$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: kPyl12u908tF9v1vJWJnQDFIRQJ6dBlfSFlVUv0jt4c= Subject key identifier: 1E:16:9F:5F:26:E5:81:D8:EE:88:7A:03:49:C4:C5:E8:7C:D4:BC:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 274148A2710D2C0597ABA93E090FD2E7E7063C7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 05:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:41:48:a2:71:0d:2c:05:97:ab:a9:3e:09:0f:d2:e7:e7:06:3c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=ea7d3587296f75aedff22be743bc5598f6e26204fb5ef291e4c7fa25dc5fa39e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7f:8c:06:b3:d0:37:f7:17:63:2c:b3:9e:88: 5d:8e:7c:cf:a8:b0:69:98:27:3e:3f:53:ad:c8:7b: 61:93:ff:5a:84:4e:d7:64:7d:6e:48:f5:6d:74:bc: 89:05:76:59:93:06:95:c0:2b:65:03:0b:ef:a5:0a: 18:9d:95:2d:60:6a:73:07:2d:52:8a:e5:46:90:7f: 16:36:bf:20:50:d8:25:57:26:a8:8f:cb:22:3d:2a: d0:16:04:fe:f5:8e:61:21:b9:b4:8c:f9:69:e2:9b: 7f:d0:84:63:4c:22:c7:88:a9:0c:35:68:aa:e9:9a: 2f:b3:fc:a4:f7:74:35:9d:6a:e4:31:9e:a0:26:87: 78:57:81:f2:5d:c2:83:33:ec:c8:25:c4:4a:40:02: 8d:34:9f:88:02:a2:38:be:2c:ba:ae:88:36:15:05: f6:f1:a3:a2:17:a1:f9:7d:97:8c:b8:cc:11:26:ef: 32:50:83:ec:11:d3:28:85:29:71:46:12:4d:1d:2f: 1c:45:51:5b:90:ad:6d:c7:69:07:e4:3c:6a:a7:8c: 37:b1:08:f5:cc:72:e0:8b:06:5a:7e:75:6a:f5:d7: ba:40:0d:3f:ec:11:98:de:d7:38:f6:33:4a:17:c4: 84:7a:09:10:78:f8:22:02:fb:6d:af:d6:64:f9:0b: 13:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:16:9F:5F:26:E5:81:D8:EE:88:7A:03:49:C4:C5:E8:7C:D4:BC:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:20:c7:1f:b9:6f:5d:bc:25:89:36:7c:3a:6e:25:c9:d3:b9: a7:93:31:5e:cd:c6:2b:56:ac:9d:aa:92:d3:6a:33:98:f4:8a: d1:15:9a:27:a4:55:88:23:92:28:23:29:ba:5e:97:3e:b7:6b: 7a:4a:7c:ae:fb:fa:23:1d:35:4e:8c:95:78:93:f1:6c:3d:d9: dd:36:f8:76:81:0c:4c:fe:7e:35:fc:1b:0b:de:26:b5:9d:a2: 15:ed:7b:4a:65:ab:e9:7a:c1:51:cc:95:64:86:ba:e6:4c:b7: 73:5c:43:29:46:ab:77:8c:12:f6:ff:26:e1:4f:65:e8:da:a7: 24:b7:92:ab:46:0d:85:fa:ad:01:6d:c7:03:1d:91:7e:ef:4b: 33:6e:7f:9e:76:e3:bb:a5:0a:08:10:a9:af:83:28:4d:20:bb: 68:7e:eb:1b:b0:56:43:ce:76:c9:ca:4a:11:15:57:63:1a:2c: fb:a9:89:ea:44:c5:a8:d7:43:6d:c6:9c:80:08:45:0d:62:8c: aa:6b:7b:58:55:77:17:cb:32:ca:32:ae:3f:9b:24:8c:8e:0f: ef:59:07:f9:b7:f7:38:a6:23:c5:c6:2d:1b:3b:01:99:5a:78: c5:68:0a:6e:6d:d7:89:d3:bf:aa:b0:b3:12:94:18:09:15:da: a7:f0:36:8c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ0FIonENLAWXq6k+CQ/S5+cGPH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTdkMzU4NzI5NmY3NWFlZGZmMjJiZTc0M2JjNTU5OGY2 ZTI2MjA0ZmI1ZWYyOTFlNGM3ZmEyNWRjNWZhMzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuf4wGs9A39xdjLLOeiF2OfM+osGmYJz4/U63Ie2GT/1qE TtdkfW5I9W10vIkFdlmTBpXAK2UDC++lChidlS1ganMHLVKK5UaQfxY2vyBQ2CVX JqiPyyI9KtAWBP71jmEhubSM+Wnim3/QhGNMIseIqQw1aKrpmi+z/KT3dDWdauQx nqAmh3hXgfJdwoMz7MglxEpAAo00n4gCoji+LLquiDYVBfbxo6IXofl9l4y4zBEm 7zJQg+wR0yiFKXFGEk0dLxxFUVuQrW3HaQfkPGqnjDexCPXMcuCLBlp+dWr117pA DT/sEZje1zj2M0oXxIR6CRB4+CIC+22v1mT5CxN9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHhafXyblgdjuiHoDScTF6HzUvEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEAECDHH7lvXbwliTZ8Om4lydO5p5Mx Xs3GK1asnaqS02ozmPSK0RWaJ6RViCOSKCMpul6XPrdrekp8rvv6Ix01ToyVeJPx bD3Z3Tb4doEMTP5+NfwbC94mtZ2iFe17SmWr6XrBUcyVZIa65ky3c1xDKUard4wS 9v8m4U9l6NqnJLeSq0YNhfqtAW3HAx2Rfu9LM25/nnbju6UKCBCpr4MoTSC7aH7r G7BWQ852ycpKERVXYxos+6mJ6kTFqNdDbcacgAhFDWKMqmt7WFV3F8syyjKuP5sk jI4P71kH+bf3OKYjxcYtGzsBmVp4xWgKbm3XidO/qrCzEpQYCRXap/A2jA== -----END CERTIFICATE-----Generated at Mon Aug 28 17:17:43 2023 by rpki-client on console-ams.rpki-client.org