$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa File: 00a5e67e-d81d-4547-b011-580d41cad494.roa (raw, json) Hash identifier: 9Q45luVXpboBNCh7IeC3ikSA1/BUF1dojyxfru5fHRo= Subject key identifier: 6E:D9:0C:C1:FF:F3:93:9B:18:6D:A4:8D:03:A5:EB:F7:29:5E:B7:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7249429370E97C4C2E954C328154C5546C7BEBB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:49:42:93:70:e9:7c:4c:2e:95:4c:32:81:54:c5:54:6c:7b:eb:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=be909ecde5fa922e79fe33c31c33771a354b07266422d05d80412ef46d382e99, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0f:d3:d2:58:89:b8:88:e7:d6:17:18:7a:67: bc:48:bb:23:32:07:27:0d:71:54:5b:48:34:1f:45: 41:f3:b5:31:b0:ac:8d:01:29:fe:e5:6b:e2:0e:4f: c7:fc:9d:a1:c1:70:84:57:11:10:75:38:fd:c1:e7: 9c:af:79:f9:5a:bf:ff:90:36:e8:b5:1b:a7:15:e6: c9:4b:bf:0e:46:fc:71:a3:03:fd:64:cc:d1:f2:58: 80:f1:22:2a:8d:41:35:5b:af:3d:d5:3d:3e:69:de: 5f:c0:00:7b:20:03:e1:ef:a0:95:60:7c:2c:cd:d5: 83:35:f0:9a:da:a6:77:39:ce:e1:bb:f7:64:e8:3f: ec:2b:68:d9:31:32:59:f7:58:b6:78:6b:93:34:7c: 1b:17:c4:bf:33:cb:67:3c:27:6d:de:fc:c0:cf:62: 06:12:f7:7d:3c:4e:52:69:18:2b:6a:61:7e:3a:e0: 0e:8f:91:b0:6d:0c:82:4d:e4:8a:cd:82:a5:b2:64: 04:6e:eb:8d:b6:07:ec:f1:8a:d5:37:6a:68:5f:b9: d0:a5:de:89:0d:33:28:20:04:0a:84:e8:27:2a:03: ce:87:81:b1:b8:a7:fd:28:44:b8:ba:e8:63:03:bf: 90:ee:5b:8e:8f:ad:50:ba:6d:d5:2e:aa:9b:1f:54: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D9:0C:C1:FF:F3:93:9B:18:6D:A4:8D:03:A5:EB:F7:29:5E:B7:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.243.0/24 Signature Algorithm: sha256WithRSAEncryption 70:68:0b:14:07:ac:0a:f5:d8:f1:00:3b:d7:d4:a0:88:b7:61: 3a:68:fc:52:3e:62:7a:09:ef:f2:5b:72:b3:7d:37:b3:e7:a1: 74:58:b1:3b:63:dd:a8:42:30:1a:32:79:fc:d2:68:69:b2:34: 59:28:be:cc:dc:25:97:f7:31:d6:ba:10:62:37:92:7f:2c:11: 16:2c:a5:2f:e7:51:db:dd:74:05:8c:90:6f:17:c7:e1:7c:13: 6a:8c:51:01:87:34:e6:f6:ba:c2:c9:0a:ee:5a:77:0e:a6:76: ff:d3:55:87:59:ad:82:c5:7c:47:75:70:20:9c:6e:1f:b5:79: d7:b5:c9:53:e5:bc:7b:c1:46:ed:bc:60:e9:02:30:e1:71:39: 6a:2e:97:46:95:4f:6d:12:70:6e:de:e5:59:c2:24:7a:42:81: 28:f5:5d:c1:0d:56:97:6b:44:3f:fb:97:d9:34:a4:5c:58:a9: 60:3c:40:cb:7f:31:c4:3a:fd:5d:ca:aa:2d:84:5b:63:35:4f: a1:bb:1f:27:a0:2f:2a:9e:cc:ed:c9:01:26:71:e4:4d:23:13: 9d:d6:10:63:82:73:eb:65:b3:42:e4:d6:78:fc:8d:54:5b:75: 05:76:72:08:62:a7:90:c0:18:64:aa:91:ff:5d:28:d4:17:a5: 2b:67:aa:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcklCk3DpfEwulUwygVTFVGx767MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTkwOWVjZGU1ZmE5MjJlNzlmZTMzYzMxYzMzNzcxYTM1 NGIwNzI2NjQyMmQwNWQ4MDQxMmVmNDZkMzgyZTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmD9PSWIm4iOfWFxh6Z7xIuyMyBycNcVRbSDQfRUHztTGw rI0BKf7la+IOT8f8naHBcIRXERB1OP3B55yveflav/+QNui1G6cV5slLvw5G/HGj A/1kzNHyWIDxIiqNQTVbrz3VPT5p3l/AAHsgA+HvoJVgfCzN1YM18Jrapnc5zuG7 92ToP+wraNkxMln3WLZ4a5M0fBsXxL8zy2c8J23e/MDPYgYS9308TlJpGCtqYX46 4A6PkbBtDIJN5IrNgqWyZARu6422B+zxitU3amhfudCl3okNMyggBAqE6CcqA86H gbG4p/0oRLi66GMDv5DuW46PrVC6bdUuqpsfVGnTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbtkMwf/zk5sYbaSNA6Xr9ylet5swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwYTVlNjdlLWQ4MWQtNDU0Ny1iMDExLTU4MGQ0MWNhZDQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfMwDQYJKoZIhvcNAQELBQADggEBAHBoCxQHrAr12PEAO9fUoIi3YTpo /FI+YnoJ7/JbcrN9N7PnoXRYsTtj3ahCMBoyefzSaGmyNFkovszcJZf3Mda6EGI3 kn8sERYspS/nUdvddAWMkG8Xx+F8E2qMUQGHNOb2usLJCu5adw6mdv/TVYdZrYLF fEd1cCCcbh+1ede1yVPlvHvBRu28YOkCMOFxOWoul0aVT20ScG7e5VnCJHpCgSj1 XcENVpdrRD/7l9k0pFxYqWA8QMt/McQ6/V3Kqi2EW2M1T6G7HyegLyqezO3JASZx 5E0jE53WEGOCc+tls0Lk1nj8jVRbdQV2cghip5DAGGSqkf9dKNQXpStnqmg= -----END CERTIFICATE-----Generated at Mon Aug 28 23:15:01 2023 by rpki-client on console-fra.rpki-client.org