Route Origin Authorization 

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa
File:                     1d5b64a0-14ba-398c-be22-b579612157ce.roa (raw, json)
Hash identifier:          oXgcWfNEq3GL3VaclHCu1s/rDwiGQZUnUIrzK5S5Dyg=
Subject key identifier:   39:56:91:8D:AA:DF:1C:5E:35:27:DB:F8:1B:35:88:39:06:4A:1E:7D
Certificate issuer:       /CN=249140ca-277e-4871-a100-451d066d1c5b
Certificate serial:       010D0C9F432858477D5B9D6FD868FB11CE0D68C0
Authority key identifier: 70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa
Signing time:             Thu 10 Oct 2024 01:00:33 +0000
ROA not before:           Thu 10 Oct 2024 01:00:33 +0000
ROA not after:            Wed 08 Jan 2025 02:00:33 +0000
asID:                     21949
IP address blocks:        199.167.152.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sat 23 Nov 2024 12:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:47:7d:5b:9d:6f:d8:68:fb:11:ce:0d:68:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=249140ca-277e-4871-a100-451d066d1c5b
        Validity
            Not Before: Oct 10 01:00:33 2024 GMT
            Not After : Jan  8 02:00:33 2025 GMT
        Subject: CN=dce06813-216a-41fd-8def-a49428b66519
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:21:87:72:b0:88:f4:a8:ec:4c:98:7e:fe:c8:
                    6d:c8:3b:46:7c:a7:a3:4c:c5:6c:98:01:86:77:1d:
                    b8:87:28:64:c0:e4:ff:a4:5d:b8:94:b5:bd:67:82:
                    e6:3f:88:7c:61:f8:fd:06:e6:c8:c6:43:8a:cf:ec:
                    b6:0b:b0:45:5b:04:9a:a7:36:5d:72:69:4b:0f:d3:
                    ab:2a:c2:de:19:a0:fc:aa:34:1c:b5:81:93:1c:aa:
                    65:d3:cd:8f:e1:23:43:c7:87:3b:03:62:30:7a:b1:
                    0f:c2:41:e7:de:26:66:d6:55:c1:eb:33:d5:18:22:
                    32:01:16:20:05:10:d1:65:b9:80:db:3c:4b:a3:dd:
                    a3:4d:cf:1d:cd:d9:d3:fc:51:2d:ed:b2:b7:c5:35:
                    96:78:30:b0:fb:61:4e:77:12:f5:92:80:b2:60:3c:
                    06:a8:d2:94:96:46:d8:5c:b7:69:af:98:be:3f:81:
                    34:de:21:16:11:ae:b4:70:5c:0f:68:be:62:8b:69:
                    f2:e8:38:a3:d9:81:ce:38:ad:81:c4:d5:a5:f2:ad:
                    8b:34:ab:25:af:85:4e:e1:98:ae:2a:9c:93:12:f7:
                    6a:f2:12:cf:26:b9:ab:56:9d:5b:ee:b3:0c:9f:fa:
                    fa:f4:4d:9a:3e:a7:9f:4d:10:b8:f6:18:fe:a4:71:
                    59:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:56:91:8D:AA:DF:1C:5E:35:27:DB:F8:1B:35:88:39:06:4A:1E:7D
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl

            X509v3 Authority Key Identifier:
                keyid:70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  199.167.152.0/21

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         06:8c:d2:01:58:ea:6d:5e:ec:91:3c:08:df:b4:ba:1f:86:46:
         8c:ea:0e:97:4c:74:f7:60:0e:7e:a9:a5:6b:3a:fa:d8:a5:b0:
         c9:68:9a:06:e0:c1:4f:72:eb:69:c3:f8:48:f3:a1:ef:8d:cd:
         89:26:83:cb:6f:5f:d0:4e:c8:68:03:57:3c:a0:93:9c:1e:d1:
         15:cd:8f:dd:22:4b:b5:af:74:6b:94:02:1a:83:d3:d0:dd:c2:
         e3:41:26:bb:ba:88:dd:70:8a:96:bb:71:27:89:05:af:b2:c6:
         1a:ae:69:66:9e:9a:6f:58:ec:24:1b:65:e7:45:72:8f:44:ae:
         70:9a:c1:c6:9e:37:92:9e:13:84:12:26:46:74:0a:01:84:d9:
         15:8a:17:ec:e7:cf:f7:af:7b:9d:51:e2:a6:77:40:ed:08:25:
         1f:04:63:6e:46:31:68:86:5b:1e:df:b0:50:5f:e8:61:ba:4d:
         92:1e:41:91:88:01:61:f3:58:99:0e:0a:b8:1d:c8:d4:54:5e:
         4b:a7:96:f7:79:96:17:54:5a:e2:aa:26:d0:79:69:ac:6e:cf:
         1c:68:95:16:e6:86:1d:1d:b5:21:fe:6e:69:ec:c3:2d:ff:09:
         0d:c8:b2:69:35:3f:c6:7a:d3:0a:33:53:ec:93:23:61:27:3d:
         45:31:e9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:35:23 2024 by rpki-client on console-ams.rpki-client.org