Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa
File:                     e3c245b9-0844-4ece-b6a0-0aed8003b186.roa (raw, json)
Hash identifier:          X3sznukbEOkiydHbdhCUC03tJUQrAFURkTOFhjLKZTY=
Subject key identifier:   39:F3:C3:62:0B:6D:4F:87:E3:E9:2C:AA:3A:89:22:46:FF:28:D9:2D
Certificate issuer:       /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial:       2E1850E777F005099BA4E6F274EBE3F5A182B691
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa
Signing time:             Tue 12 Sep 2023 00:00:00 +0000
ROA not before:           Tue 12 Sep 2023 00:00:00 +0000
ROA not after:            Tue 17 Oct 2023 23:59:59 +0000
asID:                     16509
IP address blocks:        205.251.224.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Wed 13 Sep 2023 12:00:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:18:50:e7:77:f0:05:09:9b:a4:e6:f2:74:eb:e3:f5:a1:82:b6:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
        Validity
            Not Before: Sep 12 00:00:00 2023 GMT
            Not After : Oct 17 23:59:59 2023 GMT
        Subject: serialNumber=e15390a6f8eff1f5b3f0937be3b4296109d560da50218fa0997c7c3c55af320f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:35:14:9b:80:c8:0f:db:33:88:37:d2:b8:89:
                    9c:dd:25:f8:31:4f:f1:9c:7e:87:81:64:d2:d7:c7:
                    30:b8:1f:71:62:20:2a:af:02:6c:92:c3:a5:5a:a6:
                    a2:84:23:83:6f:79:14:9c:56:52:13:28:e7:99:87:
                    58:bc:81:51:88:bd:e7:a8:81:bd:35:13:26:8a:d0:
                    6d:0f:09:cf:34:52:e4:ce:c2:71:55:a7:31:d8:37:
                    37:c8:1c:45:d1:6f:d8:ed:2b:2e:a7:b2:98:b2:1c:
                    44:c5:6b:66:e0:ce:4a:84:c0:0d:89:d8:b2:fc:54:
                    86:bb:2d:b6:19:c3:1b:99:55:9e:cb:bb:d1:19:57:
                    1b:1f:28:78:ca:2a:fd:56:68:51:a5:e9:40:0d:51:
                    7a:7c:d3:f3:35:c7:92:00:b5:48:c6:e7:1a:b3:07:
                    3a:04:1c:ae:30:4b:f2:d8:91:b3:bc:66:bf:2f:ee:
                    3f:63:cd:69:78:ee:d2:f2:58:0c:d7:ec:69:be:a5:
                    b1:dc:85:98:9b:5c:8b:b4:11:7e:1b:4d:02:e3:62:
                    52:db:5c:36:bc:d6:03:97:1c:50:9e:ec:0d:6b:aa:
                    77:4c:29:6d:c9:9b:bf:e9:13:81:de:cd:d5:0b:e6:
                    ed:25:1d:43:5b:a9:62:f8:79:5d:fd:b7:44:36:7a:
                    2b:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:F3:C3:62:0B:6D:4F:87:E3:E9:2C:AA:3A:89:22:46:FF:28:D9:2D
            X509v3 Authority Key Identifier:
                keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  205.251.224.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4d:85:a0:9d:be:df:63:18:40:19:e2:ec:cb:f0:6e:ca:4f:7c:
         97:9c:20:e2:b6:3f:1a:a5:c6:cd:b9:06:21:88:da:b4:d4:8d:
         22:13:ce:ea:17:49:39:0f:24:e8:48:57:d8:55:e1:d0:df:bc:
         a5:21:7a:0b:7b:a1:c1:40:99:6c:61:9f:15:87:85:8f:c8:56:
         90:a7:2c:87:89:d7:28:83:3d:18:28:18:16:b5:14:76:99:69:
         b0:77:6e:24:aa:c2:9d:e1:59:3e:5b:ff:cf:33:b7:f5:20:0d:
         ad:1a:74:45:11:cc:d2:7b:ce:76:96:26:49:8b:6d:c8:ac:b5:
         ed:cc:6d:b5:9b:a4:ac:a9:d9:98:f6:39:43:b5:69:58:55:28:
         03:5e:98:95:0a:a2:46:c3:ab:72:1a:40:2f:b4:4a:5b:30:ab:
         35:ef:ba:52:9e:e5:6e:43:e9:fa:7e:9e:dd:84:bd:46:ea:ec:
         50:07:f2:70:2a:88:b9:f1:ea:bf:1f:dc:f2:b5:2b:4d:c4:d9:
         33:6c:d2:6c:02:79:77:89:e4:de:4d:05:30:d6:83:d4:4a:2d:
         b2:d8:ae:59:10:8c:5d:d0:e1:8a:d0:20:5f:ec:4d:63:7e:88:
         9e:3b:c3:3b:80:7d:98:71:4c:af:c0:d3:f2:a3:16:a7:f5:81:
         01:b3:af:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 00:34:23 2023 by rpki-client on console-ams.rpki-client.org