Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa
File:                     947becde-56e4-4219-9bf8-8623c99513ce.roa (raw, json)
Hash identifier:          PQmueZNLF47OOuOqeiDZhccEjfaxQTO787v5FfFHKnA=
Subject key identifier:   93:1E:E3:89:D3:46:B7:9B:9F:95:DD:12:6C:C1:E0:72:39:7E:D8:85
Certificate issuer:       /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial:       1AEA6E4358E212ECE7DE1ACF0C548F6F3CDDADE5
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa
Signing time:             Wed 04 Oct 2023 00:00:00 +0000
ROA not before:           Wed 04 Oct 2023 00:00:00 +0000
ROA not after:            Wed 08 Nov 2023 23:59:59 +0000
asID:                     16509
IP address blocks:        2600:9000:ad00::/40 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 05 Oct 2023 12:03:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1a:ea:6e:43:58:e2:12:ec:e7:de:1a:cf:0c:54:8f:6f:3c:dd:ad:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
        Validity
            Not Before: Oct  4 00:00:00 2023 GMT
            Not After : Nov  8 23:59:59 2023 GMT
        Subject: serialNumber=0143d3fb3ad5e7d9906365c8acd0aa613f1ad6a06defa56af7266b36aa49c9b9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:dd:52:17:97:72:ec:90:8b:41:37:c7:e7:f5:
                    9a:f6:19:ff:8f:2d:2f:fd:20:0a:8c:96:72:b9:7c:
                    d5:92:89:c5:46:bd:ef:ae:34:f4:d1:c1:fb:a6:d5:
                    6c:7c:ae:d3:f1:1f:21:f1:ee:60:0d:52:9b:b2:d4:
                    e1:f9:3b:28:ed:f7:3f:5f:68:36:31:ef:90:74:f6:
                    37:fb:9a:a0:c4:bd:e5:a5:3f:f7:b8:d0:04:29:10:
                    10:4b:67:d5:f2:8f:5c:b4:3e:7c:1a:ff:c1:67:80:
                    9a:a2:64:77:4b:2f:35:9e:79:48:cd:c8:62:3b:bd:
                    42:e7:1e:03:b2:3d:a0:02:a2:9c:39:4a:37:e8:d2:
                    4c:bc:a7:9a:31:7c:de:9f:9b:67:0c:bd:24:15:4c:
                    d9:d6:cc:52:84:fc:d6:f4:cd:b6:5b:74:2e:26:21:
                    6b:91:1b:12:fd:8c:13:75:b7:3c:ff:3f:74:d7:60:
                    fa:c3:8f:87:f9:c2:eb:bd:c2:17:5f:ec:87:b5:0c:
                    e4:fd:b2:ef:f0:82:f6:40:da:b8:b5:a7:82:50:ae:
                    e5:95:c4:0a:ca:4d:6d:48:a1:c1:d3:2d:fc:78:69:
                    ae:86:61:cd:75:3b:1a:f1:af:85:c7:ec:c2:1a:3c:
                    bf:eb:2d:cc:34:af:34:25:f7:f6:c5:f2:4c:bf:e4:
                    29:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:1E:E3:89:D3:46:B7:9B:9F:95:DD:12:6C:C1:E0:72:39:7E:D8:85
            X509v3 Authority Key Identifier:
                keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2600:9000:ad00::/40

    Signature Algorithm: sha256WithRSAEncryption
         36:0f:c3:69:1e:4c:ad:b9:58:97:52:b7:61:94:53:57:40:bf:
         20:eb:7c:14:4f:c7:fb:57:ce:61:2c:87:06:70:e0:72:d1:ed:
         1a:dd:e0:9e:3a:30:fe:cc:b5:80:78:e1:31:26:7c:a6:46:22:
         48:f6:b2:32:2f:64:98:a8:16:75:78:86:b6:13:cd:78:ca:38:
         f9:88:cf:ce:ec:24:8a:e6:3d:62:04:b3:9a:5e:59:4d:e9:7b:
         3b:20:5a:be:43:26:ed:35:c9:7b:ae:99:eb:35:d4:26:a6:48:
         17:51:22:33:4e:66:8c:85:6d:4a:86:bf:c1:af:c5:16:52:23:
         00:0b:f7:77:95:cf:12:ff:a7:f9:f8:24:40:a7:e9:f9:86:56:
         48:08:4f:9c:39:71:27:79:eb:1b:7c:09:47:9b:6c:ad:ae:ef:
         f5:51:dd:7f:5d:0c:24:89:cc:23:52:0d:fb:d7:4b:60:bd:4d:
         f3:cc:c3:66:f2:a8:1f:ac:86:9f:78:33:2e:6e:b3:31:26:9e:
         9a:81:1f:f2:35:85:1a:b2:8e:5a:30:91:5b:f9:bd:f6:5c:9a:
         8e:ce:1f:29:53:07:59:3e:38:a6:59:f9:d0:f5:ad:20:79:28:
         51:4d:f5:cd:cf:60:ec:a1:83:1d:2e:4b:bf:6a:13:a7:e2:26:
         c0:99:1c:96
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Oct 4 00:45:29 2023 by rpki-client on console-ams.rpki-client.org