Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7a55179b-b45a-4961-b34a-0f98d4a5724e.roa
File:                     7a55179b-b45a-4961-b34a-0f98d4a5724e.roa (raw, json)
Hash identifier:          yFe5pzqbg5wGvTHi0RaEEo2BB3PmO36PXb8snBqrsWg=
Subject key identifier:   55:58:3F:34:16:A8:CF:C8:D9:F3:40:77:F0:DD:D5:CD:D4:44:C3:C8
Certificate issuer:       /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial:       5C6186C833CB7ABF8FC7CF0D4055B7D697ED8ABE
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7a55179b-b45a-4961-b34a-0f98d4a5724e.roa
Signing time:             Sat 09 Sep 2023 00:00:00 +0000
ROA not before:           Sat 09 Sep 2023 00:00:00 +0000
ROA not after:            Sat 14 Oct 2023 23:59:59 +0000
asID:                     16509
IP address blocks:        2600:9000:5300::/40 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 10 Sep 2023 12:03:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5c:61:86:c8:33:cb:7a:bf:8f:c7:cf:0d:40:55:b7:d6:97:ed:8a:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
        Validity
            Not Before: Sep  9 00:00:00 2023 GMT
            Not After : Oct 14 23:59:59 2023 GMT
        Subject: serialNumber=a3b75b1c189e409f9893c1ac1e3ab7138958bafa0ea05758259a239903e747a8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:bc:de:ee:69:eb:b1:4b:c1:8c:95:f0:9c:48:
                    18:d2:51:1c:57:a0:ec:a1:5e:28:6b:c0:c7:3e:c7:
                    10:18:38:aa:5c:02:1a:29:5f:7d:6f:8d:fb:e9:08:
                    90:1f:7a:a8:d3:e8:ed:43:11:64:29:4f:46:10:6b:
                    69:43:e4:54:51:f3:50:27:1d:40:da:bc:9f:95:89:
                    70:2a:39:09:b2:90:59:c5:6f:35:15:e8:8d:e0:fd:
                    7e:f1:f4:99:79:89:bf:06:ad:50:82:71:07:19:11:
                    f7:39:29:9a:a1:e9:6c:b8:75:a5:01:8b:22:e1:40:
                    c0:4d:89:95:22:5f:87:0c:5d:cb:03:c7:e3:12:d5:
                    23:21:d8:80:23:e8:28:0b:75:01:ad:42:82:03:fd:
                    d8:d6:99:68:2c:fe:2e:59:37:6f:bb:ba:e1:3c:e9:
                    1e:08:04:72:57:d7:6e:ce:02:f9:2e:9b:a0:bc:00:
                    1c:0b:80:fe:17:ed:0e:2f:6f:5f:cf:90:2a:28:c0:
                    44:32:05:cd:e1:26:88:a9:80:0d:61:7c:76:61:55:
                    76:01:f5:b5:fb:81:f6:f5:ce:69:1a:6a:3a:c6:2f:
                    75:15:19:4a:94:4a:2b:82:73:c7:d9:6b:53:5a:87:
                    ac:9a:2a:b5:63:24:08:47:48:16:1a:cc:48:12:e9:
                    92:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:58:3F:34:16:A8:CF:C8:D9:F3:40:77:F0:DD:D5:CD:D4:44:C3:C8
            X509v3 Authority Key Identifier:
                keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7a55179b-b45a-4961-b34a-0f98d4a5724e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:9000:5300::/40

    Signature Algorithm: sha256WithRSAEncryption
         9c:c5:72:3e:f4:f2:e0:cc:6f:52:ef:a9:04:3c:58:e7:4e:f3:
         3d:8b:91:50:95:5f:5d:bf:be:80:a1:01:07:ff:c9:4c:7b:06:
         27:b4:10:39:62:00:a9:df:ca:f7:9f:75:99:ff:4c:c8:67:59:
         78:95:5a:32:f3:f5:88:14:54:bc:cb:cb:74:74:a7:c0:93:0f:
         5f:41:41:76:b8:e5:7c:a9:00:fa:2c:a7:3f:51:d9:89:8f:71:
         d7:d5:67:90:17:70:33:34:73:6f:60:c1:23:ea:f6:5f:23:25:
         f7:01:33:c9:19:1f:0d:b2:ac:29:cc:37:cf:53:75:92:6b:61:
         03:ec:9e:f1:24:75:2f:d4:8f:04:fc:06:2d:d3:51:ce:3a:48:
         fe:81:ab:ff:ab:9f:0d:ec:84:31:10:b3:fc:92:d4:21:a8:6d:
         77:22:d4:79:1e:7e:fd:dd:f0:46:15:cb:a0:60:2b:1b:5b:7d:
         7d:33:b4:d2:53:c9:98:90:08:c4:6c:eb:10:b4:e2:85:07:07:
         56:fb:08:3a:04:f6:72:97:b0:94:fa:f1:d9:5b:a8:b0:3c:a3:
         5c:a0:c7:e8:12:c5:72:9a:fc:82:32:66:60:e8:9b:01:85:d5:
         47:c4:06:f3:2d:78:be:69:cb:56:68:59:33:dc:e0:37:58:45:
         65:85:fb:89
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Sep 9 00:26:30 2023 by rpki-client on console-fra.rpki-client.org