Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/773c564f-d1a3-43fd-a13c-ad534ef49714.roa
File:                     773c564f-d1a3-43fd-a13c-ad534ef49714.roa (raw, json)
Hash identifier:          Ki+gie/bw7h5hKgGqknn4V1Y+240oLbn5KnKE1PdIdk=
Subject key identifier:   8C:57:E2:43:37:52:B7:39:89:3B:B5:F8:ED:0D:21:10:9A:59:C9:71
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       0D5C59F67DD3EA90B8508BE2D09A2BDE9FD34AFC
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/773c564f-d1a3-43fd-a13c-ad534ef49714.roa
Signing time:             Tue 28 May 2024 00:00:00 +0000
ROA not before:           Tue 28 May 2024 00:00:00 +0000
ROA not after:            Tue 02 Jul 2024 23:59:59 +0000
asID:                     16509
IP address blocks:        136.16.0.0/16 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Wed 26 Jun 2024 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:5c:59:f6:7d:d3:ea:90:b8:50:8b:e2:d0:9a:2b:de:9f:d3:4a:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: May 28 00:00:00 2024 GMT
            Not After : Jul  2 23:59:59 2024 GMT
        Subject: serialNumber=94b360e31038b2641f8aabadba09726abda4dbd9d09a1e5cdfd8df048990a63e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:0c:57:70:48:e8:81:c5:5c:16:37:4c:73:51:
                    e4:2d:2c:04:2f:a9:97:2e:21:e6:c6:3a:a8:f7:43:
                    1b:cd:05:25:05:82:73:b1:5a:cc:ce:0d:5c:77:52:
                    f2:ba:3f:2d:5b:6a:49:97:40:df:90:cc:e6:ec:a1:
                    8a:ac:6d:a7:96:bb:08:b6:8f:13:80:5c:f9:9b:26:
                    69:f5:ab:04:20:5a:a8:9d:6d:12:2c:8e:f6:d5:2f:
                    4f:ae:52:e4:02:00:bc:f9:b0:ae:d4:54:c8:0c:18:
                    71:42:6d:f1:fa:dc:1e:b1:08:b8:eb:e9:51:ff:24:
                    9a:ae:7e:16:b2:22:0b:29:1f:f7:fd:d5:4d:0e:3f:
                    87:a5:08:e4:4b:08:66:f0:8b:2b:80:e6:f1:8f:bd:
                    97:e4:71:60:1e:5d:d0:30:55:f9:5c:c5:9f:73:49:
                    da:eb:3f:3f:06:0f:80:00:7d:bc:69:91:f7:8e:06:
                    a4:72:5b:3a:08:17:ea:19:9e:ba:d5:65:80:15:b0:
                    88:38:d5:13:e3:56:81:0f:44:16:2f:41:b3:33:54:
                    01:3a:1f:5b:5c:a9:a8:b7:9e:ac:c8:72:7e:3e:2c:
                    32:a8:42:8d:86:13:04:8d:c7:44:a1:bc:78:4e:14:
                    0d:cc:12:86:6d:0c:a4:4e:29:d6:6b:34:8a:13:9d:
                    1d:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:57:E2:43:37:52:B7:39:89:3B:B5:F8:ED:0D:21:10:9A:59:C9:71
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/773c564f-d1a3-43fd-a13c-ad534ef49714.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  136.16.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         22:e6:b6:cc:48:dd:70:8e:bb:9c:b7:b1:ac:f9:c7:78:55:d7:
