Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/13e17e85-3dd5-4261-9fa5-c3299b4396d3.roa
File:                     13e17e85-3dd5-4261-9fa5-c3299b4396d3.roa (raw, json)
Hash identifier:          yRp+q/Qr0neudZ6SjDiloFFaN8asrwyybiiMxwm7DfA=
Subject key identifier:   63:E5:F7:C6:97:05:A7:40:7C:B1:9A:ED:33:8E:57:84:27:E5:BD:C5
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       0549863DCFFB38412C4CD6DA75B0A2F302A8F164
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/13e17e85-3dd5-4261-9fa5-c3299b4396d3.roa
Signing time:             Sun 17 May 2026 01:10:04 +0000
ROA not before:           Sun 17 May 2026 01:10:04 +0000
ROA not after:            Sat 15 Aug 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        18.57.0.0/16 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 14 Jun 2026 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:49:86:3d:cf:fb:38:41:2c:4c:d6:da:75:b0:a2:f3:02:a8:f1:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: May 17 01:10:04 2026 GMT
            Not After : Aug 15 23:59:59 2026 GMT
        Subject: serialNumber=9cf1f6f6bcb5d22a095584d5e789222c785b60eeacc3cb3040134240d587942f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:85:7e:83:2d:65:bb:0c:c4:c6:80:26:1b:2d:
                    c4:3c:25:cf:b6:85:b7:c1:05:61:50:fd:b7:a2:ca:
                    15:c9:13:4a:a0:66:e7:83:57:db:c8:45:98:b3:8a:
                    ea:32:9d:52:95:77:d1:fa:0c:d6:b2:31:bc:ec:46:
                    c5:3a:72:9a:86:4e:70:0d:09:f6:70:9e:05:6c:97:
                    2e:a9:08:c7:54:05:7b:85:68:f8:d0:9f:e2:88:63:
                    af:44:e0:7d:64:b3:44:2f:77:22:1c:53:0f:f4:e3:
                    48:1f:97:35:ca:1a:d2:bd:f7:46:07:e0:21:c6:0a:
                    73:63:89:b0:c6:ae:e9:5f:01:8c:3c:8e:63:0c:26:
                    a4:2c:5b:82:a3:7a:4e:33:31:fb:a8:5d:f0:d0:9c:
                    9a:84:af:61:0a:a6:69:e6:ae:39:5f:a4:2f:62:ab:
                    13:04:69:a6:c9:fa:cc:52:22:7c:c0:6b:e8:85:ae:
                    dc:d8:bc:0a:87:41:42:67:d7:06:a5:19:58:66:55:
                    e5:3c:22:85:06:0a:c2:35:69:6b:08:dd:25:0c:82:
                    7f:3a:30:fa:56:e8:b8:0a:90:95:51:2e:c3:98:e5:
                    5e:5f:ec:f5:74:11:34:43:58:a9:91:17:60:f6:fa:
                    04:4c:a9:c6:90:0f:c0:c1:9d:b4:9b:08:49:1a:1a:
                    c0:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:E5:F7:C6:97:05:A7:40:7C:B1:9A:ED:33:8E:57:84:27:E5:BD:C5
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/13e17e85-3dd5-4261-9fa5-c3299b4396d3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  18.57.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         2e:5f:fa:e8:3d:06:67:8e:08:03:c6:5e:52:fe:64:0c:0b:76:
         50:4e:2b:39:12:3e:26:f0:00:63:d3:f6:90:87:64:cd:49:4e:
         15:b5:57:ed:92:c1:71:75:ed:0a:55:fc:91:68:01:58:14:43:
         9f:f1:d1:dd:89:71:20:40:c7:97:af:56:f8:d1:ef:53:ad:ef:
         82:c7:2e:35:82:e9:cb:ca:61:87:c0:8a:d4:26:b5:c3:98:35:
         76:df:4c:e9:27:8c:16:14:dd:e2:0e:8f:dd:f2:82:9d:54:e9:
         79:60:b2:a1:7d:61:eb:39:2a:c5:4d:60:8a:a1:38:a4:68:a2:
         97:d3:26:aa:83:57:13:dc:22:5a:2e:c6:40:2d:39:f7:d7:1a:
         c9:3f:ef:f2:40:55:76:d4:b8:86:ee:ca:d6:b0:75:34:11:c2:
         23:a1:7a:a3:b3:de:89:72:21:fa:ca:a8:31:12:eb:3b:8e:56:
         9b:3f:ff:36:a3:5f:cc:e6:0a:a5:61:ea:34:02:9b:00:14:24:
         19:ec:34:a6:93:69:09:04:37:99:f3:76:ce:27:cb:75:f0:3d:
         e0:03:62:b5:65:8b:38:c3:17:80:93:5f:b2:2d:1c:ef:79:0b:
         0a:05:d2:7c:a3:8c:d7:7a:d3:7c:d7:63:4a:c2:31:59:49:4c:
         ac:54:ca:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:43:11 2026 by rpki-client