$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/092487eb-f773-489e-ac0b-05969f724d79.roa File: 092487eb-f773-489e-ac0b-05969f724d79.roa (raw, json) Hash identifier: rNHqn3Xz3hHmiaFHYGW/gC2bv0cGMNQqgBZr6tTnJuw= Subject key identifier: DA:5B:22:CB:78:C6:47:BB:6D:E6:87:DB:6F:16:5E:ED:9D:13:46:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1843154C334C558B99986AC1492E208FB9352180 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/092487eb-f773-489e-ac0b-05969f724d79.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 108.166.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:43:15:4c:33:4c:55:8b:99:98:6a:c1:49:2e:20:8f:b9:35:21:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1917783250da6358923f1806e22755021df6495253886831749b97b7c324786e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:b6:e1:06:9e:ab:40:d4:7d:3e:9a:13:32: 20:8f:49:cf:8f:d3:d2:47:6e:d9:ca:b3:3b:bf:cb: 76:65:11:29:64:20:a6:1d:07:ba:43:1d:f7:2e:6f: 1f:b1:1d:28:15:b8:c5:49:6c:60:47:76:d9:92:9b: 01:cb:7b:e4:a4:8c:1a:32:46:dc:46:8e:47:b4:1c: 73:dd:23:f5:20:e2:12:0d:9b:ab:86:55:61:f2:3f: 6c:f0:62:f2:1e:40:f9:d3:23:d2:b7:3b:3a:fb:a6: 91:d9:5a:f9:51:4a:45:ff:c2:d5:35:d5:95:e6:1a: 53:38:26:87:67:98:7a:64:5d:a2:58:b0:02:06:de: 65:7b:f0:14:ac:9c:10:5c:b3:53:9c:d6:eb:1d:c5: ce:5c:5e:0a:7e:ac:24:a6:2a:21:50:b1:34:3e:99: 66:65:a6:03:36:58:10:0a:d8:ba:fa:9c:a8:d4:87: 61:a0:b9:58:9d:c7:e5:b8:26:e0:32:80:de:00:69: 2d:71:70:c6:c1:45:59:c3:0d:4f:cf:db:97:e9:f0: 25:d5:54:ed:e8:6e:e8:4f:06:bb:78:a9:32:ba:5b: 74:21:52:c3:ff:10:e5:e8:36:71:de:32:65:84:2f: b9:11:cd:2c:1a:a6:06:6f:93:ea:08:31:8a:31:fa: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5B:22:CB:78:C6:47:BB:6D:E6:87:DB:6F:16:5E:ED:9D:13:46:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/092487eb-f773-489e-ac0b-05969f724d79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.224.0/21 Signature Algorithm: sha256WithRSAEncryption 01:cd:c0:37:e6:ac:90:e4:2a:9a:7f:52:e6:76:a3:78:bc:b0: 0e:2d:42:8a:d3:04:87:d9:dd:a2:c8:a7:01:db:41:34:99:95: 75:ea:72:36:f3:7c:82:13:aa:36:82:9a:ab:65:47:70:6e:45: 77:36:af:67:3c:c7:fe:c4:87:93:77:57:2e:ee:cd:5a:f6:25: 4a:ba:8c:0c:0a:7f:08:df:b1:68:28:70:25:a3:64:0f:1f:6a: e8:2e:dd:30:4c:f5:73:7c:b3:57:f3:51:83:af:c8:73:e6:2e: 2b:a4:b6:18:2c:d7:84:51:86:b9:1f:ca:69:6b:a9:ec:29:46: 60:21:08:84:4a:5c:7c:fd:4d:19:2d:91:76:6c:42:f7:a7:e8: 8b:d2:08:01:4e:4c:07:d9:ab:25:29:bf:34:78:ac:b1:ec:8b: 35:06:01:6f:d1:30:a4:2b:c4:da:0d:e2:7d:e8:a5:14:a2:45: 95:62:e9:16:dc:47:60:bf:8f:33:d0:5c:8c:29:c8:d7:6f:2a: 8a:0f:dd:3b:fc:b0:7a:d3:80:5c:4b:66:70:11:08:bc:12:07: c8:75:a6:3f:12:a4:21:23:19:dd:7e:93:98:49:a9:ed:b2:f2: 82:dd:87:c1:02:cd:93:9e:52:3e:84:e1:b0:40:ed:ed:5c:7d: 2f:ed:72:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGEMVTDNMVYuZmGrBSS4gj7k1IYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTE3NzgzMjUwZGE2MzU4OTIzZjE4MDZlMjI3NTUwMjFk ZjY0OTUyNTM4ODY4MzE3NDliOTdiN2MzMjQ3ODZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzGbbhBp6rQNR9PpoTMiCPSc+P09JHbtnKszu/y3ZlESlk IKYdB7pDHfcubx+xHSgVuMVJbGBHdtmSmwHLe+SkjBoyRtxGjke0HHPdI/Ug4hIN m6uGVWHyP2zwYvIeQPnTI9K3Ozr7ppHZWvlRSkX/wtU11ZXmGlM4JodnmHpkXaJY sAIG3mV78BSsnBBcs1Oc1usdxc5cXgp+rCSmKiFQsTQ+mWZlpgM2WBAK2Lr6nKjU h2GguVidx+W4JuAygN4AaS1xcMbBRVnDDU/P25fp8CXVVO3obuhPBrt4qTK6W3Qh UsP/EOXoNnHeMmWEL7kRzSwapgZvk+oIMYox+o09AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2lsiy3jGR7tt5ofbbxZe7Z0TRqgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5MjQ4N2ViLWY3NzMtNDg5ZS1hYzBiLTA1OTY5ZjcyNGQ3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANspuAwDQYJKoZIhvcNAQELBQADggEBAAHNwDfmrJDkKpp/UuZ2o3i8sA4t QorTBIfZ3aLIpwHbQTSZlXXqcjbzfIITqjaCmqtlR3BuRXc2r2c8x/7Eh5N3Vy7u zVr2JUq6jAwKfwjfsWgocCWjZA8faugu3TBM9XN8s1fzUYOvyHPmLiukthgs14RR hrkfymlrqewpRmAhCIRKXHz9TRktkXZsQven6IvSCAFOTAfZqyUpvzR4rLHsizUG AW/RMKQrxNoN4n3opRSiRZVi6RbcR2C/jzPQXIwpyNdvKooP3Tv8sHrTgFxLZnAR CLwSB8h1pj8SpCEjGd1+k5hJqe2y8oLdh8ECzZOeUj6E4bBA7e1cfS/tcjg= -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:44 2023 by rpki-client on console-fra.rpki-client.org