Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa
File:                     277fb1fb-3655-4c68-80f2-1f4160a003be.roa (raw, json)
Hash identifier:          J4tbbL9RcMZ0JnpwkSSiex0KrANNM84OU122PcNYS4k=
Subject key identifier:   81:39:8C:8F:83:2C:E6:FF:E3:02:84:B6:69:1E:49:B0:1F:BB:0A:6E
Certificate issuer:       /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial:       6583B28950314CE7D064FE130F16D37B6A69EBEC
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa
Signing time:             Tue 12 Mar 2024 00:00:00 +0000
ROA not before:           Tue 12 Mar 2024 00:00:00 +0000
ROA not after:            Tue 16 Apr 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        2605:9cc0:398::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 29 Mar 2024 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            65:83:b2:89:50:31:4c:e7:d0:64:fe:13:0f:16:d3:7b:6a:69:eb:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
        Validity
            Not Before: Mar 12 00:00:00 2024 GMT
            Not After : Apr 16 23:59:59 2024 GMT
        Subject: serialNumber=407d9f017055c49733bd7aecf4f39c09ef320a7db9d80356431cd84f3be8cf6d, CN=f7243785-46de-414b-9b8f-7a9699e979e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:dd:93:c7:71:20:7f:55:07:04:0f:b8:06:f9:
                    d9:6b:19:71:e9:c5:fd:ba:5f:6d:0a:ca:a0:73:2e:
                    e5:41:14:d5:15:8c:1f:4a:96:e4:19:9f:50:44:b4:
                    d4:17:ce:c6:eb:34:65:d6:71:f5:28:a9:ea:95:57:
                    bd:e8:9e:02:3d:0d:49:8a:40:9f:a3:2a:fc:59:d3:
                    77:97:bc:d7:c4:16:87:9d:93:55:c6:eb:3e:4b:39:
                    e4:ff:9f:52:74:18:09:06:97:a4:ad:f9:31:15:41:
                    dc:b0:da:64:cb:29:82:a5:be:7c:b1:16:06:13:39:
                    e9:67:8e:15:82:a1:89:b3:e3:ba:8d:41:2f:50:8c:
                    38:0c:33:56:eb:9b:b7:8e:43:0b:67:f4:b7:76:ac:
                    94:3e:e6:92:16:aa:28:4f:04:72:0c:ca:d6:92:b4:
                    bd:5f:b0:6d:f8:66:4f:07:9d:85:19:1a:99:e9:10:
                    6e:9e:8a:d6:df:3c:06:bf:21:fa:d8:07:d1:82:8b:
                    4e:ad:b9:44:43:5c:55:70:89:f6:fb:59:45:11:80:
                    27:fe:04:8f:86:2f:67:fe:98:fc:17:eb:94:66:38:
                    7c:aa:48:6c:83:ab:57:07:48:65:45:5b:80:fc:8c:
                    79:02:0a:cc:14:e6:f7:84:c5:44:36:1f:d9:a1:da:
                    2a:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:39:8C:8F:83:2C:E6:FF:E3:02:84:B6:69:1E:49:B0:1F:BB:0A:6E
            X509v3 Authority Key Identifier:
                keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9cc0:398::/48

    Signature Algorithm: sha256WithRSAEncryption
         45:f1:66:a9:0a:97:9d:09:c7:62:a8:82:a0:5b:38:35:e4:b1:
         9f:7b:9a:4d:24:62:2a:c8:8e:84:42:74:21:df:f9:04:49:da:
         a9:7a:a5:c6:e6:25:a0:71:90:14:8b:b8:43:ad:02:04:a2:8a:
         16:9d:f2:d7:94:d1:43:f4:ec:1e:64:5d:0f:02:86:e4:6a:1c:
         1e:7e:48:86:52:2f:51:3c:b9:2b:b6:52:23:c9:01:1f:39:40:
         3e:df:64:d7:a9:a4:86:74:1f:53:54:79:3e:2c:50:bb:4e:76:
         f5:0f:18:13:40:a4:63:f5:6e:f1:ca:cc:b9:06:21:43:01:47:
         aa:26:b1:18:ef:de:81:33:a2:31:c8:42:6b:38:01:a3:30:dc:
         a7:10:71:c5:5c:09:5c:23:89:33:2c:25:68:b5:52:00:e5:c5:
         c5:d2:48:93:87:41:cc:29:b8:2f:52:a7:5a:f7:42:dd:19:9d:
         d7:66:5e:00:8c:49:38:17:d8:26:39:e5:8e:90:5e:5c:af:19:
         d3:b1:04:f4:6e:7b:77:a5:10:d9:69:86:f4:7d:cc:31:e3:40:
         a8:c7:ed:18:b1:6a:89:1c:26:4a:8d:ee:96:d2:1b:78:a8:c1:
         2f:8d:45:6b:3d:bb:b5:6a:3f:6a:b2:5a:cb:3e:8b:31:6e:54:
         58:d8:6a:63
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUZYOyiVAxTOfQZP4TDxbTe2pp6+wwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw
MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwMzEyMDAwMDAwWhcNMjQwNDE2MjM1OTU5
WjB6MUkwRwYDVQQFE0A0MDdkOWYwMTcwNTVjNDk3MzNiZDdhZWNmNGYzOWMwOWVm
MzIwYTdkYjlkODAzNTY0MzFjZDg0ZjNiZThjZjZkMS0wKwYDVQQDEyRmNzI0Mzc4
NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCh3ZPHcSB/VQcED7gG+dlrGXHpxf26X20KyqBzLuVBFNUV
jB9KluQZn1BEtNQXzsbrNGXWcfUoqeqVV73ongI9DUmKQJ+jKvxZ03eXvNfEFoed
k1XG6z5LOeT/n1J0GAkGl6St+TEVQdyw2mTLKYKlvnyxFgYTOelnjhWCoYmz47qN
QS9QjDgMM1brm7eOQwtn9Ld2rJQ+5pIWqihPBHIMytaStL1fsG34Zk8HnYUZGpnp
EG6eitbfPAa/IfrYB9GCi06tuURDXFVwifb7WUURgCf+BI+GL2f+mPwX65RmOHyq
SGyDq1cHSGVFW4D8jHkCCswU5veExUQ2H9mh2iozAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUgTmMj4Ms5v/jAoS2aR5JsB+7Cm4wHwYDVR0jBBgwFoAUugzhfiM/vHHU
MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m
NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5
YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy
YTEzOWVhOTJiLzI3N2ZiMWZiLTM2NTUtNGM2OC04MGYyLTFmNDE2MGEwMDNiZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh
LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmBZzAA5gwDQYJKoZIhvcNAQELBQADggEBAEXxZqkKl50Jx2KogqBbODXk
sZ97mk0kYirIjoRCdCHf+QRJ2ql6pcbmJaBxkBSLuEOtAgSiihad8teU0UP07B5k
XQ8ChuRqHB5+SIZSL1E8uSu2UiPJAR85QD7fZNeppIZ0H1NUeT4sULtOdvUPGBNA
pGP1bvHKzLkGIUMBR6omsRjv3oEzojHIQms4AaMw3KcQccVcCVwjiTMsJWi1UgDl
xcXSSJOHQcwpuC9Sp1r3Qt0ZnddmXgCMSTgX2CY55Y6QXlyvGdOxBPRue3elENlp
hvR9zDHjQKjH7RixaokcJkqN7pbSG3iowS+NRWs9u7VqP2qyWss+izFuVFjYamM=
-----END CERTIFICATE-----
Generated at Thu Mar 28 13:32:02 2024 by rpki-client on console-ams.rpki-client.org