Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa
File:                     b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json)
Hash identifier:          YBlD4Bj5y4Egjb01vx3lseGx8n3TxJlKkKIxnXB8Njs=
Subject key identifier:   90:99:3C:43:3D:70:B6:EB:FA:D6:62:56:C0:D3:5A:BA:F4:1C:B1:74
Certificate issuer:       /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial:       7FAC64321AF8FC80E99AB9BEAF5EC1E743DF6BEC
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa
Signing time:             Sat 09 Sep 2023 00:00:00 +0000
ROA not before:           Sat 09 Sep 2023 00:00:00 +0000
ROA not after:            Sat 14 Oct 2023 23:59:59 +0000
asID:                     16509
IP address blocks:        2605:9cc0:39c::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 10 Sep 2023 01:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:ac:64:32:1a:f8:fc:80:e9:9a:b9:be:af:5e:c1:e7:43:df:6b:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
        Validity
            Not Before: Sep  9 00:00:00 2023 GMT
            Not After : Oct 14 23:59:59 2023 GMT
        Subject: serialNumber=de6c0c9cf8fcc41363d69ef18c4b4e9e4cb2df8f3d18fe7340a08255cb96b88c, CN=f7243785-46de-414b-9b8f-7a9699e979e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:56:82:b1:d0:05:eb:85:8d:08:c4:c5:ce:3a:
                    ec:0a:3f:7d:82:a7:43:3f:70:82:a6:c9:18:91:26:
                    19:a2:b9:d6:d7:69:19:2e:84:2a:f4:2d:d2:ab:bc:
                    38:5c:20:92:f4:1c:4f:0e:11:f6:50:96:ee:c1:e7:
                    25:82:b7:7f:dd:33:b2:bd:bf:d3:90:ef:33:5f:07:
                    c0:8b:4e:af:7a:77:30:ed:25:b0:fa:74:a7:d5:ef:
                    d9:d5:82:29:d3:c1:56:f5:3a:5d:47:61:14:4d:65:
                    2c:c8:fe:26:78:32:19:2a:a4:db:ec:a7:21:b5:d5:
                    27:ea:3e:3f:d6:85:45:6d:13:a5:b2:e8:40:ba:15:
                    7b:d6:2f:29:00:ef:f9:b0:06:2b:e0:06:08:19:ab:
                    e6:ae:8f:48:dd:ce:86:b7:d1:88:f8:4f:d7:11:04:
                    57:c2:53:97:b6:7f:2e:3e:72:a6:56:99:32:8b:66:
                    30:b9:d8:ad:73:3c:64:cb:ee:e6:f3:4f:48:63:1a:
                    85:6c:9e:2e:c3:66:a4:04:65:99:d6:a9:29:2d:7d:
                    a8:3e:42:6f:c4:9e:b1:c5:f0:8f:83:99:38:a6:1e:
                    bb:e3:28:cd:9d:06:60:73:d6:df:e9:74:56:69:5a:
                    62:2d:50:ec:3b:15:bb:7e:e5:6c:91:7d:ad:b7:fb:
                    19:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:99:3C:43:3D:70:B6:EB:FA:D6:62:56:C0:D3:5A:BA:F4:1C:B1:74
            X509v3 Authority Key Identifier:
                keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9cc0:39c::/48

    Signature Algorithm: sha256WithRSAEncryption
         7c:00:45:96:77:a1:c8:88:07:96:0f:50:42:1a:fa:b2:29:59:
         e1:22:3b:1b:fa:93:d5:56:29:eb:de:78:9b:3d:b3:ee:51:45:
         bc:4b:a2:a9:cb:cd:7c:72:58:16:72:bc:8e:fd:75:ed:35:f9:
         80:cf:9c:a8:b9:97:97:10:27:46:8b:cd:fc:5f:fe:81:c3:80:
         60:7d:85:16:05:d3:8a:55:41:a6:42:5c:28:56:08:c3:b2:ad:
         bb:21:f8:46:aa:b5:52:99:79:fb:1e:fe:40:62:b3:c3:18:19:
         9c:0c:e7:7e:4b:b9:f9:98:68:1a:6c:5a:00:53:b4:2c:d3:74:
         be:7e:5f:f0:87:61:cf:2e:30:9c:88:f2:70:a8:58:1e:6c:f1:
         6e:7c:f9:bf:7a:f4:11:59:f3:8e:ac:ec:55:be:d7:ae:98:5b:
         7b:7e:d1:0a:7f:7d:34:28:77:d9:11:28:90:8d:c5:7f:a7:20:
         7f:f1:1a:47:db:d1:6c:86:cf:45:f2:27:1c:be:37:25:25:8e:
         0e:1a:b4:c4:0a:6d:13:91:6b:ed:cc:e1:3d:7c:1a:c3:ac:1b:
         40:87:fa:87:cc:6c:2e:17:4a:c6:87:ff:94:62:52:6f:a9:b7:
         a7:35:d6:15:73:68:6a:b3:a0:dd:91:12:8d:28:bf:be:95:c7:
         84:c0:f7:da
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org