Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa
File:                     6cc80c0a-c7cf-4eda-8529-53154b873db1.roa (raw, json)
Hash identifier:          eAH4eTIgoutuYhXKxSRTD6mfqpFHRzNMtWZT/guSM3U=
Subject key identifier:   7C:AF:38:A7:31:FD:E8:BA:B5:C7:FE:4E:2A:5A:65:8F:2F:02:7D:DF
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       6A6E6C49AADC32FC7BECBEB5BE032BAD157962A5
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa
Signing time:             Tue 28 May 2024 00:00:00 +0000
ROA not before:           Tue 28 May 2024 00:00:00 +0000
ROA not after:            Tue 02 Jul 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        15.190.0.0/16 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Wed 26 Jun 2024 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:6e:6c:49:aa:dc:32:fc:7b:ec:be:b5:be:03:2b:ad:15:79:62:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: May 28 00:00:00 2024 GMT
            Not After : Jul  2 23:59:59 2024 GMT
        Subject: serialNumber=8c2381ac98db02f4bad5aea9ac380751014eba726748c246b905d3260019d9dd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:81:83:a2:73:59:d1:bc:e7:08:71:02:3e:29:
                    1c:73:ba:91:0f:e9:e6:50:89:93:c8:7b:f3:cd:9f:
                    7d:47:5c:ab:38:ff:05:d1:63:df:37:65:3c:5d:02:
                    08:58:ec:ea:2d:4f:77:37:ba:34:47:8b:a8:8c:00:
                    cf:09:11:30:7a:2e:b5:b8:8b:6a:06:c0:61:df:42:
                    ee:d0:0f:e9:af:f9:df:ac:a5:72:ec:ea:53:a1:03:
                    f4:c8:a8:3d:37:a7:c4:33:5e:a3:a6:6b:93:29:52:
                    9f:df:0b:19:96:85:f0:21:cc:ee:27:1b:28:72:fe:
                    d8:11:de:5b:23:ec:0d:94:ce:6c:5b:f3:c0:f3:50:
                    8f:f1:0d:d5:40:bb:8e:9e:b0:e0:51:e1:c3:f2:5f:
                    8d:86:1c:65:fe:be:8e:3c:4f:a0:d8:c9:e9:5e:80:
                    8c:8b:e0:7e:86:a6:3e:45:18:04:59:22:d1:ee:6d:
                    ad:21:38:9f:14:ad:a9:85:c7:a4:ba:34:f5:a8:ee:
                    1b:a5:91:44:90:49:0f:78:5a:05:96:26:af:56:0b:
                    0b:81:a6:41:7a:c1:6b:04:20:ed:9d:84:17:78:4a:
                    77:23:02:16:8e:a3:ae:66:e0:74:a9:03:97:2c:c4:
                    33:ff:ea:c8:f5:ce:81:a2:fe:c8:2b:83:21:08:c6:
                    0b:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:AF:38:A7:31:FD:E8:BA:B5:C7:FE:4E:2A:5A:65:8F:2F:02:7D:DF
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cc80c0a-c7cf-4eda-8529-53154b873db1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.190.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         6c:5b:09:95:94:ad:ca:65:c5:8a:c6:b0:e3:f9:f9:7a:1c:68:
         60:0a:86:2a:c8:3b:77:7a:b9:6d:a6:83:f4:31:41:49:1a:a1:
         c3:ff:65:4d:f6:5e:4b:ba:a8:9f:14:28:2f:70:7f:57:48:f9:
         f4:fc:1c:a8:0f:b6:44:4f:43:e7:40:9d:a1:34:84:98:6b:18:
         d5:12:c9:7e:a2:c5:5c:ad:c5:df:78:20:0c:98:78:b1:64:f5:
         9c:a0:f5:21:17:1f:39:bc:7d:c4:79:a8:de:68:6c:7d:aa:8f:
         a0:f9:54:c8:f6:fd:d3:ff:00:28:be:19:ef:86:3e:69:c9:64:
         cf:f5:c8:75:29:f4:88:34:a9:d6:5e:65:e1:f7:62:29:27:6d:
         bd:40:de:3b:c6:7f:26:96:5c:da:43:ec:b4:9e:54:33:25:97:
         8d:dd:dd:f8:d3:d4:a5:39:b9:ef:57:ed:a9:e1:7d:a4:b2:e5:
         6c:12:d9:51:85:c6:ea:32:a9:fb:b1:7d:aa:36:29:38:48:8a:
         34:5e:69:a2:2b:e1:c3:f6:b8:90:2f:90:b4:19:77:5e:1e:00:
         cf:28:3b:80:62:2f:de:2d:fc:d0:fc:85:8c:38:e1:bd:77:0e:
         9c:b2:95:99:27:a7:2d:09:ae:75:10:57:b2:53:6e:ce:ea:55:
         f5:aa:f1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 01:36:59 2024 by rpki-client on console-fra.rpki-client.org