Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa
File:                     ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json)
Hash identifier:          ZSbtCWju2C8gfoOStWnK5QUHpNtnhq2mUyJF27Z0Ga8=
Subject key identifier:   4F:8A:04:D0:8E:CD:91:C9:82:F0:93:21:5D:5C:72:8F:43:2F:90:9F
Certificate issuer:       /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial:       0BFC08888FBD30250D7F05C522930ABB0E7A3E92
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa
Signing time:             Wed 05 Feb 2025 00:00:00 +0000
ROA not before:           Wed 05 Feb 2025 00:00:00 +0000
ROA not after:            Wed 12 Mar 2025 23:59:59 +0000
asID:                     8987
IP address blocks:        2605:9cc0:d00::/40 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 17 Feb 2025 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:fc:08:88:8f:bd:30:25:0d:7f:05:c5:22:93:0a:bb:0e:7a:3e:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
        Validity
            Not Before: Feb  5 00:00:00 2025 GMT
            Not After : Mar 12 23:59:59 2025 GMT
        Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:3c:76:f6:06:d7:ae:c3:86:80:45:7d:51:88:
                    7c:46:b0:d3:21:6b:d5:97:97:b0:8b:ad:ee:71:22:
                    75:77:57:6d:ef:34:10:86:6b:62:8f:23:71:39:a0:
                    86:cb:13:34:ba:7e:b0:25:5b:f1:78:4e:26:de:0c:
                    20:8c:5d:bd:14:5e:64:5a:48:c5:bd:58:8a:fb:e2:
                    c9:04:1c:d6:a3:5a:72:69:1e:f4:f1:10:4f:7d:9c:
                    5a:74:24:da:85:d0:9b:9e:79:bb:fc:1b:a6:52:3f:
                    d2:97:04:78:c4:4f:3c:02:7a:f5:4b:06:6e:2c:77:
                    3f:f8:f5:62:20:e7:ec:d7:95:42:7f:2e:e4:7b:a0:
                    b2:f4:72:82:99:c7:ce:de:24:86:6c:39:d9:8e:e8:
                    75:a3:bf:e0:eb:5d:b3:28:ce:e9:97:82:01:c2:76:
                    b2:cc:69:af:ea:d0:2e:2e:9e:b0:c3:c9:88:c1:01:
                    41:d4:60:ec:cf:01:12:24:96:08:33:eb:d6:ec:c6:
                    01:6c:7d:4f:27:30:e3:ed:ba:98:2c:83:93:85:95:
                    ee:b5:d7:f2:a3:ba:31:05:1a:32:ab:1c:06:d7:89:
                    06:b2:21:6d:19:db:d6:55:b2:d5:22:a0:87:a1:05:
                    b9:2e:84:c6:92:82:a1:c7:89:47:15:9a:76:3a:98:
                    09:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:8A:04:D0:8E:CD:91:C9:82:F0:93:21:5D:5C:72:8F:43:2F:90:9F
            X509v3 Authority Key Identifier:
                keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9cc0:d00::/40

    Signature Algorithm: sha256WithRSAEncryption
         44:d5:28:c6:ed:5a:0b:90:2c:1f:85:4c:64:80:99:9b:a3:5b:
         be:ed:9c:7c:c9:2a:4a:b0:13:1b:3d:91:cc:94:3c:a4:0c:3f:
         dc:d3:7d:73:19:e7:3a:b5:2f:7c:cd:a6:56:39:37:52:3c:18:
         48:10:84:64:40:16:93:7d:62:43:2d:62:c2:4b:9f:82:e5:79:
         dc:de:fa:fc:91:8d:da:7c:ba:49:65:24:5d:60:f1:e0:11:11:
         6a:09:57:e8:61:c9:60:af:1d:bf:ab:33:2e:d5:6d:0b:47:9c:
         d6:64:2d:7b:0b:ee:d9:c8:51:30:70:38:67:fd:29:cb:bf:1b:
         a4:e5:92:62:82:8b:1c:cb:fc:57:ca:bd:09:3f:c1:da:20:c3:
         4b:9f:14:bc:ee:3f:d7:0f:74:2e:6d:46:9f:94:74:cb:5d:01:
         1d:40:f2:ff:9e:6f:be:e4:b7:59:09:22:62:3c:fe:8b:43:1f:
         2b:59:1c:34:05:08:c1:a0:66:f0:2b:49:66:c0:be:e5:68:78:
         6f:46:55:c7:56:85:6c:77:f4:21:2a:4b:00:d1:4f:e8:09:3b:
         d5:a1:ce:97:fd:00:dc:a3:95:b2:b0:b1:81:7e:6a:58:3c:fd:
         a4:de:59:ac:f2:27:91:93:2a:cf:ef:46:84:19:e3:85:2f:d8:
         bf:2e:de:7c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 06:02:58 2025 by rpki-client