Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01c2b62-1c13-46dc-be0b-e1f5d82afa02.roa
File:                     c01c2b62-1c13-46dc-be0b-e1f5d82afa02.roa (raw, json)
Hash identifier:          r6cPdOtH3iCakhxDfpKYqFrCU++PQHwV5SSBBnxBV1I=
Subject key identifier:   6D:9F:7E:EF:C5:4A:EE:6D:2C:57:C2:A2:20:98:E4:30:33:EE:9D:E5
Certificate issuer:       /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial:       736F0FEDD49E8899256F64599943048B3E7187C8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01c2b62-1c13-46dc-be0b-e1f5d82afa02.roa
Signing time:             Tue 22 Jul 2025 15:00:16 +0000
ROA not before:           Tue 22 Jul 2025 15:00:16 +0000
ROA not after:            Tue 26 Aug 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        56.46.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 07 Aug 2025 17:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            73:6f:0f:ed:d4:9e:88:99:25:6f:64:59:99:43:04:8b:3e:71:87:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
        Validity
            Not Before: Jul 22 15:00:16 2025 GMT
            Not After : Aug 26 23:59:59 2025 GMT
        Subject: serialNumber=7f7a45219f1db1b8ab4a0eb5bfa749ca248192ac4366524fe542638b86ceafbb, CN=b25c970f-d813-445c-bfe2-62668518c87e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:0f:fb:53:b5:15:5a:3d:bb:04:40:4b:7f:5a:
                    be:6c:5e:14:42:79:ab:04:88:89:19:fa:53:81:72:
                    de:d6:87:f9:c2:50:d5:f7:8a:3c:cd:01:4e:35:15:
                    be:05:83:cb:1b:3e:8e:c1:3a:83:20:d5:e5:70:69:
                    83:7d:d0:d0:38:7a:88:14:33:d8:2d:f8:e9:a6:b4:
                    2f:fd:43:b0:81:07:86:d7:11:45:7f:d0:1e:e9:85:
                    c9:54:5d:9e:43:30:c7:ac:8d:2e:14:d8:2f:b3:c8:
                    5e:b1:b6:b7:be:40:dd:77:07:12:e1:67:d7:ee:47:
                    b1:fd:9b:13:9c:ed:2e:e4:b1:4b:70:19:55:8b:bc:
                    38:dd:d1:54:72:07:4b:c9:be:45:93:b4:4a:89:b8:
                    2e:84:0e:f6:e7:72:5a:dd:d4:62:a1:91:2f:98:03:
                    05:63:54:ae:68:75:15:cd:e1:f6:c2:6d:9d:8a:96:
                    d1:f0:51:61:2d:60:ed:15:01:53:8c:24:a0:40:81:
                    cc:9c:10:fc:d8:b9:fb:90:5b:ad:9d:3d:d1:71:ab:
                    24:1a:04:15:8c:dc:eb:de:f9:5a:68:2d:2c:6a:a8:
                    6c:3f:ae:35:7e:a1:a2:28:b2:14:e1:17:ba:38:7b:
                    78:49:16:77:8a:12:5d:46:98:4c:01:a6:3b:9d:79:
                    e9:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:9F:7E:EF:C5:4A:EE:6D:2C:57:C2:A2:20:98:E4:30:33:EE:9D:E5
            X509v3 Authority Key Identifier:
                keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01c2b62-1c13-46dc-be0b-e1f5d82afa02.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  56.46.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         ab:80:05:e9:8b:dd:71:2e:73:4c:67:8c:4e:8a:7b:b4:64:0a:
         c8:3d:f3:08:62:c8:71:3a:96:db:dd:17:ef:74:76:6d:6d:a0:
         b5:27:1d:0a:3f:96:ab:0d:77:62:9e:51:ec:86:d0:73:e3:42:
         1e:1d:cf:c9:ea:35:7c:6d:5e:48:ef:8f:00:21:f5:f9:84:e8:
         db:61:9a:74:52:20:21:57:1c:39:1e:11:62:c9:c3:bb:68:3e:
         48:15:14:d3:d6:45:6c:06:24:12:a2:54:b2:f1:e8:4b:2b:db:
         f7:c1:12:ea:33:16:49:7c:45:b2:63:49:d6:2d:4d:18:2e:c4:
         e0:0a:14:94:44:d4:6a:81:e9:15:24:34:5e:06:d2:32:d3:0d:
         a4:86:8a:ae:98:ae:e8:dd:58:2a:a1:5c:55:54:d6:c6:a5:2a:
         6d:1e:9b:c2:54:a2:68:aa:4b:33:7d:97:cd:ac:ee:db:81:96:
         38:1e:54:a4:89:6f:90:11:b3:7f:b8:49:d0:f6:8e:71:a9:3e:
         98:de:37:81:ca:6b:7d:f8:b9:98:2a:5a:bf:bf:ff:d7:69:c7:
         c4:7a:25:fa:50:87:42:d6:d8:b1:f1:0d:20:a2:d1:9a:fb:40:
         0d:f6:d5:fd:55:87:54:6f:16:92:ca:36:5d:5c:74:60:ad:74:
         73:2d:cf:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:19:22 2025 by rpki-client