$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d88e44-7886-4bc4-8a60-059ab296355e.roa File: 05d88e44-7886-4bc4-8a60-059ab296355e.roa (raw, json) Hash identifier: lsPRAyKMak9KDEhpjSGMhvHhwYezVmK5irmQ2yc1DY8= Subject key identifier: 38:AC:35:78:18:90:E6:94:6F:FD:0C:8E:3F:1E:76:14:26:4A:CB:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60F0608E36A71170F79FE571A27D474CA977D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d88e44-7886-4bc4-8a60-059ab296355e.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f0:60:8e:36:a7:11:70:f7:9f:e5:71:a2:7d:47:4c:a9:77:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=64b3eae550a377083b1c74e5d068274a1defc26f91807a095ce1e8b9f7464f2d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5d:b7:9e:b7:d4:8b:e9:3b:21:fe:5e:71:c6: 21:d8:31:17:c1:58:0f:5d:ee:56:d4:7e:c1:cc:83: d8:14:42:25:98:14:68:05:11:3c:6f:36:dc:63:90: 45:41:13:d2:63:43:67:7c:c4:12:be:35:6f:23:38: e6:90:11:9f:9d:26:71:3c:32:0c:63:9e:e8:cc:94: ff:63:6c:83:a4:e3:a1:45:94:ba:10:0f:be:ac:d9: 0e:ad:b9:26:1d:b3:57:aa:78:01:db:7f:2c:3b:98: 2b:ff:4e:fd:9a:46:68:5b:57:f1:5d:27:64:de:a4: 70:20:e8:e6:70:50:ae:59:8d:ff:95:e8:ee:f2:99: 35:6e:1d:6f:2c:e7:ed:09:99:e3:17:c9:c5:03:87: c7:77:df:d2:8d:d7:d6:94:63:ea:aa:c5:4d:29:26: 9f:c8:c2:ed:b9:87:bc:2b:99:4e:1b:a2:5c:bf:2d: 1c:1e:0b:43:47:fe:14:28:c3:4a:69:48:ec:d8:29: b6:50:9e:99:0f:bd:9b:84:9a:73:db:30:53:09:ab: ac:0b:62:3a:28:f1:36:0a:17:9d:95:30:2a:d0:2e: 9b:0e:63:72:e1:cc:29:ec:ef:a3:a2:53:b5:3d:91: 12:bf:0c:21:d5:9f:90:67:ba:ff:05:15:21:8e:70: ab:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AC:35:78:18:90:E6:94:6F:FD:0C:8E:3F:1E:76:14:26:4A:CB:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d88e44-7886-4bc4-8a60-059ab296355e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.152.0/22 Signature Algorithm: sha256WithRSAEncryption 17:59:e9:6c:d7:b1:89:1a:6a:60:4e:58:d4:f7:41:cc:c3:2c: 0b:8e:7c:3a:66:33:f6:6a:68:d2:07:d0:31:34:b8:1b:5c:92: 6f:55:0d:66:88:28:66:3e:b4:49:5b:87:68:ce:e3:d9:40:d6: 1e:3c:cf:c4:0a:ac:d7:dd:75:0b:bf:94:21:ce:65:79:fd:2d: 6d:45:14:08:21:94:14:eb:bd:3a:f0:b3:d0:25:6b:5e:d3:95: 0d:76:c4:12:04:c8:87:f2:75:72:50:8a:eb:15:36:92:96:cd: 5b:3e:da:74:ab:31:ca:fb:2b:4d:38:9a:37:82:af:d7:b6:70: bc:94:3f:96:9e:a9:40:58:e0:39:c6:76:3a:d5:62:f3:86:e8: dd:b4:e1:19:f2:de:04:6b:33:4d:7f:50:a1:f4:b3:75:10:d8: 9e:a3:d1:83:20:39:b9:1e:8b:a7:67:c9:4b:95:6b:58:67:1a: 07:83:0a:f8:6e:1d:cd:89:a5:c7:6f:74:2e:ad:d3:15:c6:af: 85:62:0d:46:23:e6:ce:91:f8:9a:64:96:f8:1a:34:5a:a0:eb: df:c5:80:b0:2a:b6:69:67:d2:5a:c5:3b:34:7f:6a:0d:f8:0e: 2a:11:26:72:a8:b9:57:11:b8:13:d1:5e:f9:a9:6e:12:24:64: 49:27:2c:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITYPBgjjanEXD3n+Vxon1HTKl30TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yMzA5MjIwMDAwMDBaFw0yMzEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQDY0YjNlYWU1NTBhMzc3MDgzYjFjNzRlNWQwNjgyNzRhMWRl ZmMyNmY5MTgwN2EwOTVjZTFlOGI5Zjc0NjRmMmQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKZdt5631IvpOyH+XnHGIdgxF8FYD13uVtR+wcyD2BRCJZgU aAURPG823GOQRUET0mNDZ3zEEr41byM45pARn50mcTwyDGOe6MyU/2Nsg6TjoUWU uhAPvqzZDq25Jh2zV6p4Adt/LDuYK/9O/ZpGaFtX8V0nZN6kcCDo5nBQrlmN/5Xo 7vKZNW4dbyzn7QmZ4xfJxQOHx3ff0o3X1pRj6qrFTSkmn8jC7bmHvCuZThuiXL8t HB4LQ0f+FCjDSmlI7NgptlCemQ+9m4Sac9swUwmrrAtiOijxNgoXnZUwKtAumw5j cuHMKezvo6JTtT2REr8MIdWfkGe6/wUVIY5wq28CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQ4rDV4GJDmlG/9DI4/HnYUJkrLKTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMDVkODhlNDQtNzg4Ni00YmM0LThhNjAtMDU5YWIyOTYzNTVlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmNSmDANBgkqhkiG9w0BAQsFAAOCAQEAF1npbNexiRpqYE5Y1PdBzMMsC458 OmYz9mpo0gfQMTS4G1ySb1UNZogoZj60SVuHaM7j2UDWHjzPxAqs1911C7+UIc5l ef0tbUUUCCGUFOu9OvCz0CVrXtOVDXbEEgTIh/J1clCK6xU2kpbNWz7adKsxyvsr TTiaN4Kv17ZwvJQ/lp6pQFjgOcZ2OtVi84bo3bThGfLeBGszTX9QofSzdRDYnqPR gyA5uR6Lp2fJS5VrWGcaB4MK+G4dzYmlx290Lq3TFcavhWINRiPmzpH4mmSW+Bo0 WqDr38WAsCq2aWfSWsU7NH9qDfgOKhEmcqi5VxG4E9Fe+aluEiRkSScssA== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:03 2023 by rpki-client on console-ams.rpki-client.org