Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa
File:                     6632e911-ee11-4bc9-a573-00ef83fd31d7.roa (raw, json)
Hash identifier:          SOO9ayoldrZMo1vBvEx+OhiaBx10yLJncEmaa8d/hgQ=
Subject key identifier:   B4:64:3D:6E:85:D1:80:0F:A3:3D:FD:34:56:1D:F1:95:46:94:B0:04
Certificate issuer:       /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial:       037F14DD47E98E4EDA8312F20B6F5E982E542D93
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa
Signing time:             Mon 06 Jan 2025 00:00:00 +0000
ROA not before:           Mon 06 Jan 2025 00:00:00 +0000
ROA not after:            Mon 10 Feb 2025 23:59:59 +0000
asID:                     14618
IP address blocks:        2600:f0f0:6000::/44 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 19 Jan 2025 21:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:7f:14:dd:47:e9:8e:4e:da:83:12:f2:0b:6f:5e:98:2e:54:2d:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
        Validity
            Not Before: Jan  6 00:00:00 2025 GMT
            Not After : Feb 10 23:59:59 2025 GMT
        Subject: serialNumber=ffd80237b3c02f536c2f91a7845000eb8bede7ad52e85da661b1fd806fefdb13, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:cc:0b:2c:5f:e9:53:1e:67:e5:f7:00:fb:f7:
                    44:1b:dd:76:dd:23:5e:98:1d:a2:e4:1d:bd:fb:5f:
                    97:ae:e8:b2:e0:bb:0a:08:4c:e9:f0:f6:1a:d8:94:
                    5f:8a:6a:a5:72:ac:95:64:7d:08:7f:0d:ea:a2:6d:
                    38:10:e5:26:b2:74:84:70:a6:d5:f7:43:08:f4:a6:
                    0a:a1:88:fe:44:12:11:58:54:3e:a4:bc:3d:d8:01:
                    ba:e2:3a:e2:f0:86:c1:5b:19:78:d9:f7:eb:b8:52:
                    25:d6:d0:ea:d6:36:05:f3:ea:47:2e:5e:58:9d:59:
                    a5:e8:44:e8:4d:23:49:52:80:80:83:5f:53:e1:7d:
                    05:02:61:a3:e1:1a:5b:5f:0b:a9:c4:58:33:03:72:
                    c0:51:2b:c4:0b:e4:26:07:a1:d3:74:9d:92:50:ef:
                    e7:32:74:ee:6b:b8:ab:0c:c7:02:2c:de:b9:d2:ce:
                    94:93:63:67:4e:53:eb:d7:7e:63:00:14:f5:c0:74:
                    00:64:4f:88:1c:4f:c2:ee:f6:6a:9d:6d:79:ae:60:
                    c2:3b:79:c2:76:88:7e:d9:29:91:b1:07:6d:91:d1:
                    3e:ab:92:b6:6b:dd:9e:2e:35:ce:f0:d0:f5:63:fd:
                    5e:2e:11:d6:56:76:7c:c5:69:d0:2c:ab:a4:a7:40:
                    3c:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:64:3D:6E:85:D1:80:0F:A3:3D:FD:34:56:1D:F1:95:46:94:B0:04
            X509v3 Authority Key Identifier:
                keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:f0f0:6000::/44

    Signature Algorithm: sha256WithRSAEncryption
         54:f6:f7:94:7b:1f:a5:a7:42:76:56:bb:58:80:51:54:3a:ab:
         b4:c1:18:04:62:6e:3b:8a:67:e9:16:35:f2:3d:cc:bf:8a:99:
         f5:25:5d:1f:0b:03:47:47:f6:7c:8d:b2:82:75:ab:94:50:3e:
         86:6b:a1:fa:84:b4:01:20:61:18:a3:f5:3d:22:d6:36:64:81:
         76:40:30:4e:96:59:91:63:8e:8e:64:e9:37:d0:f9:e6:30:d4:
         59:d0:b5:3b:dd:ff:c0:eb:ef:67:55:8c:38:56:51:cd:f5:b8:
         cb:29:6c:51:93:9b:02:47:e3:e9:70:f7:68:58:79:a7:14:ba:
         ad:14:fd:45:22:9f:58:08:ec:70:c3:6a:b1:5b:41:70:7f:d7:
         2b:82:89:66:aa:66:57:90:e5:ed:c0:8e:9b:1a:2a:0b:c8:c1:
         35:f4:73:78:d4:3f:48:ea:b4:c9:6e:cf:f3:f4:4b:81:6e:0a:
         ef:ea:67:7e:8c:79:14:92:73:cb:b7:9e:ef:aa:42:5a:14:8f:
         b7:d1:a1:92:2b:6b:7f:68:b1:01:95:79:68:f0:b7:32:ee:43:
         33:b2:e9:fa:5d:76:d2:32:da:c7:0f:01:af:2b:b1:a7:0d:0a:
         c5:70:b7:5f:c3:12:43:5f:4f:52:10:6b:08:9c:40:15:05:63:
         b0:89:c6:50
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jan 17 21:21:57 2025 by rpki-client on console-ams.rpki-client.org