Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a38303a3a2f34342d3434203d3e203133363436.roa
File:                     323630323a666131313a38303a3a2f34342d3434203d3e203133363436.roa (raw, json)
Hash identifier:          UjThDX1rv9xSBGeg/pGWqA5SMLGWR9M4Ri51iz0GIQs=
Subject key identifier:   75:A5:80:5F:F3:35:55:39:58:55:4F:B5:2A:C4:64:20:72:F3:1C:DD
Certificate issuer:       /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
Certificate serial:       76E6D6FC5E0C0E55F95DBE91EDCC79018C5ADD55
Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a38303a3a2f34342d3434203d3e203133363436.roa
Signing time:             Fri 02 Feb 2024 04:01:23 +0000
ROA not before:           Fri 02 Feb 2024 03:56:23 +0000
ROA not after:            Fri 31 Jan 2025 04:01:23 +0000
asID:                     13646
IP address blocks:        2602:fa11:80::/44 maxlen: 44

Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 17 Jun 2024 13:01:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:e6:d6:fc:5e:0c:0e:55:f9:5d:be:91:ed:cc:79:01:8c:5a:dd:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
        Validity
            Not Before: Feb  2 03:56:23 2024 GMT
            Not After : Jan 31 04:01:23 2025 GMT
        Subject: CN=75A5805FF335553958554FB52AC4642072F31CDD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:e3:c2:aa:66:88:1f:5c:62:96:73:87:f4:ea:
                    4d:ac:b0:22:b5:0d:29:aa:ad:98:08:8d:d9:03:86:
                    12:ec:30:41:ae:36:71:8e:38:7b:d5:ea:92:c2:77:
                    98:fa:a4:8b:df:0e:61:03:1a:e9:92:f3:10:38:e8:
                    28:49:db:b8:65:fe:cb:22:40:2e:ca:1d:ca:15:7c:
                    d2:19:f4:33:c3:5d:bc:9c:ae:df:7d:c2:d2:e8:ae:
                    54:2a:42:27:a0:4f:96:51:22:64:44:8a:ad:bf:dd:
                    46:55:12:60:15:82:b5:5c:27:b4:54:3c:82:81:76:
                    ee:2f:9d:72:40:3d:65:73:9e:69:84:65:b2:4c:f6:
                    a4:38:ef:24:c1:36:01:cb:a4:62:9e:f9:cc:4b:4f:
                    40:ec:86:bd:37:32:73:3e:1b:2d:15:f9:e5:11:dc:
                    e4:b5:1f:9c:03:c9:f9:26:ff:93:29:c3:83:81:6b:
                    38:2b:16:b4:eb:16:e5:a8:ea:f2:b5:7a:bb:50:8c:
                    05:2e:06:21:e6:25:18:08:0e:e9:7f:a3:30:08:d9:
                    92:8f:3f:ae:8f:65:79:3b:8e:f2:94:01:b6:1d:f0:
                    c5:db:a1:e5:8c:ed:59:5a:fd:00:0a:95:08:6f:d5:
                    0b:f1:c0:54:81:2c:06:a4:2a:ac:62:47:aa:15:c2:
                    7d:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:A5:80:5F:F3:35:55:39:58:55:4F:B5:2A:C4:64:20:72:F3:1C:DD
            X509v3 Authority Key Identifier:
                keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a38303a3a2f34342d3434203d3e203133363436.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2602:fa11:80::/44

    Signature Algorithm: sha256WithRSAEncryption
         44:32:73:90:b8:b3:94:2c:ff:5b:f2:59:85:35:1b:83:e3:79:
