Route Origin Authorization 

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33409a49-ced8-43ee-a2d9-d6ecb7d3c726.roa
File:                     33409a49-ced8-43ee-a2d9-d6ecb7d3c726.roa (raw, json)
Hash identifier:          7m2UwudU+5fOdLm4gyyskXFDfvE0wwkGdXjSUByEodE=
Subject key identifier:   CC:7D:E8:28:01:AF:CA:05:C7:1B:20:97:A5:56:BE:A6:B5:4C:51:2F
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       25138E9F36C8D97E2CB82617DA13B797092A4AC5
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33409a49-ced8-43ee-a2d9-d6ecb7d3c726.roa
Signing time:             Mon 01 Apr 2024 00:00:00 +0000
ROA not before:           Mon 01 Apr 2024 00:00:00 +0000
ROA not after:            Mon 06 May 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        15.181.254.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 25 Apr 2024 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            25:13:8e:9f:36:c8:d9:7e:2c:b8:26:17:da:13:b7:97:09:2a:4a:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Apr  1 00:00:00 2024 GMT
            Not After : May  6 23:59:59 2024 GMT
        Subject: serialNumber=0146eef9b18e1753ee9d72d0e808f40c932e0c53a55808887e13fc622c2762cf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:43:c1:9d:6f:d6:ad:d2:5f:c4:a8:cd:be:02:
                    90:75:74:c4:2d:7c:e8:41:28:f1:24:29:50:a2:11:
                    c6:9e:53:ff:b1:e5:50:cf:c6:57:e1:7b:a2:29:bd:
                    eb:43:c3:cb:d3:00:cf:1c:3b:69:64:cc:45:8a:c2:
                    45:11:b0:8c:29:f3:b9:6b:5a:37:b1:ed:7e:6b:22:
                    62:7f:73:a4:b8:17:e5:56:1d:cf:76:2f:33:d1:dd:
                    00:9f:fc:f2:38:a1:3a:8d:af:a1:1f:d7:bf:d7:b1:
                    70:2c:05:08:40:fa:7a:fb:5b:c0:e5:44:64:b1:09:
                    32:eb:ef:a6:7a:2e:f7:1d:3f:dd:c0:0a:e0:1a:5e:
                    65:c5:a2:13:aa:2c:bb:14:f1:7d:3e:e7:23:31:24:
                    88:d5:0e:0e:61:f5:41:b8:a7:ab:39:f8:b8:b9:fc:
                    33:8f:6e:4f:a4:3e:4c:41:1f:8c:c0:fa:50:c1:b0:
                    92:e4:fa:55:81:ff:7d:14:07:79:8f:39:52:aa:e2:
                    32:94:64:a1:98:d2:c8:00:14:99:c5:09:37:7d:d6:
                    93:66:20:d9:7f:98:57:f6:ea:25:d2:ee:1d:15:30:
                    c2:c0:0c:fa:b6:7c:ef:1e:37:e2:1e:32:41:42:39:
                    da:8c:06:22:eb:8f:ad:5d:9d:47:7c:68:ae:e7:b1:
                    4c:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:7D:E8:28:01:AF:CA:05:C7:1B:20:97:A5:56:BE:A6:B5:4C:51:2F
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33409a49-ced8-43ee-a2d9-d6ecb7d3c726.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.181.254.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7f:82:d2:1c:fb:d5:7f:70:f1:3f:40:23:eb:98:69:a3:ed:ef:
         b4:4b:07:10:82:b5:b0:0b:80:97:c7:6b:0d:38:44:da:96:04:
         dd:de:4a:78:77:05:98:76:23:4b:51:13:42:77:56:69:ee:7a:
         8c:82:27:d8:26:51:75:e1:5e:96:63:2c:38:d7:99:ba:12:d8:
         9b:37:3d:17:ab:b8:89:16:ec:5c:af:5f:a0:8b:f6:69:8c:ee:
         61:76:30:ed:2d:26:53:6c:80:ef:e5:6c:30:1a:02:2f:65:f0:
         d2:1b:04:ca:e5:f7:22:27:75:a0:02:15:43:46:3c:96:de:15:
         2f:7c:33:81:2b:d9:4c:90:7c:2e:8b:3e:61:ea:37:ec:1b:a3:
         bc:44:79:f1:0e:cf:bb:4a:21:1b:3b:0d:72:e9:46:67:ef:0f:
         c3:0e:3a:a5:f1:4b:f9:ed:84:dd:8f:a7:f0:d9:80:95:c7:8a:
         8a:ba:bb:09:ff:e1:b5:a0:9d:d8:e4:96:cf:1b:22:2e:25:13:
         a0:16:ee:7c:b3:77:18:9b:19:83:b0:86:a8:69:04:d0:d7:ef:
         1c:22:72:19:e6:9d:9a:d8:20:c1:fe:26:64:b3:c6:44:82:a1:
         d8:f6:a5:dc:f1:46:5f:57:02:30:22:41:31:85:44:4b:c8:36:
         e3:95:94:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 15:50:01 2024 by rpki-client on console-ams.rpki-client.org