Route Origin Authorization 

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa
File:                     c8a0b258-82d3-4927-a176-717caf7c4e70.roa (raw, json)
Hash identifier:          DYKdzvkQk137+lLDwSVqQcV7ZVSSLWSylDVQkN0ulG8=
Subject key identifier:   AB:6F:44:15:AE:71:80:89:13:BB:1E:2A:EF:A4:00:AA:A2:77:E1:7B
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       52578F2F3F3F826C1916561467375744B0E2FFD9
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa
Signing time:             Mon 08 Apr 2024 00:00:00 +0000
ROA not before:           Mon 08 Apr 2024 00:00:00 +0000
ROA not after:            Mon 13 May 2024 23:59:59 +0000
asID:                     8987
IP address blocks:        136.16.0.0/16 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 25 Apr 2024 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:57:8f:2f:3f:3f:82:6c:19:16:56:14:67:37:57:44:b0:e2:ff:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Apr  8 00:00:00 2024 GMT
            Not After : May 13 23:59:59 2024 GMT
        Subject: serialNumber=6cc598e940c034cb7000bcb911d148c66389ccbd6df3d71eb2900da0b6318e47, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:c9:87:5a:bb:17:14:fc:20:bd:93:cc:95:0b:
                    c4:12:00:6a:35:35:6f:d7:db:6a:8b:b4:cf:95:9f:
                    28:9c:6f:e9:17:4b:a6:c6:fd:e1:4d:44:69:61:4b:
                    29:6d:6b:85:37:eb:6e:91:3e:ed:d4:70:84:22:10:
                    58:1f:78:09:f3:97:b3:be:aa:29:6c:67:ac:b3:da:
                    68:3f:e3:6e:f0:91:2b:9b:d3:ca:53:9e:c9:d9:b0:
                    5b:58:9e:a8:0c:82:bb:f7:ab:e3:06:00:e5:92:55:
                    25:d3:a5:32:bd:f9:73:a7:1d:81:af:0b:2c:00:a0:
                    ad:0e:97:e8:13:5a:f4:88:8f:94:00:93:80:09:98:
                    e9:03:65:97:7a:f3:5a:79:83:34:c8:52:9b:68:6c:
                    de:cb:a8:19:83:43:8f:02:f6:7d:01:b3:b3:f6:be:
                    aa:89:b8:06:c6:aa:40:b1:9e:82:8f:4f:c9:b3:ab:
                    a9:9f:fa:e8:fe:94:5a:f5:21:b1:97:86:a7:38:30:
                    75:f2:73:06:ea:89:87:35:be:ee:0d:90:dd:ac:13:
                    bd:6f:f3:a3:46:9b:db:19:93:42:e7:e5:6f:73:29:
                    a8:e1:6c:ab:e2:02:ef:a8:2b:97:72:64:3f:bc:b2:
                    d1:ae:18:92:35:72:1e:2d:88:04:e1:13:c0:46:0c:
                    0f:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:6F:44:15:AE:71:80:89:13:BB:1E:2A:EF:A4:00:AA:A2:77:E1:7B
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  136.16.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         79:e3:6b:b8:7f:94:3b:d3:40:92:d4:46:24:60:f5:fa:b7:d8:
         2e:d6:05:50:68:53:04:7d:00:13:9e:96:f4:e9:f4:0b:76:0a:
         69:fc:87:50:b1:94:c8:be:2c:0f:9b:fc:8b:65:b0:ec:10:1e:
         db:46:b4:05:20:62:2f:19:8f:04:38:11:03:11:c3:f1:8d:33:
         99:9c:24:0b:de:e3:c8:02:ff:9d:98:57:b0:c7:93:d8:17:dd:
         f4:09:43:2c:aa:51:73:57:3d:47:a2:2b:4c:9d:b3:63:e7:17:
         21:9e:09:66:12:ff:c7:12:c7:92:30:8c:fe:65:d5:47:29:9d:
         24:0d:da:a5:5f:9c:b1:ce:68:1b:6e:c7:09:19:cf:33:60:db:
         e5:7d:53:71:ad:88:9a:52:f1:cf:7e:c2:1c:69:a1:88:70:7b:
         c3:06:64:3f:de:c7:2f:d0:a8:0c:99:42:fa:ec:b3:24:5f:48:
         5e:5d:71:b6:d0:6c:58:a8:3b:f0:c0:87:81:33:62:31:4e:a9:
         a6:29:4f:1d:e1:bb:47:44:90:aa:a4:37:e1:88:22:07:b2:8b:
         6f:6e:3f:bf:2f:20:a9:45:60:fc:82:b3:ee:4d:59:ce:dc:25:
         bd:71:8b:c4:aa:cb:a7:9f:be:dc:06:7e:41:37:ad:c5:f7:23:
         ae:6b:bc:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:55:38 2024 by rpki-client on console-ams.rpki-client.org