Route Origin Authorization 

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283f502b-4726-4849-b192-13f41302266d.roa
File:                     283f502b-4726-4849-b192-13f41302266d.roa (raw, json)
Hash identifier:          BOCMqfIrbX6iM3HwKUCgQxSwPtdQ6rfRRGNuPvm61Tc=
Subject key identifier:   29:DB:B9:2B:7B:F3:8C:64:8E:4C:E9:DA:B6:EF:F3:6F:22:FE:00:74
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       5D07F6FC5212044106DB60EFB603D9626BC0B2BC
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283f502b-4726-4849-b192-13f41302266d.roa
Signing time:             Tue 19 Nov 2024 00:00:00 +0000
ROA not before:           Tue 19 Nov 2024 00:00:00 +0000
ROA not after:            Tue 24 Dec 2024 23:59:59 +0000
asID:                     8987
IP address blocks:        15.222.0.0/15 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sat 23 Nov 2024 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:07:f6:fc:52:12:04:41:06:db:60:ef:b6:03:d9:62:6b:c0:b2:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 19 00:00:00 2024 GMT
            Not After : Dec 24 23:59:59 2024 GMT
        Subject: serialNumber=fb2748077f2040a9aafec52b0fe7a75512a71b510b585ab13dd5ad2f700493c8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:34:02:0e:4b:7f:0f:ea:aa:dc:5f:96:64:10:
                    69:58:04:bd:fa:c7:f1:2c:ff:af:4e:b6:28:4c:14:
                    37:88:0e:c6:06:61:08:3d:a3:6b:66:2d:72:16:0f:
                    9c:86:75:59:7b:fe:62:46:54:20:8b:8b:da:a8:eb:
                    66:89:c6:18:98:ab:09:37:18:6e:6e:f6:06:04:01:
                    fd:44:55:71:a2:b7:f7:f0:72:f6:42:06:4a:d4:f1:
                    05:21:a2:e7:a3:76:9b:3c:3a:f9:4f:1d:8b:26:f7:
                    2f:f7:e1:32:5c:23:8c:a6:34:7f:c7:61:82:0f:c6:
                    4b:73:30:e3:44:15:e5:ab:bc:42:8c:7f:01:5b:9c:
                    5f:41:6e:4e:63:e0:1d:9f:bb:a0:9a:c0:71:87:a2:
                    da:18:f5:a7:2c:c1:ca:30:1a:6d:39:6c:c8:53:8f:
                    58:6c:41:5c:29:cf:07:d8:d0:ae:df:58:5a:ae:a5:
                    c7:0d:f9:7d:56:c7:48:45:60:79:e2:b4:75:5b:40:
                    e2:87:48:89:58:ef:42:20:e5:97:ef:61:8a:0c:e7:
                    40:ad:e4:81:c5:e9:0c:33:74:1c:5d:0f:d5:75:55:
                    b2:27:a0:98:6c:55:03:9a:c6:b5:77:6d:e5:3f:c1:
                    65:af:43:a1:18:90:15:5f:08:8e:bb:21:4c:a7:86:
                    7c:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:DB:B9:2B:7B:F3:8C:64:8E:4C:E9:DA:B6:EF:F3:6F:22:FE:00:74
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283f502b-4726-4849-b192-13f41302266d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.222.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         ac:29:03:ec:e3:c8:16:dd:6a:f6:8c:e1:15:ba:77:59:3d:0b:
         9a:ef:6f:e2:22:87:1e:ba:4b:c0:1b:f0:5e:53:a9:34:b4:ac:
         75:42:c1:84:29:2b:79:0b:fc:bb:76:4c:53:f1:01:ad:8b:92:
         a0:0a:2f:30:d0:e3:5e:3f:a5:8a:c2:30:1d:db:eb:e8:7b:16:
         6c:39:84:76:27:97:76:d6:42:e2:67:5b:90:2b:97:70:37:08:
         34:78:2f:da:20:a8:0a:4a:08:7b:f3:8e:46:bc:69:5e:de:b5:
         98:d4:95:9d:85:3b:d8:48:65:fd:ea:98:46:bf:04:d8:66:1f:
         c8:a4:0e:4c:ae:5f:fe:8c:42:49:3b:b8:c7:d2:eb:56:86:c8:
         10:2a:a7:ae:94:20:02:25:fd:18:f1:28:ff:59:7e:7e:8f:49:
         ec:d2:f0:12:37:cf:c4:80:52:39:ca:79:f5:b9:64:94:74:7f:
         28:16:93:32:3e:02:e3:fb:de:c9:fb:b0:14:cf:f5:87:81:d3:
         8c:97:33:24:37:84:89:e2:de:83:de:e0:cc:32:fd:79:d8:20:
         53:60:28:b8:41:b2:32:cc:47:6c:24:7e:28:87:90:ff:5b:b5:
         4e:73:f2:d7:1a:e8:af:3f:94:4c:67:c6:21:ff:ba:0c:8c:6a:
         6e:5e:02:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:45 2024 by rpki-client on console-fra.rpki-client.org