$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa File: 06bef077-f186-4620-b0e8-edae475c1fe6.roa (raw, json) Hash identifier: QXp9jKJChBOzXzyBmWFIfsiLaDeo8tr276JffDBHWw0= Subject key identifier: 92:A4:D7:74:D6:FA:73:EE:CE:C0:67:98:8A:1A:70:72:E3:91:8A:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D89F0DA7CE53D6898D097216CFC546C7CA12721 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:89:f0:da:7c:e5:3d:68:98:d0:97:21:6c:fc:54:6c:7c:a1:27:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=5d7691e11fcabd4bbb1e5bdb623228a5e8b0c05009bfb5d9d888819f7c9c7149, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:5c:86:55:a0:39:ed:99:f6:71:be:15:5f: 2a:8e:a2:4e:c7:d2:83:67:a9:14:d8:28:00:55:07: a3:48:b7:f9:ef:df:91:ef:c5:5f:94:17:62:65:b1: db:1e:89:da:a4:f7:9d:8d:8b:87:52:77:0e:78:27: 76:7a:79:bb:d3:81:7f:29:53:48:53:be:7a:17:06: 79:a1:34:66:ad:e9:17:22:6f:9f:30:e3:7c:d0:52: bf:a5:21:ec:23:d7:1b:d5:64:e7:97:44:4e:ff:f3: e1:55:45:da:8c:13:fa:1c:0b:74:9e:24:cc:9e:e5: 6c:e3:39:14:a0:8a:61:b0:29:c7:b2:a6:ce:32:dc: 25:5b:59:17:7f:52:d0:1b:29:7a:9a:cf:fb:20:24: df:db:ce:58:73:09:ee:a6:6f:2c:85:ae:24:2a:1d: 34:3d:46:3f:02:46:90:65:6b:3e:0f:0c:8d:d0:30: 4d:e3:cf:ba:63:98:cf:ed:2d:37:a4:01:2c:26:f3: f5:ac:ef:11:ac:37:3f:c7:ba:92:c5:d4:ee:36:66: ec:e4:f8:19:4b:f6:0a:25:79:2e:aa:79:06:01:0d: ed:f8:dc:e7:64:5c:c6:c7:06:50:c5:9e:e3:01:d2: 7d:7b:a4:37:09:dc:5e:0e:e8:ba:33:bf:7d:a6:3f: 79:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A4:D7:74:D6:FA:73:EE:CE:C0:67:98:8A:1A:70:72:E3:91:8A:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.131.0/24 Signature Algorithm: sha256WithRSAEncryption a4:23:94:2a:84:4d:c0:d7:c6:a9:76:66:f2:d6:af:33:1b:ee: 7f:7d:fd:5c:80:4f:50:7e:f1:a6:c1:59:13:50:e5:b2:2c:60: 0c:0f:99:50:dd:8e:49:a2:62:b6:7f:4f:95:08:0d:72:ab:54: e2:a9:7d:cc:2a:3d:47:d9:06:e4:8a:5f:40:ad:60:20:0d:0b: de:86:25:b7:bf:d9:f8:cd:21:c9:fc:16:69:93:f6:20:7e:7e: 6c:06:f6:1b:72:64:1e:2d:1d:04:62:ee:48:a2:6e:80:22:19: 48:76:b5:09:ce:34:55:e0:26:76:15:9a:a7:1f:dc:37:25:5c: 57:ea:3d:eb:54:12:35:b5:b7:db:1f:c9:f6:9a:cd:74:65:70: 48:d3:02:dc:73:96:c2:01:38:ba:fa:d5:d2:14:eb:f8:b8:35: 31:dd:6e:a0:6e:db:19:e5:76:c5:ed:29:c8:ec:60:b3:2c:9c: 15:52:ea:5f:38:48:5a:4a:cf:2b:7c:b0:36:a6:de:a4:0c:32: f6:32:9f:da:d3:8b:85:c4:af:53:6e:bf:2d:53:03:97:c4:c3: d9:2d:ee:9c:1e:f3:17:ab:33:0d:e1:36:64:0b:22:3a:69:ec: 60:67:53:12:58:15:94:6f:7c:5b:64:37:7c:7a:05:fe:c7:5d: 61:b1:9e:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULYnw2nzlPWiY0JchbPxUbHyhJyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDc2OTFlMTFmY2FiZDRiYmIxZTViZGI2MjMyMjhhNWU4 YjBjMDUwMDliZmI1ZDlkODg4ODE5ZjdjOWM3MTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSf1yGVaA57Zn2cb4VXyqOok7H0oNnqRTYKABVB6NIt/nv 35HvxV+UF2Jlsdseidqk952Ni4dSdw54J3Z6ebvTgX8pU0hTvnoXBnmhNGat6Rci b58w43zQUr+lIewj1xvVZOeXRE7/8+FVRdqME/ocC3SeJMye5WzjORSgimGwKcey ps4y3CVbWRd/UtAbKXqaz/sgJN/bzlhzCe6mbyyFriQqHTQ9Rj8CRpBlaz4PDI3Q ME3jz7pjmM/tLTekASwm8/Ws7xGsNz/HupLF1O42Zuzk+BlL9goleS6qeQYBDe34 3OdkXMbHBlDFnuMB0n17pDcJ3F4O6Lozv32mP3nPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkqTXdNb6c+7OwGeYihpwcuORivUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2YmVmMDc3LWYxODYtNDYyMC1iMGU4LWVkYWU0NzVjMWZlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgAIMwDQYJKoZIhvcNAQELBQADggEBAKQjlCqETcDXxql2ZvLWrzMb7n99 /VyAT1B+8abBWRNQ5bIsYAwPmVDdjkmiYrZ/T5UIDXKrVOKpfcwqPUfZBuSKX0Ct YCANC96GJbe/2fjNIcn8FmmT9iB+fmwG9htyZB4tHQRi7kiiboAiGUh2tQnONFXg JnYVmqcf3DclXFfqPetUEjW1t9sfyfaazXRlcEjTAtxzlsIBOLr61dIU6/i4NTHd bqBu2xnldsXtKcjsYLMsnBVS6l84SFpKzyt8sDam3qQMMvYyn9rTi4XEr1Nuvy1T A5fEw9kt7pwe8xerMw3hNmQLIjpp7GBnUxJYFZRvfFtkN3x6Bf7HXWGxnls= -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:38 2023 by rpki-client on console-fra.rpki-client.org