Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
File:                     c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json)
Hash identifier:          b/dBhdrwcRDn73rk7IySRUFvj/VaOTlz1i3P6xVVP74=
Subject key identifier:   EC:7B:3C:06:C3:42:68:39:B3:8C:CB:F2:82:CE:23:81:66:4B:BD:C0
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       78C75AE0BECE3EB1AEE0E6E680CB09C2680A887A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa
Signing time:             Tue 19 Mar 2024 00:00:00 +0000
ROA not before:           Tue 19 Mar 2024 00:00:00 +0000
ROA not after:            Tue 23 Apr 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        162.213.233.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 29 Mar 2024 12:02:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            78:c7:5a:e0:be:ce:3e:b1:ae:e0:e6:e6:80:cb:09:c2:68:0a:88:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Mar 19 00:00:00 2024 GMT
            Not After : Apr 23 23:59:59 2024 GMT
        Subject: serialNumber=74a053fc4f58b17131eef390d581548d55a3002f398b6675d24058885a88bc0d, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:02:ca:c7:e5:a5:82:a1:fd:ee:1f:9c:ae:87:
                    14:29:68:ea:47:c0:cd:51:c0:ab:ff:22:2d:86:96:
                    02:7c:c7:3a:69:1e:e3:49:fb:75:a2:ba:bb:c2:40:
                    d7:06:a3:bb:f0:b4:a1:e1:71:df:98:9d:0f:9b:2c:
                    89:10:70:5f:45:96:e5:17:03:04:b3:4a:fd:ee:a2:
                    48:cb:91:b6:ab:54:31:37:22:48:24:56:25:a6:a5:
                    78:ef:79:9d:70:5b:71:20:f9:46:1c:a1:83:fe:86:
                    f1:f2:01:c7:c4:58:33:17:da:7a:66:c2:72:7b:1b:
                    3f:05:55:18:01:f7:25:93:54:b8:c5:98:ff:8a:7b:
                    ca:f0:3e:dc:ee:ec:f1:36:46:8c:94:eb:8d:2f:3f:
                    73:19:38:8f:fe:32:74:b5:06:66:ce:98:f6:fe:d1:
                    14:14:50:69:a5:49:ab:cc:a4:4b:a8:76:57:85:8c:
                    93:fe:80:26:ba:88:9e:d5:7b:e5:0c:f6:bd:11:31:
                    f4:f9:eb:d8:df:ec:c0:69:e4:5b:9b:4e:d9:64:6a:
                    19:27:66:1a:a2:10:15:bd:6f:99:09:fd:1a:1b:e5:
                    88:dc:94:7e:58:fd:90:b3:93:81:87:79:45:6a:20:
                    45:cd:46:d6:45:49:d7:ed:c0:95:41:32:cc:9f:13:
                    62:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:7B:3C:06:C3:42:68:39:B3:8C:CB:F2:82:CE:23:81:66:4B:BD:C0
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  162.213.233.0/24

    Signature Algorithm: sha256WithRSAEncryption
         bf:c4:3d:56:71:b3:d6:4d:80:29:76:8e:5d:89:3d:0a:e2:40:
         b4:0e:b6:2f:55:12:b4:52:9f:a0:11:c9:6a:65:ea:ca:bc:fb:
         2c:e9:0e:e9:c5:28:b9:1c:f3:e3:bf:bd:f4:1f:5f:ed:ad:d0:
         9d:af:5e:dd:73:c5:d9:54:61:46:12:a3:83:0a:72:ff:5d:58:
         31:94:3f:93:e1:5a:7c:ee:28:81:34:1f:f6:1e:11:19:2c:fd:
         6c:f9:81:02:55:d5:76:aa:b4:47:65:e1:62:7b:65:ee:20:0b:
         99:ad:36:d0:75:0e:c0:c0:4c:0b:47:2f:80:8f:10:56:5b:05:
         41:d9:2a:26:37:db:7f:ee:3a:ff:1f:f0:55:0a:1a:81:9e:20:
         6e:77:85:99:96:bd:50:e7:a9:61:d1:d9:de:b8:c2:ab:eb:4f:
         bf:25:9e:9a:70:c5:66:1d:40:22:f9:fc:74:50:67:60:d1:10:
         9e:4c:45:aa:08:8b:50:31:53:57:77:eb:ae:17:07:76:91:b8:
         d6:89:3b:5c:87:a7:a1:cb:07:32:f6:f8:44:3a:9b:94:25:c2:
         9f:57:f9:44:1b:48:89:cf:58:ad:bb:43:bc:93:a0:ab:48:9a:
         9b:88:06:47:54:b6:1e:11:99:65:df:67:13:5d:0a:90:26:1d:
         53:aa:1d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 02:05:47 2024 by rpki-client on console-ams.rpki-client.org