Route Origin Authorization

$ rpki-client -vvf rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f34382d3438203d3e203535313538.roa
File:                     323630353a3963303a3a2f34382d3438203d3e203535313538.roa (raw, json)
Hash identifier:          K5G0hIMebEmbK2MWSgJOQ16jQ/HZ1Lk7rxkuqFO556g=
Subject key identifier:   35:CF:63:ED:FB:09:8E:70:7B:74:BC:14:5B:37:C7:C9:8E:7F:E0:2F
Certificate issuer:       /CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450
Certificate serial:       57993DDC68BD3F1ABCC90219B74C54200351CF82
Authority key identifier: 51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer
Subject info access:      rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f34382d3438203d3e203535313538.roa
Signing time:             Thu 12 Oct 2023 16:10:43 +0000
ROA not before:           Thu 12 Oct 2023 16:05:43 +0000
ROA not after:            Thu 10 Oct 2024 16:10:43 +0000
asID:                     55158
IP address blocks:        2605:9c0::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl
                          rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 17 Jun 2024 01:20:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:99:3d:dc:68:bd:3f:1a:bc:c9:02:19:b7:4c:54:20:03:51:cf:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450
        Validity
            Not Before: Oct 12 16:05:43 2023 GMT
            Not After : Oct 10 16:10:43 2024 GMT
        Subject: CN=35CF63EDFB098E707B74BC145B37C7C98E7FE02F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:7e:0c:a9:28:24:c7:a6:3b:d3:64:c1:bd:86:
                    e1:bf:90:d7:52:f6:ed:bd:d8:67:d8:be:b6:15:a6:
                    7f:54:0a:91:1c:e6:d9:88:b2:e1:66:aa:4e:e0:d4:
                    b4:64:5f:6f:32:e0:2a:87:09:67:b8:56:28:ab:95:
                    e1:b3:46:4e:61:aa:9e:dc:5c:b2:36:98:27:6c:76:
                    1d:97:7e:b7:67:64:72:4d:93:07:83:f8:6f:f0:57:
                    64:7c:0d:1c:db:4c:9b:45:ae:a0:cd:34:25:9b:ef:
                    7c:f4:54:af:11:94:05:f8:74:08:ea:17:09:47:52:
                    0a:a7:ef:93:cf:cd:d4:60:71:f2:ab:4a:53:22:24:
                    f0:dd:58:56:55:cf:4f:c3:a0:ec:cd:23:7b:84:54:
                    b4:ac:b6:9b:04:23:c5:26:6f:92:b0:3a:eb:1b:0f:
                    0a:85:de:54:b5:81:f3:b4:d9:51:71:9d:52:99:1f:
                    3f:e3:ae:80:de:f9:44:9d:75:83:a8:e6:6f:5e:4f:
                    6d:1f:95:7b:9f:35:c7:66:ea:27:17:a8:41:1e:2c:
                    c4:a5:4d:a3:b5:36:9a:e0:b5:94:be:16:13:d6:87:
                    7b:be:06:2e:f6:02:6a:c9:85:ba:1e:75:e4:e7:3a:
                    b2:f8:97:48:cc:73:d8:1a:8c:d4:4f:84:9b:4f:20:
                    55:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:CF:63:ED:FB:09:8E:70:7B:74:BC:14:5B:37:C7:C9:8E:7F:E0:2F
            X509v3 Authority Key Identifier:
                keyid:51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f34382d3438203d3e203535313538.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2605:9c0::/48

    Signature Algorithm: sha256WithRSAEncryption
         24:9f:f4:25:e6:17:89:0a:01:eb:06:c6:8d:1b:ac:f7:83:89:
         a3:68:81:46:1d:16:cd:2e:ff:d1:26:47:c5:53:5b:b4:bf:6b:
         bc:8c:19:82:4e:60:b5:a3:be:6d:2e:e4:b4:ad:49:22:4a:b0:
         77:80:29:43:f6:35:af:87:55:ad:c5:99:5e:a8:c3:7f:35:43:
         dd:4e:ad:f5:8c:31:a4:b7:27:a1:22:d6:21:8d:fb:77:8d:6e:
         65:a2:24:f0:78:51:78:0e:c0:82:49:8f:d4:ee:c3:75:c3:7f:
         12:03:8c:aa:fb:ab:8e:91:9f:32:3e:17:a2:db:08:31:79:b9:
         75:34:e7:44:67:27:16:bd:d4:a6:e5:fa:92:8f:bb:bb:10:fe:
         8d:b8:64:59:07:ee:d2:65:d4:24:e2:88:89:55:2f:de:37:9f:
         ea:2f:e4:09:42:d0:c5:56:77:78:5c:29:23:2b:40:20:1a:29:
         ce:8f:38:c5:f0:56:1a:d9:b0:e8:ba:31:a3:6e:2d:93:5a:bb:
         37:bb:f9:20:44:58:76:d8:61:39:c0:c4:b1:a3:6a:27:4f:58:
         03:2e:af:46:f5:81:f7:89:7c:7d:7c:7a:fc:51:eb:69:48:44:
         74:0d:82:68:e5:fd:52:e1:b8:22:b2:7f:da:c7:57:75:e9:5e:
         74:07:18:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:41:25 2024 by rpki-client on console-fra.rpki-client.org