$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/090e2347-c6c8-448a-8e62-30b37f4ff1b0.roa File: 090e2347-c6c8-448a-8e62-30b37f4ff1b0.roa (raw, json) Hash identifier: a9oLVYKw6CgWN7d6vYirKszJne/fP2s38EGdjVmQKK4= Subject key identifier: BA:EB:53:65:C7:A5:AF:F4:62:68:81:98:8C:71:73:46:ED:CD:B3:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B16C367983DC94745A899AC2FD8B1A6FF9717FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/090e2347-c6c8-448a-8e62-30b37f4ff1b0.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 44.224.0.0/11 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 09:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:16:c3:67:98:3d:c9:47:45:a8:99:ac:2f:d8:b1:a6:ff:97:17:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=b4c9ba3ece11c253977e70eeca9537ab38819014c02b11514e05e15f9f714bf7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c6:da:bf:47:18:e6:55:9a:07:09:a8:42:c6: 44:ab:01:23:3c:85:83:8f:b6:cd:45:2d:1d:3f:f5: 0d:89:77:1c:c5:2b:34:f3:48:c3:4a:b8:d7:d7:1a: f6:b1:ac:a9:fa:c6:d4:47:c7:34:3f:b1:e3:bb:a0: 65:86:3a:4b:f2:86:60:a4:ae:71:89:7f:6d:11:c9: ed:70:56:46:df:a3:4d:a2:96:cd:30:4a:3a:6a:49: 4d:1c:94:c8:66:5c:85:d5:7a:a1:56:88:9e:9f:92: 2a:03:43:c1:38:3a:2e:32:d5:46:ba:3f:32:01:2b: 33:4d:d9:4b:70:92:d0:fe:d4:b4:f0:0f:55:d6:34: bd:f0:4f:6c:00:71:72:4d:5e:cc:d5:2b:78:49:be: 72:6c:8b:d8:49:ac:78:26:bc:51:c2:e0:99:2d:c4: da:1b:e5:ec:19:72:d0:3a:62:b3:5d:6f:db:5e:94: af:bc:26:01:81:5c:71:cf:35:66:96:c8:3b:e0:6f: 7e:02:9e:d7:73:2c:51:91:78:d4:08:71:d2:19:d3: 97:99:c7:64:b4:a7:bd:2d:4c:d1:95:40:46:f7:22: c6:1d:74:b2:0f:c6:da:75:39:fa:ff:1f:82:eb:5d: 48:06:d5:e1:0e:2a:21:5a:8d:2a:58:25:0d:86:44: 06:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EB:53:65:C7:A5:AF:F4:62:68:81:98:8C:71:73:46:ED:CD:B3:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/090e2347-c6c8-448a-8e62-30b37f4ff1b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.224.0.0/11 Signature Algorithm: sha256WithRSAEncryption 58:ae:ac:a4:c5:ae:4e:5d:5f:cd:e8:36:81:d1:7b:5a:1d:4f: f9:3e:21:f6:42:f4:9c:d6:41:b8:8b:55:09:98:82:bb:40:67: af:87:ed:29:38:63:82:ed:cd:74:fe:5d:90:53:66:8f:c3:de: c5:51:31:49:fa:3a:9b:20:2e:27:6f:f3:2b:70:30:91:b4:e8: d7:e0:e5:83:a2:67:1f:10:e8:f5:22:cf:b2:36:ae:5c:59:53: 7a:8c:1f:12:13:70:35:b8:4e:9d:6e:df:8a:a7:bd:3b:91:45: 60:d0:dc:e7:7a:bb:34:45:53:e7:32:fe:48:9e:d1:d7:bc:64: 43:5e:f5:7d:71:46:02:fe:38:a7:0e:52:7d:c7:13:5e:b0:ba: c4:bc:20:23:29:7a:f0:c7:eb:1d:ef:ec:f0:db:3c:6d:45:c3: 87:eb:a0:60:a8:9f:da:09:63:9d:a0:64:0d:92:67:ad:86:68: 78:a6:1b:e4:ed:8e:0b:e8:7e:89:68:12:f4:4c:17:d0:ef:3d: 0a:a5:d2:24:e5:cc:b1:51:b4:2c:84:50:7a:68:57:7a:f3:b3: f7:d3:90:16:24:f7:40:37:d2:ea:21:da:4c:19:56:f3:0e:a3: e2:ac:64:36:4e:09:70:4a:7b:74:5d:1e:e6:65:75:08:fd:91: 35:2b:ad:ce -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKxbDZ5g9yUdFqJmsL9ixpv+XF/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGM5YmEzZWNlMTFjMjUzOTc3ZTcwZWVjYTk1MzdhYjM4 ODE5MDE0YzAyYjExNTE0ZTA1ZTE1ZjlmNzE0YmY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMxtq/RxjmVZoHCahCxkSrASM8hYOPts1FLR0/9Q2JdxzF KzTzSMNKuNfXGvaxrKn6xtRHxzQ/seO7oGWGOkvyhmCkrnGJf20Rye1wVkbfo02i ls0wSjpqSU0clMhmXIXVeqFWiJ6fkioDQ8E4Oi4y1Ua6PzIBKzNN2UtwktD+1LTw D1XWNL3wT2wAcXJNXszVK3hJvnJsi9hJrHgmvFHC4JktxNob5ewZctA6YrNdb9te lK+8JgGBXHHPNWaWyDvgb34CntdzLFGReNQIcdIZ05eZx2S0p70tTNGVQEb3IsYd dLIPxtp1Ofr/H4LrXUgG1eEOKiFajSpYJQ2GRAaDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuutTZcelr/RiaIGYjHFzRu3Ns78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5MGUyMzQ3LWM2YzgtNDQ4YS04ZTYyLTMwYjM3ZjRmZjFiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUs4DANBgkqhkiG9w0BAQsFAAOCAQEAWK6spMWuTl1fzeg2gdF7Wh1P+T4h 9kL0nNZBuItVCZiCu0Bnr4ftKThjgu3NdP5dkFNmj8PexVExSfo6myAuJ2/zK3Aw kbTo1+Dlg6JnHxDo9SLPsjauXFlTeowfEhNwNbhOnW7fiqe9O5FFYNDc53q7NEVT 5zL+SJ7R17xkQ171fXFGAv44pw5SfccTXrC6xLwgIyl68MfrHe/s8Ns8bUXDh+ug YKif2gljnaBkDZJnrYZoeKYb5O2OC+h+iWgS9EwX0O89CqXSJOXMsVG0LIRQemhX evOz99OQFiT3QDfS6iHaTBlW8w6j4qxkNk4JcEp7dF0e5mV1CP2RNSutzg== -----END CERTIFICATE-----Generated at Mon Aug 28 21:15:08 2023 by rpki-client on console-ams.rpki-client.org