Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37907f75-e7ff-4ab6-93f4-46f58160bbb9.roa
File:                     37907f75-e7ff-4ab6-93f4-46f58160bbb9.roa (raw, json)
Hash identifier:          s6RywhUbk7KN9LTaQvUP7iygYhX7+NmU20WclWE3PHA=
Subject key identifier:   EF:FA:7E:09:F7:46:0D:68:05:47:B7:9B:6B:9E:A2:30:53:3E:BC:86
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       6C0936B4A83DCEA15CA23CE98E5EA54B148715FE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37907f75-e7ff-4ab6-93f4-46f58160bbb9.roa
Signing time:             Wed 18 Feb 2026 00:31:57 +0000
ROA not before:           Wed 18 Feb 2026 00:31:57 +0000
ROA not after:            Tue 19 May 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        206.53.96.0/19 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Tue 03 Mar 2026 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:09:36:b4:a8:3d:ce:a1:5c:a2:3c:e9:8e:5e:a5:4b:14:87:15:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Feb 18 00:31:57 2026 GMT
            Not After : May 19 23:59:59 2026 GMT
        Subject: serialNumber=51718abb0442acac010b77671ddd7771f1ae651a46891d0367f1899a92fd2423, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:15:ce:74:15:40:ec:1e:3c:8d:b5:83:e6:b6:
                    34:c7:10:6e:b2:16:ff:7e:c1:2f:3b:d2:c4:0b:43:
                    53:4a:6f:36:3f:23:18:a9:17:a9:70:9b:7e:c6:71:
                    e7:a0:7f:4f:14:ac:d7:17:18:4a:e5:62:b6:6d:fd:
                    47:3b:31:60:cf:3f:84:6a:a8:77:4a:d6:ed:f4:a3:
                    f2:6a:91:7e:88:84:7f:7f:47:dc:b2:72:0d:6b:17:
                    49:9f:06:d0:28:2a:5e:68:1c:33:39:fa:d9:d2:cd:
                    a3:72:ed:05:a2:15:9e:f6:d2:37:00:e1:dc:c3:57:
                    69:ea:7b:24:a6:d4:cc:12:d3:3c:54:9e:29:aa:6f:
                    76:22:be:9a:d0:ca:03:34:f5:30:d9:3a:f5:bd:99:
                    54:60:80:2f:4b:95:4e:0d:63:50:63:28:cc:cd:5e:
                    b5:08:7e:d0:a0:60:1f:08:62:a3:17:d5:e9:08:1f:
                    5b:8a:5d:f8:39:03:f1:69:25:40:dd:42:d5:60:94:
                    3e:8c:19:c9:9b:82:ff:49:b6:ff:61:41:5a:82:50:
                    38:ab:2a:61:b0:b5:f5:48:e9:ae:25:a9:26:e8:cf:
                    48:ae:d8:98:1e:d3:9d:fe:84:df:13:c1:fe:a9:4a:
                    9e:5b:78:39:15:40:12:5f:85:97:4d:8c:e0:41:0a:
                    76:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:FA:7E:09:F7:46:0D:68:05:47:B7:9B:6B:9E:A2:30:53:3E:BC:86
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37907f75-e7ff-4ab6-93f4-46f58160bbb9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  206.53.96.0/19

    Signature Algorithm: sha256WithRSAEncryption
         99:dd:a8:5f:a8:4e:8e:65:45:4f:06:95:4f:c4:69:82:e9:91:
         18:0e:fc:40:62:f7:8a:3f:5d:3c:6f:22:61:49:79:da:e8:ac:
         a3:5e:3a:f7:0d:f8:e5:3c:08:8d:36:88:f1:c6:0f:7f:21:21:
         b1:7a:df:1d:b5:86:61:95:08:f5:d2:ca:ab:90:8f:41:84:f0:
         a5:5f:70:f7:57:47:b5:a0:5d:87:6d:dc:0e:4d:63:1f:c5:3b:
         6e:2b:35:d3:05:1b:63:3f:74:51:7e:ad:46:f7:3e:b2:2c:92:
         2f:0f:5f:5b:0e:a4:0f:17:52:5b:67:f3:7b:62:99:b0:6a:92:
         97:11:74:43:a9:c2:bb:da:e9:3d:67:3f:ac:9a:d7:b8:1e:62:
         be:15:53:10:5c:6f:8d:8e:06:7f:13:a6:23:88:d4:95:39:4b:
         4b:a3:8a:ca:52:fb:2a:e8:45:6f:c2:73:da:14:c0:ca:10:ba:
         e6:c2:3b:28:0f:de:e6:9e:78:e6:74:4e:35:cb:cd:4e:c5:9f:
         bd:8d:c9:f9:5e:9c:fd:52:12:0f:d7:3a:50:1c:92:97:06:6f:
         44:ec:52:3f:52:14:74:00:7c:cc:d5:0a:7c:5d:87:36:ad:be:
         e6:61:29:76:0c:7e:4d:95:2b:72:67:6f:31:e5:47:a2:c6:0f:
         ca:e0:d3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 22:16:55 2026 by rpki-client