$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa File: 0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa (raw, json) Hash identifier: S+pxAj/5BYTXG0JjRiTB2fMB3YRV98gtltOSUVOv7nU= Subject key identifier: 42:88:45:BB:EE:C4:43:CC:61:47:9B:DB:1E:B2:EA:D7:5D:A2:95:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 057DBDA47DA5DE7B0778760F5330A9886C600869 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:7d:bd:a4:7d:a5:de:7b:07:78:76:0f:53:30:a9:88:6c:60:08:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=0b3b8522f2cc0a47b0cf5726428671c5153d706f4a1ab7b09ca472771a7bcc81, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:bb:48:5b:49:f9:07:97:5f:d2:56:8b:bd:75: 9f:f6:69:4f:fc:91:25:b2:2b:48:00:dc:af:4a:22: 82:00:47:0f:78:96:3a:45:21:9f:64:19:40:3f:9f: 05:ea:6a:94:6e:b0:17:e3:68:c0:ce:61:ef:26:b1: 1e:11:e9:a0:58:9f:d7:e4:26:a9:3c:cb:06:98:fb: 45:bc:71:54:c5:c9:9b:1d:e1:5f:2f:a4:d1:a2:57: 70:07:64:26:c7:25:54:fc:6f:05:15:7e:0f:1d:fe: 83:f8:d9:37:d0:e4:eb:51:e2:33:b4:34:ad:1e:1f: eb:b7:07:f3:f4:5e:94:86:d9:1d:fe:cb:f0:4c:11: f5:42:f3:93:ea:e9:3d:18:34:77:7d:e7:f0:f7:29: 17:05:1c:bd:bb:dd:aa:bf:90:73:c0:bd:f7:0a:19: 5e:97:f9:49:af:65:4a:35:45:f4:82:86:a5:3f:71: e1:a4:e9:8d:4b:bf:08:dd:b8:cb:ac:d5:8b:5e:3e: ca:16:0a:35:6d:13:38:59:e0:96:c7:7e:5a:06:a6: 4b:61:5b:36:96:22:66:2d:94:d8:43:68:13:22:2a: 3e:49:58:3b:be:a5:4d:a7:74:6c:10:91:36:ed:34: 2a:39:6d:f4:69:2d:aa:bd:04:f4:d9:6f:52:b8:71: fc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:88:45:BB:EE:C4:43:CC:61:47:9B:DB:1E:B2:EA:D7:5D:A2:95:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.117.0/24 Signature Algorithm: sha256WithRSAEncryption 63:31:8c:a1:60:f7:94:a2:7a:ca:a8:c1:f1:33:60:07:ea:7d: f3:50:b1:a4:95:34:1d:4a:02:d6:03:ec:3e:70:f2:d6:1a:92: 4d:7b:c7:80:2d:57:bd:a9:fd:c8:87:2f:6b:1c:63:fa:dc:07: d7:5c:60:48:f4:6b:4a:d3:e0:17:19:12:51:5d:54:e8:a5:c5: fd:ed:86:bb:9f:f5:ec:4c:f7:9d:6f:52:71:a2:e6:48:3e:0c: 38:7a:82:da:40:1f:9e:ec:66:ce:33:5c:13:c9:3f:d5:d2:39: f0:04:0d:b9:6e:ba:8a:f3:f6:d7:53:32:30:f8:5a:7d:9f:c8: 42:27:c7:03:8f:b8:c7:d7:63:6b:db:6b:e3:56:3f:cd:ef:cd: bc:bf:61:a7:d9:bd:5d:f9:98:2d:c4:73:fe:b0:bd:f2:9a:55: 61:c2:de:2e:ae:b6:1f:d5:c8:17:b9:cc:bb:42:aa:4d:77:0f: ab:b0:88:8a:40:fd:a8:a6:49:8c:2f:d5:1a:96:9f:a6:e3:9e: c6:a9:9b:77:40:8c:c8:9b:3a:8e:c5:e9:38:b3:74:51:ca:1f: eb:07:39:ca:3c:f2:65:32:77:62:1c:81:1b:c0:9d:f1:3c:2f: 4c:0a:e0:a8:ce:f1:d8:8b:03:df:f0:bd:ff:70:12:1b:a3:95: 63:57:04:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBX29pH2l3nsHeHYPUzCpiGxgCGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjNiODUyMmYyY2MwYTQ3YjBjZjU3MjY0Mjg2NzFjNTE1 M2Q3MDZmNGExYWI3YjA5Y2E0NzI3NzFhN2JjYzgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPu0hbSfkHl1/SVou9dZ/2aU/8kSWyK0gA3K9KIoIARw94 ljpFIZ9kGUA/nwXqapRusBfjaMDOYe8msR4R6aBYn9fkJqk8ywaY+0W8cVTFyZsd 4V8vpNGiV3AHZCbHJVT8bwUVfg8d/oP42TfQ5OtR4jO0NK0eH+u3B/P0XpSG2R3+ y/BMEfVC85Pq6T0YNHd95/D3KRcFHL273aq/kHPAvfcKGV6X+UmvZUo1RfSChqU/ ceGk6Y1LvwjduMus1YtePsoWCjVtEzhZ4JbHfloGpkthWzaWImYtlNhDaBMiKj5J WDu+pU2ndGwQkTbtNCo5bfRpLaq9BPTZb1K4cfz1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQohFu+7EQ8xhR5vbHrLq112ilTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1NDFjNzRjLTViYTYtNGE0Ny04YTBhLTU1YWM4ZmViMzNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HUwDQYJKoZIhvcNAQELBQADggEBAGMxjKFg95SiesqowfEzYAfqffNQ saSVNB1KAtYD7D5w8tYakk17x4AtV72p/ciHL2scY/rcB9dcYEj0a0rT4BcZElFd VOilxf3thruf9exM951vUnGi5kg+DDh6gtpAH57sZs4zXBPJP9XSOfAEDbluuorz 9tdTMjD4Wn2fyEInxwOPuMfXY2vba+NWP83vzby/YafZvV35mC3Ec/6wvfKaVWHC 3i6uth/VyBe5zLtCqk13D6uwiIpA/aimSYwv1RqWn6bjnsapm3dAjMibOo7F6Tiz dFHKH+sHOco88mUyd2IcgRvAnfE8L0wK4KjO8diLA9/wvf9wEhujlWNXBJE= -----END CERTIFICATE-----Generated at Sat Sep 23 00:46:19 2023 by rpki-client on console-fra.rpki-client.org