Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f00432-b6c7-4ac9-9a8b-daaad1ce82f2.roa
File:                     82f00432-b6c7-4ac9-9a8b-daaad1ce82f2.roa (raw, json)
Hash identifier:          nKgju/EwHfGZ+H++mlhcdUrkZdKoI3sbnXep7Yh1HDQ=
Subject key identifier:   61:41:52:04:6B:82:6B:9F:6D:76:5B:8F:5D:6F:3F:43:62:9D:12:10
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       6FBC9683D2F2BFBF59BC70DC9D4D8FAE8FC5DB6B
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f00432-b6c7-4ac9-9a8b-daaad1ce82f2.roa
Signing time:             Tue 03 Jun 2025 16:00:19 +0000
ROA not before:           Tue 03 Jun 2025 16:00:19 +0000
ROA not after:            Tue 08 Jul 2025 23:59:59 +0000
asID:                     16509
IP address blocks:        54.190.64.0/18 maxlen: 18
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Sun 15 Jun 2025 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6f:bc:96:83:d2:f2:bf:bf:59:bc:70:dc:9d:4d:8f:ae:8f:c5:db:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Jun  3 16:00:19 2025 GMT
            Not After : Jul  8 23:59:59 2025 GMT
        Subject: serialNumber=f6c74671b9cc5024b47d27c53d8188b8d98f1ed4c026f47d91a0652671629689, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:91:4d:35:56:76:62:2a:25:9b:af:d3:90:35:
                    96:b6:67:de:ee:ed:9f:08:de:3e:c3:f9:99:33:0b:
                    41:25:e6:31:0a:87:0c:e9:56:56:99:bc:5b:ce:7e:
                    8e:37:0d:84:58:84:b3:76:94:07:1e:81:45:a4:30:
                    55:e3:23:6f:20:cb:fb:aa:aa:b4:82:0e:c3:58:f0:
                    46:3e:87:cb:13:ea:12:a7:06:21:98:33:00:cf:94:
                    9f:06:3f:4a:ed:cb:8b:00:92:bf:87:60:2c:92:83:
                    dd:11:22:ba:ef:61:b9:96:7f:a0:14:dd:6d:a4:8f:
                    7c:16:a7:db:b8:56:08:20:bb:c8:27:1c:24:27:9e:
                    11:cb:24:3a:8f:02:84:0b:23:8f:d0:37:d8:25:ce:
                    5b:f4:c2:54:7a:7b:7d:fe:b6:68:4a:da:b0:f6:d3:
                    17:db:36:af:13:bb:7c:24:10:4e:ed:b9:54:9a:5d:
                    89:6c:ad:af:9b:7b:fd:d1:21:e2:e6:bb:7b:f6:4f:
                    10:7b:78:43:1d:0b:e4:75:ea:14:df:10:d5:48:b5:
                    a3:0b:ba:2e:7c:86:e9:b2:81:cf:5a:20:09:af:80:
                    3b:fa:37:3f:f8:8a:f8:93:ba:2b:23:b2:ea:8b:ae:
                    7e:28:99:1b:b1:e8:4b:3f:28:a0:05:cf:f3:7f:bf:
                    b8:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:41:52:04:6B:82:6B:9F:6D:76:5B:8F:5D:6F:3F:43:62:9D:12:10
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f00432-b6c7-4ac9-9a8b-daaad1ce82f2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  54.190.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         0f:26:c3:32:81:f9:61:22:16:53:c4:a8:35:47:38:64:c5:45:
         25:e6:ba:b2:f4:8b:ca:68:e1:aa:61:73:51:35:02:78:9b:0f:
         59:a9:01:dc:b0:1a:80:12:1c:38:96:24:69:f0:23:16:43:ac:
         32:a6:db:5f:84:6d:b9:48:de:ac:d0:79:d0:5e:e2:8e:36:96:
         e6:65:a1:3d:aa:af:5b:3c:96:97:c6:e9:bb:7e:75:7e:30:b9:
         49:6c:65:fe:a2:db:fa:e1:07:ec:22:3e:e6:0c:de:a5:f5:26:
         ae:79:31:07:1a:e6:ca:b9:df:b9:5b:0f:8a:fb:18:db:52:ac:
         9f:20:46:6b:39:62:c7:0b:83:35:fa:a4:16:4c:67:c1:84:c3:
         a2:8a:80:f0:8a:ae:4b:88:bc:f5:b6:81:c0:c4:cd:54:49:a0:
         f4:34:59:be:36:a8:f0:a4:fa:9e:09:01:b3:d6:24:af:91:2d:
         b1:e1:e4:12:74:7e:4d:a1:30:72:2b:0b:c4:64:67:26:79:c5:
         6b:0c:12:62:ab:99:cc:32:59:13:60:60:32:4c:6d:3e:93:68:
         fb:7b:42:d4:a1:f2:3f:29:eb:36:88:09:6b:bd:4a:22:3c:fc:
         b6:3a:db:7a:c5:99:72:3a:bb:70:c4:60:b9:3d:12:ec:0b:a7:
         4d:bd:d0:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 05:50:44 2025 by rpki-client