8:88:4f:1e:36:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
        Validity
            Not Before: May 28 00:00:00 2024 GMT
            Not After : Jul  2 23:59:59 2024 GMT
        Subject: serialNumber=ddeb0078bf54808d53956aba773db9d7f4c232ae1b5ad77f5d28d12b2d8325f3, CN=f7243785-46de-414b-9b8f-7a9699e979e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:6f:95:bd:ac:1a:7e:92:fe:a6:2f:cb:7e:1a:
                    7c:2f:6b:29:9e:ee:c6:4d:99:06:16:11:70:20:2a:
                    b4:0a:81:8a:df:23:bc:01:7a:e2:4d:f8:c7:e2:f1:
                    fb:df:0a:74:ee:78:8b:74:f8:28:29:af:44:97:11:
                    da:a2:da:5b:da:27:fc:36:06:23:0b:7d:78:76:32:
                    d5:a6:0b:14:70:af:32:83:09:d8:82:0f:3f:54:2e:
                    fd:a1:1a:f6:c1:ce:86:47:fb:22:c7:c0:6d:fa:95:
                    f0:7e:36:ab:97:99:30:ab:d4:91:20:d7:67:97:ba:
                    a5:eb:0c:47:30:5f:84:6c:43:1f:24:4a:80:be:2d:
                    9c:90:ea:8f:64:06:93:b1:81:97:3d:0f:af:56:19:
                    0a:4b:d8:f0:00:02:0c:e0:85:fa:08:38:1e:e7:4e:
                    51:86:cd:0a:b8:ad:92:3a:a3:bf:f4:60:dc:3f:73:
                    c5:0b:f8:1f:33:0e:3d:df:d6:58:91:a8:b8:a5:4b:
                    78:8c:01:14:bb:87:49:0f:89:c8:5e:25:8a:d1:79:
                    93:4e:6c:04:16:42:90:98:e5:1a:ed:a1:7a:50:97:
                    50:43:0e:dc:1c:85:46:8f:28:e9:2a:c6:c2:e5:75:
                    99:06:ff:eb:fe:4c:8f:8f:16:ce:ed:c8:ed:2b:74:
                    58:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:65:7A:BC:FA:62:E8:64:67:D5:C0:13:72:03:94:F7:AA:42:6F:D3
            X509v3 Authority Key Identifier:
                keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9cc0:396::/48

    Signature Algorithm: sha256WithRSAEncryption
         62:c8:ff:00:a3:38:45:50:c1:44:04:9e:a4:e8:14:33:79:66:
         42:b4:59:97:12:69:48:6e:66:a1:c2:34:9d:76:38:97:be:56:
         33:90:8b:36:ae:df:e6:09:1f:84:2b:78:2d:0f:a3:13:c8:a3:
         e3:5b:23:81:53:a9:86:eb:18:9c:34:76:99:08:e9:b3:6d:3a:
         e8:49:9d:a7:78:f1:35:3a:70:2a:cb:ba:47:b3:3e:e4:47:a4:
         e6:74:b8:b6:6e:93:01:50:bc:79:33:87:37:91:c9:8c:0b:0a:
         4f:c0:88:bd:33:3c:e2:44:ee:23:d0:be:d0:62:a6:92:57:ab:
         69:f0:59:7d:9d:23:94:55:96:47:35:61:d0:0b:2b:3c:f1:60:
         17:69:05:fa:c3:0c:ca:41:e7:f5:25:39:9b:51:af:fd:59:66:
         cc:07:9b:17:2e:81:a6:57:9e:24:11:37:28:54:c4:ff:b0:cd:
         6e:a4:d6:23:a9:8e:ed:3a:db:4d:76:c3:b5:d1:24:50:79:e5:
         46:90:1d:36:da:00:48:38:2d:00:07:59:9e:37:44:a5:a0:45:
         61:a8:f2:60:6f:9f:9a:ee:2a:d1:36:a0:73:f3:3b:be:08:3f:
         52:7f:e2:c5:c5:30:02:22:70:02:05:a9:12:49:ff:8a:d3:78:
         cd:69:4a:49
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jun 17 02:11:02 2024 by rpki-client on console-ams.rpki-client.org