Route Origin Authorization

$ rpki-client -vvf rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e203535313538.roa
File:                     323630353a3963303a3a2f33322d3438203d3e203535313538.roa (raw, json)
Hash identifier:          sFatavkzlMlLAZJCZvYlai4pWX8aArc3SMO+cDmJuhY=
Subject key identifier:   64:BA:0A:70:68:8D:49:44:C3:E5:71:22:E5:B5:17:23:A6:E3:38:E1
Certificate issuer:       /CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450
Certificate serial:       1258F5A66C83A03F3F929C95F8EEB6FF55151E38
Authority key identifier: 51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer
Subject info access:      rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e203535313538.roa
Signing time:             Wed 24 Jan 2024 02:52:39 +0000
ROA not before:           Wed 24 Jan 2024 02:47:39 +0000
ROA not after:            Wed 22 Jan 2025 02:52:39 +0000
asID:                     55158
IP address blocks:        2605:9c0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl
                          rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 17 Jun 2024 01:20:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:58:f5:a6:6c:83:a0:3f:3f:92:9c:95:f8:ee:b6:ff:55:15:1e:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450
        Validity
            Not Before: Jan 24 02:47:39 2024 GMT
            Not After : Jan 22 02:52:39 2025 GMT
        Subject: CN=64BA0A70688D4944C3E57122E5B51723A6E338E1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:d3:34:1b:46:3b:5d:da:00:55:f1:ce:2e:4d:
                    60:c4:bb:d4:33:f4:38:41:45:7e:f2:9f:bb:66:14:
                    67:dd:14:5d:63:ae:f1:e3:c4:b3:3d:fa:ea:f9:30:
                    22:74:92:1a:86:0f:47:fa:c6:bc:bd:2c:1c:df:a6:
                    ca:97:e7:56:18:b4:20:14:f6:e6:a3:9f:9b:9a:dc:
                    42:52:9e:4f:b5:73:33:39:37:4a:24:fd:5d:db:0f:
                    10:ad:60:cd:8c:78:2f:8c:67:51:35:68:2a:cf:cb:
                    90:37:88:1d:1c:b5:d5:71:d2:6a:85:ea:1f:56:b7:
                    35:4c:3a:e5:d4:cf:fb:5f:a0:58:20:b9:1d:cd:ba:
                    bc:77:62:16:8a:3d:8e:bc:e5:90:56:e1:08:7c:a5:
                    a8:99:5c:cb:ae:b7:6c:ef:bb:f9:7c:a3:af:bb:3a:
                    37:c7:11:a7:09:df:c1:b4:d6:56:ae:ce:25:99:30:
                    ec:9a:d1:7f:48:d2:2d:13:c5:ae:cf:93:c8:e5:27:
                    70:ba:9a:c4:20:ec:3d:f0:dc:a9:fa:7f:74:a4:71:
                    e2:ed:34:70:bc:7d:51:81:47:c8:c5:89:16:76:21:
                    50:1a:36:ea:93:41:74:ab:55:a0:66:04:9c:3b:9d:
                    83:02:a5:48:48:38:e8:78:40:ab:1a:66:df:54:d0:
                    58:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:BA:0A:70:68:8D:49:44:C3:E5:71:22:E5:B5:17:23:A6:E3:38:E1
            X509v3 Authority Key Identifier:
                keyid:51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e203535313538.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         bb:d3:40:1d:67:06:23:c0:86:de:10:17:fa:a1:76:4b:26:e3:
         3e:2a:56:ba:44:7d:ad:64:13:34:62:4a:72:c5:d2:d5:98:ce:
         11:e6:12:f6:03:3e:2f:ae:1a:a7:a3:2a:b2:a6:09:33:e0:f4:
         aa:64:82:f1:a8:31:cf:43:8a:71:d9:63:57:dd:31:e9:51:ff:
         c3:4e:32:21:f5:62:fe:20:b4:c2:dd:de:38:07:3c:eb:c3:ba:
         f6:9d:6d:3a:41:72:f2:36:0b:a6:25:d0:b5:c0:8a:d9:7c:1a:
         68:9b:3e:cb:1d:9e:21:26:e6:f5:db:7d:0e:02:42:39:18:ec:
         b1:cc:fa:b5:1d:01:d2:83:c5:76:34:f1:7d:b6:34:96:2c:ff:
         2d:1f:fe:6b:b5:f4:79:24:4f:3c:3e:85:69:60:02:ed:5b:44:
         43:eb:d8:ae:8c:84:5c:1b:53:ea:ba:82:78:0d:15:57:42:af:
         ea:12:c4:56:91:0e:18:4b:20:ed:2c:00:09:a1:3f:9e:cc:88:
         c8:8b:ff:28:fa:53:2f:f7:3a:68:9d:13:fd:00:ee:08:ee:b6:
         2c:a7:08:e6:d8:c2:a6:6d:95:8d:6c:36:59:4f:9c:71:3a:90:
         b4:9d:fb:fd:39:9f:cb:2b:ac:bc:ef:01:08:d3:7d:6e:d6:4e:
         30:2f:9e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:53:47 2024 by rpki-client on console-ams.rpki-client.org