Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa
File:                     61afc90b-6803-38fb-9a83-96444100f072.roa (raw, json)
Hash identifier:          lDRHn6XrQyLJogL4pVtAxRvhbJNoVJbS/iKSI6tWlOs=
Subject key identifier:   7B:4D:2D:A8:99:82:80:CE:70:A6:57:23:BB:85:84:48:72:4F:B0:6D
Certificate issuer:       /CN=417c06d0-3203-44fd-b164-0aed50f5638b
Certificate serial:       010D0C9F43285847B2669C4D0EEB4D479D393700
Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa
Signing time:             Tue 29 Oct 2024 01:00:32 +0000
ROA not before:           Tue 29 Oct 2024 01:00:32 +0000
ROA not after:            Mon 27 Jan 2025 02:00:32 +0000
asID:                     396026
IP address blocks:        147.124.202.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 15 Dec 2024 13:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:47:b2:66:9c:4d:0e:eb:4d:47:9d:39:37:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b
        Validity
            Not Before: Oct 29 01:00:32 2024 GMT
            Not After : Jan 27 02:00:32 2025 GMT
        Subject: CN=5959ab72-d000-494d-a22b-da89a810f9cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:47:86:f0:aa:67:60:56:a3:1c:5a:0e:67:3b:
                    d2:62:a7:f1:37:75:07:50:b6:00:4b:63:a5:49:0e:
                    65:09:0a:b9:2d:d4:3c:ba:f1:6a:ff:95:12:98:93:
                    96:e2:8c:1a:27:19:b1:be:2f:ab:b0:58:e7:d2:55:
                    f1:9c:bf:d9:19:dd:49:81:dd:89:5d:6e:a1:97:11:
                    e1:d7:24:e3:19:12:b8:0a:c9:bd:eb:2b:f8:8f:ef:
                    32:02:89:cb:29:a3:c8:e7:37:da:ba:93:aa:68:fc:
                    1f:d7:68:73:a9:0a:86:a7:fd:30:9f:00:bf:4c:d9:
                    83:ed:c2:ed:59:7d:b0:b2:f2:65:3a:64:a0:0e:4e:
                    77:45:57:02:28:e1:42:fa:7c:86:44:c2:f4:45:8d:
                    5d:3f:e1:5c:cd:4d:c1:4e:69:cc:8e:fd:de:cd:ac:
                    4e:c2:c9:bc:5b:d2:2c:dc:c5:5a:c3:12:ae:c1:4f:
                    7a:ea:2f:2f:78:98:62:c7:58:a6:6b:20:05:ed:3c:
                    35:94:35:18:75:1c:38:7d:b4:b4:99:d4:ff:ec:3a:
                    d0:cf:4c:17:90:4a:8a:3e:2f:33:44:8f:db:13:0b:
                    cc:87:23:b4:cf:ad:e9:d5:c9:f3:0c:ca:e5:3a:b4:
                    4e:71:0e:0a:a7:fe:fd:26:4a:49:23:93:6e:9d:d9:
                    f9:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:4D:2D:A8:99:82:80:CE:70:A6:57:23:BB:85:84:48:72:4F:B0:6D
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl

            X509v3 Authority Key Identifier:
                keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  147.124.202.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         54:4c:36:54:17:f3:9f:65:6f:ae:f4:6d:50:6b:e8:0b:cf:b9:
         35:a4:5f:22:7e:b0:86:8b:59:ca:7f:c6:61:e7:7e:68:be:04:
         24:29:c6:b7:f3:a1:a0:66:3c:db:8d:2a:11:bb:c8:38:c2:e2:
         20:6c:ae:58:22:c1:e9:46:a5:2e:d9:3c:a3:70:24:ea:08:f3:
         bb:2a:b1:cb:4a:e1:5a:e8:40:81:ce:ef:8a:f0:22:58:a4:98:
         5f:9c:c1:38:1f:0d:c9:32:da:a1:f3:88:f8:b4:59:7a:f5:05:
         6b:e9:e8:af:62:09:37:ad:b5:e7:67:d2:ff:7b:54:e7:8a:1d:
         a7:61:14:eb:ee:ba:38:93:b9:61:be:a2:b4:4a:41:82:cb:f8:
         69:36:cb:c4:9a:b4:e8:53:81:5e:cb:cb:9f:84:53:28:b7:52:
         ed:27:93:ad:ba:6d:f0:e5:6f:0b:f7:16:92:a4:74:ba:9c:93:
         22:f2:d2:08:fe:80:df:b6:9f:fa:64:d9:05:87:6c:8b:76:72:
         74:e5:28:74:d4:04:cc:ad:1e:5b:c3:e0:40:42:06:68:cf:d2:
         ed:76:fd:01:98:d9:9b:b1:42:c1:75:2b:24:53:13:71:14:27:
         48:11:35:10:f5:74:c0:a3:58:4b:b6:0b:4f:07:20:fe:d8:0e:
         cb:eb:29:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 12 16:32:05 2024 by rpki-client on console-fra.rpki-client.org