         3a:6d:f9:17:f6:c3:c9:8e:78:0c:12:c8:c3:68:d6:ed:b3:96:
         61:c0:ae:0d:b9:c3:8b:0c:64:90:ff:eb:e8:c5:c6:ae:70:b1:
         27:ed:8a:c2:e8:ca:c8:33:32:57:bf:08:b0:04:fb:4b:f2:11:
         63:82:a3:06:b9:ce:77:b0:9c:03:e1:6e:08:25:95:17:e6:39:
         b6:ee:e0:77:15:4d:06:7c:06:5f:e3:63:db:35:f3:f2:dd:95:
         4f:f9:93:ef:d4:9c:71:0b:2f:05:04:a4:34:5f:ee:45:50:c1:
         f0:ac:27:4f:7d:e2:5d:a2:17:61:33:00:2c:48:b4:92:c1:b7:
         9f:6e:dc:93:aa:94:6f:ca:a7:9b:98:c6:20:42:9a:c1:ea:9b:
         bc:6c:51:16:ef:5d:a7:a9:83:d4:68:2a:69:c7:53:c1:be:c0:
         12:44:46:ee:0a:9c:c6:15:bf:f0:8e:8d:3c:46:37:a8:cd:80:
         04:ab:14:2d:45:09:c1:9d:c7:53:29:27:8b:33:38:69:2a:c3:
         29:84:4a:2d:50:c5:62:93:84:a8:c9:c7:4c:ea:5c:f6:7a:c9:
         db:8b:12:58:18:91:ac:4f:13:db:2b:de:2b:6c:cc:10:6a:7f:
         e9:9f:63:99
-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgIUdubW/F4MDlX5Xb6R7cx5AYxa3VUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy
NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjQwMjAyMDM1NjIzWhcNMjUwMTMxMDQwMTIz
WjAzMTEwLwYDVQQDEyg3NUE1ODA1RkYzMzU1NTM5NTg1NTRGQjUyQUM0NjQyMDcy
RjMxQ0REMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ePCqmaIH1xi
lnOH9OpNrLAitQ0pqq2YCI3ZA4YS7DBBrjZxjjh71eqSwneY+qSL3w5hAxrpkvMQ
OOgoSdu4Zf7LIkAuyh3KFXzSGfQzw128nK7ffcLS6K5UKkInoE+WUSJkRIqtv91G
VRJgFYK1XCe0VDyCgXbuL51yQD1lc55phGWyTPakOO8kwTYBy6RinvnMS09A7Ia9
NzJzPhstFfnlEdzktR+cA8n5Jv+TKcODgWs4Kxa06xblqOrytXq7UIwFLgYh5iUY
CA7pf6MwCNmSjz+uj2V5O47ylAG2HfDF26HljO1ZWv0ACpUIb9UL8cBUgSwGpCqs
YkeqFcJ98QIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFHWlgF/zNVU5WFVPtSrEZCBy
8xzdMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE
AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu
cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2
LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG
RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy
c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0
YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt
NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k
MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk
MDMyMmUwY2UwMmRhZDYuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH
MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMyMzYzMDMy
M2E2NjYxMzEzMTNhMzgzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzMzNjM0
MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQmAvoRAIAwDQYJKoZIhvcNAQELBQADggEBAEQyc5C4s5Qs
/1vyWYU1G4PjeTpt+Rf2w8mOeAwSyMNo1u2zlmHArg25w4sMZJD/6+jFxq5wsSft
isLoysgzMle/CLAE+0vyEWOCowa5znewnAPhbggllRfmObbu4HcVTQZ8Bl/jY9s1
8/LdlU/5k+/UnHELLwUEpDRf7kVQwfCsJ0994l2iF2EzACxItJLBt59u3JOqlG/K
p5uYxiBCmsHqm7xsURbvXaepg9RoKmnHU8G+wBJERu4KnMYVv/COjTxGN6jNgASr
FC1FCcGdx1MpJ4szOGkqwymESi1QxWKThKjJx0zqXPZ6yduLElgYkaxPE9sr3its
zBBqf+mfY5k=
-----END CERTIFICATE-----
Generated at Sun Jun 16 14:53:46 2024 by rpki-client on console-ams.rpki-client.org