Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7ae86991-f1a6-4c75-9b91-7ec484b02c87.roa
File:                     7ae86991-f1a6-4c75-9b91-7ec484b02c87.roa (raw, json)
Hash identifier:          GHy/vD/RfI4UCUvYoQOFUvIyR5nYCuZSBrdLZUP0Rsw=
Subject key identifier:   A2:FB:EA:35:06:0D:31:36:09:7C:73:72:FA:50:CA:D2:83:07:39:CE
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       0B695CFF8E44221EBF957505E0B1D855FAD6D78B
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7ae86991-f1a6-4c75-9b91-7ec484b02c87.roa
Signing time:             Mon 27 May 2024 00:00:00 +0000
ROA not before:           Mon 27 May 2024 00:00:00 +0000
ROA not after:            Mon 01 Jul 2024 23:59:59 +0000
asID:                     8987
IP address blocks:        15.181.0.0/16 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Fri 14 Jun 2024 20:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:69:5c:ff:8e:44:22:1e:bf:95:75:05:e0:b1:d8:55:fa:d6:d7:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: May 27 00:00:00 2024 GMT
            Not After : Jul  1 23:59:59 2024 GMT
        Subject: serialNumber=845a98c3a1a0f542912d022c2e0701a4711b73750618728f7fcaf6f9ec1bca7f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:c4:0c:0e:64:8c:09:58:49:a2:7b:32:a3:6e:
                    4a:91:00:34:3e:7d:bf:89:5d:87:08:3b:e9:0e:88:
                    6a:35:fc:90:f2:9d:df:d6:18:9b:3f:87:70:48:44:
                    19:9b:9f:16:9c:9b:1f:26:3b:5c:9a:6b:05:14:37:
                    29:80:bc:2e:16:a6:a1:7f:db:ed:62:b2:93:f0:c7:
                    2b:3c:06:47:b4:24:42:e9:50:1b:c4:9e:d4:89:70:
                    aa:3f:86:ae:af:df:1f:ac:25:e4:5a:ed:fe:da:34:
                    a7:90:a3:b6:b0:96:c6:cd:f3:45:48:f2:74:b6:0d:
                    a3:b5:8f:a5:31:0e:46:81:a6:7e:a9:8a:be:3e:22:
                    11:c6:86:88:24:c5:30:9b:bc:4e:8d:17:86:50:ab:
                    39:a5:b6:a8:7f:21:49:f5:4f:9c:66:98:e4:c7:de:
                    00:ba:9f:51:5f:45:0b:0c:00:ea:be:37:93:0f:8d:
                    c4:40:65:c5:50:e2:42:48:7b:1f:9d:bd:05:90:2c:
                    89:57:84:b4:c1:4c:9f:b7:82:63:e1:70:15:8d:0a:
                    29:55:89:85:71:5f:46:e9:e1:18:f6:ed:5c:18:df:
                    1e:77:ac:a9:4b:b0:33:7b:f0:8a:b8:ba:1e:24:44:
                    f1:48:6f:73:a9:b1:f3:1f:2a:ad:10:ef:2c:73:79:
                    17:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:FB:EA:35:06:0D:31:36:09:7C:73:72:FA:50:CA:D2:83:07:39:CE
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7ae86991-f1a6-4c75-9b91-7ec484b02c87.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  15.181.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         24:9b:21:5a:b6:50:a7:3a:77:3c:6a:fe:e5:f1:e8:69:2e:ab:
         02:55:ee:d6:e6:55:17:5b:6d:ea:17:3d:5e:b8:d7:3c:e5:a9:
         de:c1:22:68:85:e3:76:4d:19:97:bb:7d:59:81:91:f4:20:4c:
         3c:88:9d:b9:ea:4f:8f:92:fc:b7:ee:92:30:d2:3f:6c:3a:79:
         06:ce:e9:1b:04:b9:47:87:52:cc:67:d7:68:47:70:f7:c0:23:
         a3:f6:76:3c:47:b3:94:41:2b:9f:ae:42:36:67:0a:ee:5d:ce:
         4e:b3:ff:d4:d8:e9:47:78:2c:15:aa:ff:2a:c1:fe:c2:cf:22:
         14:4d:8e:70:7d:3e:02:4e:fa:88:c6:64:31:5c:1b:cd:2f:c9:
         70:bc:8e:ec:cd:da:f5:0e:26:ee:cb:3b:06:b8:f2:09:7b:16:
         55:1e:e8:d9:01:45:09:6f:e4:5f:38:6e:06:35:19:81:4f:02:
         77:40:40:68:31:b1:a7:5d:c7:9c:01:79:45:55:bc:86:7b:d5:
         03:4a:d8:26:94:8d:51:37:f3:8f:72:62:08:8e:68:4e:67:45:
         6f:7e:04:34:62:3d:d9:59:a8:22:51:1a:3c:3b:55:e1:a4:8f:
         77:fc:2d:69:8e:71:27:f0:95:e7:42:b8:7e:1e:11:15:67:6d:
         98:5f:4d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 17:21:11 2024 by rpki-client on console-fra.rpki-client.org