Route Origin Authorization 

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa
File:                     48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa (raw, json)
Hash identifier:          pITOlShMBV8UcPI8CBPF3rFuK1ktOd3+8xq1L51VrTw=
Subject key identifier:   D6:D1:F0:91:B2:DE:90:E3:0E:9F:C0:89:69:52:87:98:E5:8C:3A:5C
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       184E67348F8A68144FA6B333B54E52B935429D1D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa
Signing time:             Fri 22 Sep 2023 00:00:00 +0000
ROA not before:           Fri 22 Sep 2023 00:00:00 +0000
ROA not after:            Fri 27 Oct 2023 23:59:59 +0000
asID:                     16509
IP address blocks:        56.159.0.0/16 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sat 23 Sep 2023 12:08:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:4e:67:34:8f:8a:68:14:4f:a6:b3:33:b5:4e:52:b9:35:42:9d:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Sep 22 00:00:00 2023 GMT
            Not After : Oct 27 23:59:59 2023 GMT
        Subject: serialNumber=6b980fc1a2c3fad38f4e6610bc424d1b336c77bbb5e077e8e2d73fad6b49147b, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:70:55:79:cc:d7:19:f8:f8:b7:da:76:72:ef:
                    c2:29:f3:f7:37:fa:12:2b:1d:7e:7e:b4:cb:4a:b3:
                    96:38:e6:63:67:5f:40:a6:2a:8f:af:b7:1f:80:b9:
                    56:7e:d1:38:03:3c:3a:7b:36:b3:8e:f7:3c:bf:91:
                    f4:16:a9:ae:c1:57:36:83:6b:04:98:1d:c5:27:8f:
                    cc:90:df:ca:44:a5:fe:da:0b:8e:54:56:64:90:3c:
                    48:ed:69:9c:de:4b:d2:89:fa:be:24:f1:a1:70:dd:
                    1d:f2:a4:a8:37:69:9c:f2:32:d3:4d:9d:34:eb:e5:
                    71:2c:7b:03:e2:94:fa:21:a9:5c:10:c6:0f:26:48:
                    ac:fa:0c:6b:01:7c:1d:16:70:36:ce:8e:eb:75:6e:
                    21:a5:4f:69:48:d0:66:2c:02:cb:22:8f:ae:05:bc:
                    d7:15:f0:92:04:47:8d:e0:62:14:10:ed:27:98:e4:
                    a4:5c:b9:b3:72:b8:d3:a5:0f:2f:8b:b1:40:2f:9f:
                    b8:cc:f5:bc:59:05:af:54:cf:41:87:d7:7a:c1:a3:
                    f0:c9:a5:39:33:e1:31:e9:f8:59:7a:4a:60:b4:91:
                    28:d5:ef:27:2e:80:02:3b:98:54:ed:be:94:9b:9c:
                    3c:4a:a9:bd:f6:88:1a:25:70:76:55:14:8f:3b:3a:
                    3e:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:D1:F0:91:B2:DE:90:E3:0E:9F:C0:89:69:52:87:98:E5:8C:3A:5C
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.159.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         89:37:7c:75:f2:29:14:bf:ca:0b:4d:12:e6:b2:3e:45:19:be:
         9e:e9:50:3d:a9:57:fc:44:ae:2a:0c:12:e0:b8:83:70:24:9f:
         3a:50:7e:5e:c5:af:c3:d1:24:6c:20:03:dd:33:79:82:64:1e:
         7a:94:c1:08:65:04:a4:86:77:bd:20:08:ec:76:c6:e1:a3:fc:
         76:4d:0e:c6:64:24:65:46:b1:b2:fc:88:e0:e8:64:ea:d0:c6:
         05:f6:9f:28:ed:37:c0:96:08:ac:26:1f:c1:71:a3:ba:26:8b:
         1c:fe:c1:93:72:36:83:54:df:9a:aa:0b:15:4d:c4:67:69:c7:
         97:17:91:d1:0a:cc:f6:3e:37:e1:44:05:d7:98:d2:38:1c:a6:
         20:bd:79:1f:7b:a4:05:a8:85:11:02:64:21:76:f9:a9:5f:63:
         0b:5a:90:f7:46:87:05:53:b1:f5:c8:f6:20:aa:1e:c9:78:f6:
         24:90:54:97:fb:13:75:72:69:b0:ff:39:20:e6:1c:51:83:39:
         8a:41:db:a6:d8:f2:6c:b7:e8:c7:18:e9:cd:8e:a1:d4:57:bc:
         63:69:ad:3b:0b:0a:c1:90:0d:5f:f9:a2:0c:25:bf:14:43:b0:
         dd:3d:d7:04:78:63:2e:a3:54:61:43:6a:9a:f2:d7:8d:2f:fe:
         4f:7d:aa:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 22 00:30:06 2023 by rpki-client on console-fra.rpki-client.org