         cc:0b:41:c5:b0:48:8e:f2:77:09:75:bb:b8:35:97:7d:54:34:
         ae:6f:72:b4:73:60:23:f1:91:e3:b9:3c:cf:ae:ec:96:3e:9b:
         e7:cf:0a:cd:da:29:a9:e1:9a:38:ea:fe:ae:27:4a:38:a0:2b:
         de:64:fb:b8:a6:cf:67:44:41:ce:05:a9:02:c9:ef:7f:b1:77:
         3f:a5:8c:46:74:f4:71:7d:37:a0:31:da:f8:71:08:fe:fb:4d:
         c8:af:ca:fd:0a:ea:34:20:a2:fb:24:a4:7d:a4:37:ef:cd:3f:
         58:8d:dc:01:f2:fd:bf:06:47:e1:87:29:2e:6c:02:0b:13:4d:
         8f:32:d2:66:37:24:17:a6:e0:07:f5:42:5b:6f:93:b9:b2:0e:
         4f:a7:17:19:02:33:94:e3:c0:d4:57:98:77:b5:47:57:f0:e2:
         e3:01:85:40:d4:21:66:1a:a6:6b:90:d2:f1:3f:5c:fa:61:a6:
         62:fb:e0:33:f5:11:91:23:e4:f9:27:96:85:9a:95:dd:d0:94:
         3a:f3:38:67:30:6e:3d:35:12:6e:09:d2:d9:64:90:0d:5a:f3:
         d5:2a:c0:6e:71:66:98:34:88:f7:29:8b:22:88:91:a6:b4:b2:
         04:de:90:bb
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUDVxZ9n3T6pC4UIvi0Jor3p/TSvwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz
MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNTI4MDAwMDAwWhcNMjQwNzAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A5NGIzNjBlMzEwMzhiMjY0MWY4YWFiYWRiYTA5NzI2YWJk
YTRkYmQ5ZDA5YTFlNWNkZmQ4ZGYwNDg5OTBhNjNlMS0wKwYDVQQDEyQ1ZjI3NjA0
NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCnDFdwSOiBxVwWN0xzUeQtLAQvqZcuIebGOqj3QxvNBSUF
gnOxWszODVx3UvK6Py1bakmXQN+QzObsoYqsbaeWuwi2jxOAXPmbJmn1qwQgWqid
bRIsjvbVL0+uUuQCALz5sK7UVMgMGHFCbfH63B6xCLjr6VH/JJqufhayIgspH/f9
1U0OP4elCORLCGbwiyuA5vGPvZfkcWAeXdAwVflcxZ9zSdrrPz8GD4AAfbxpkfeO
BqRyWzoIF+oZnrrVZYAVsIg41RPjVoEPRBYvQbMzVAE6H1tcqai3nqzIcn4+LDKo
Qo2GEwSNx0ShvHhOFA3MEoZtDKROKdZrNIoTnR3rAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUjFfiQzdStzmJO7X47Q0hEJpZyXEwHwYDVR0jBBgwFoAUJa3TQrAet6WO
rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x
MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk
OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4
MDkwNGU0MmQyLzc3M2M1NjRmLWQxYTMtNDNmZC1hMTNjLWFkNTM0ZWY0OTcxNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz
LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwCIEDANBgkqhkiG9w0BAQsFAAOCAQEAIua2zEjdcI67nLexrPnHeFXXzAtB
xbBIjvJ3CXW7uDWXfVQ0rm9ytHNgI/GR47k8z67slj6b588KzdopqeGaOOr+ridK
OKAr3mT7uKbPZ0RBzgWpAsnvf7F3P6WMRnT0cX03oDHa+HEI/vtNyK/K/QrqNCCi
+ySkfaQ3780/WI3cAfL9vwZH4YcpLmwCCxNNjzLSZjckF6bgB/VCW2+TubIOT6cX
GQIzlOPA1FeYd7VHV/Di4wGFQNQhZhqma5DS8T9c+mGmYvvgM/URkSPk+SeWhZqV
3dCUOvM4ZzBuPTUSbgnS2WSQDVrz1SrAbnFmmDSI9ymLIoiRprSyBN6Quw==
-----END CERTIFICATE-----
Generated at Mon Jun 24 01:29:27 2024 by rpki-client on console-ams.rpki-client.org