Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa
File:                     ae8d221b-7c83-4dd1-ba17-96784666216f.roa (raw, json)
Hash identifier:          ltO+xSRNyTgnRzWiYwiHUkDeXfQr2BbC5u5rafewd0Q=
Subject key identifier:   A8:48:BB:9F:DC:BE:C4:96:92:CC:DD:8A:AD:77:91:AE:BF:EF:42:30
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       0DA31FE9F745AC1C6DBB6FF050A85FE7C579AB54
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa
Signing time:             Fri 08 Nov 2024 00:00:00 +0000
ROA not before:           Fri 08 Nov 2024 00:00:00 +0000
ROA not after:            Fri 13 Dec 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        99.83.64.0/18 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Tue 12 Nov 2024 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:a3:1f:e9:f7:45:ac:1c:6d:bb:6f:f0:50:a8:5f:e7:c5:79:ab:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Nov  8 00:00:00 2024 GMT
            Not After : Dec 13 23:59:59 2024 GMT
        Subject: serialNumber=b3112d6584d659079a4a35d68c96438237bc3a68990a55ad6377f0e25dbf5bf2, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:11:62:c3:d9:a4:bb:9b:38:4c:ff:c3:89:1f:
                    f7:e5:a6:7e:e4:6e:be:9c:77:ea:2f:36:57:b5:44:
                    ed:4b:0f:c4:10:ac:68:2d:9d:bc:9e:7f:9b:43:b8:
                    d3:c4:38:de:7e:78:77:b6:7c:88:a0:2b:bf:9a:b0:
                    35:c2:0b:47:10:bd:f3:71:c9:f3:e1:b4:a6:f2:b2:
                    e7:85:8c:54:bb:24:4b:fe:fb:9e:65:76:6e:90:1e:
                    ad:c5:66:01:33:ed:08:3e:5e:ba:3a:f0:ac:76:f3:
                    83:75:a7:6b:0b:2a:35:73:c8:3a:a6:bd:1a:09:4a:
                    ad:d5:cc:ac:b2:82:43:14:9e:7c:66:0c:b2:04:46:
                    d8:d3:40:3b:ce:16:09:e6:aa:bd:59:fc:1b:c2:3e:
                    45:78:bd:7e:15:31:56:c4:6a:1b:c7:aa:06:83:44:
                    aa:c2:e4:6a:21:ad:2c:00:1c:33:6a:be:06:31:3f:
                    c6:5d:d9:a5:04:90:47:fb:a1:72:aa:3c:1c:ae:23:
                    5e:6d:b9:f3:1e:d7:71:d1:44:3a:c0:04:ab:e8:f8:
                    42:f9:4c:e9:0b:4f:d7:74:23:56:11:85:ff:46:fd:
                    30:ca:75:c7:12:5d:1a:4c:35:88:8d:84:cf:01:32:
                    2c:6e:c0:55:31:cc:db:c7:07:23:50:9d:34:dd:a2:
                    45:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:48:BB:9F:DC:BE:C4:96:92:CC:DD:8A:AD:77:91:AE:BF:EF:42:30
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  99.83.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         d8:d8:54:2b:7f:41:e8:76:c3:dd:2e:44:f5:b3:e6:20:44:2a:
         9b:2a:b8:69:bf:ed:0a:c3:60:6b:7b:48:af:39:22:1c:17:00:
         27:9d:d7:0a:c9:4b:33:d0:63:ef:4e:66:4e:c5:34:97:2d:55:
         4c:9a:9a:a7:4e:fd:5d:17:ff:03:0a:31:e8:ac:10:ee:81:00:
         4c:e2:2a:f2:6b:9b:06:ac:ab:68:8b:d0:93:11:d9:70:5b:c2:
         1b:4e:95:88:df:e5:7f:d4:01:e3:9b:69:ba:32:c6:58:7a:39:
         b2:b2:6c:df:cb:e9:2c:a9:22:3f:9e:66:c9:a6:22:81:20:3d:
         86:2b:78:ba:1a:7d:aa:0a:b9:0a:f1:7e:b7:f6:88:00:2e:98:
         cd:4a:c4:d4:b9:62:66:93:b9:31:ae:80:2d:03:57:4a:ac:7b:
         e0:9b:f8:7f:d7:97:ff:ad:98:ce:8f:c3:c0:74:51:51:4f:e5:
         b1:9a:83:bc:2d:81:81:69:a3:cb:2a:aa:a9:cd:22:d8:ba:d8:
         39:3d:07:ba:49:89:95:be:84:13:3d:14:3d:9e:82:9a:44:6e:
         7f:c3:fd:6d:84:16:68:6d:87:d9:c5:65:91:e9:b8:d5:a8:42:
         4b:cf:bf:7b:28:03:b4:79:8d:a8:fa:43:2a:cf:b3:9a:44:2c:
         57:16:38:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 01:39:08 2024 by rpki-client on console-ams.rpki-client.org