$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa File: 09739967-9eaf-4466-adca-6a715e6c180f.roa (raw, json) Hash identifier: Pjx0zjOL642+k0fWPA4xvkqVfqCmpc0pLdmLPxO5XLk= Subject key identifier: BF:99:22:C2:72:F0:7C:CB:09:0F:19:A3:2B:AB:DA:05:E2:34:E0:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 219462A968DB501E63E004DCA579EB2AE97A7463 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:94:62:a9:68:db:50:1e:63:e0:04:dc:a5:79:eb:2a:e9:7a:74:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=390e4d5251531164fb01d6fd5c8405077fee8c734c8e7a2e787b7e1b8667eb61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ef:65:31:31:49:3b:e0:a6:1b:f1:ab:c2:78: 61:03:79:09:7f:30:86:98:2b:c0:95:1a:6f:ae:2c: 44:da:89:4a:05:1e:2b:2e:26:c0:19:57:77:e7:56: bb:14:f7:0a:22:c1:ea:e5:e1:e0:30:ac:77:34:b6: 6a:67:2f:5b:6d:2c:8b:f4:d5:9a:d7:25:e6:35:0f: bd:4f:a3:52:f0:1c:a4:f6:e4:f8:ff:ef:53:09:93: 1b:84:43:fc:98:e5:66:ce:e3:2e:d9:f1:de:b9:73: 90:c0:17:c1:fe:07:f7:7f:25:da:ae:59:61:12:49: cc:70:55:e1:92:56:ff:e0:3a:6b:dc:d2:76:12:a2: 78:52:3e:79:db:d7:c4:75:51:97:97:7f:22:5c:fd: 16:ab:f5:c4:23:41:a0:e0:a1:a5:61:66:05:78:ad: ee:ad:ce:eb:f2:fb:50:66:2b:7a:42:a1:f5:25:0a: fb:1f:48:54:4a:ce:21:ce:fa:a7:0d:b0:74:16:9c: ac:5e:3a:93:cd:c9:55:cc:9e:76:49:ca:52:65:01: 73:1e:93:a3:62:7a:ad:7a:9e:0a:35:38:d8:d8:64: 0d:81:1d:54:06:fa:7f:40:df:31:ac:01:22:1c:62: d7:3b:b7:93:ab:86:dc:ca:13:d3:bb:d4:16:21:c1: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:99:22:C2:72:F0:7C:CB:09:0F:19:A3:2B:AB:DA:05:E2:34:E0:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.172.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:29:fb:c8:ee:ba:ca:62:76:31:c1:d9:c3:cc:98:46:48:eb: 45:d2:91:97:a6:91:67:aa:a9:8b:62:c1:37:ee:f1:8e:a4:62: 3b:dd:a0:b4:d7:41:51:66:be:77:39:8e:af:cb:e5:fe:2a:55: 0b:81:d4:5f:6e:6f:34:da:6a:37:1e:42:00:58:df:79:e5:8d: 31:b3:e2:99:5d:c9:da:27:27:40:10:49:ef:f3:b6:c3:c7:59: d5:1a:83:38:33:89:9c:9f:9e:0a:84:61:df:26:50:54:1b:7c: cd:32:1f:76:b4:0e:0f:05:8c:60:1e:e8:17:aa:7b:73:5b:fd: e9:d9:68:2c:a1:6c:b7:44:a0:42:ff:7c:f2:d1:96:5c:c8:f9: ab:00:13:b7:d3:3d:37:91:b5:07:9e:c9:45:aa:9c:22:93:d5: 78:ac:49:7a:a7:00:e8:c7:dc:54:cc:b8:23:e0:84:92:28:6c: 6a:d6:d8:e4:64:b8:6c:a9:7a:a6:51:0d:4b:54:b5:2b:3c:57: 06:1c:a9:49:2c:59:97:05:39:ab:74:55:40:68:3c:a1:8f:35: f9:e6:d9:69:cd:c4:b3:7f:f6:a0:70:d0:bd:1a:5b:b6:92:77: bd:0f:f7:f8:2b:6b:f6:4e:68:5e:7c:ab:35:dc:c6:87:86:75: 3d:51:41:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIZRiqWjbUB5j4ATcpXnrKul6dGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTBlNGQ1MjUxNTMxMTY0ZmIwMWQ2ZmQ1Yzg0MDUwNzdm ZWU4YzczNGM4ZTdhMmU3ODdiN2UxYjg2NjdlYjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN72UxMUk74KYb8avCeGEDeQl/MIaYK8CVGm+uLETaiUoF HisuJsAZV3fnVrsU9woiwerl4eAwrHc0tmpnL1ttLIv01ZrXJeY1D71Po1LwHKT2 5Pj/71MJkxuEQ/yY5WbO4y7Z8d65c5DAF8H+B/d/JdquWWESScxwVeGSVv/gOmvc 0nYSonhSPnnb18R1UZeXfyJc/Rar9cQjQaDgoaVhZgV4re6tzuvy+1BmK3pCofUl CvsfSFRKziHO+qcNsHQWnKxeOpPNyVXMnnZJylJlAXMek6Nieq16ngo1ONjYZA2B HVQG+n9A3zGsASIcYtc7t5OrhtzKE9O71BYhwep7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv5kiwnLwfMsJDxmjK6vaBeI04AIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5NzM5OTY3LTllYWYtNDQ2Ni1hZGNhLTZhNzE1ZTZjMTgwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJM36wwDQYJKoZIhvcNAQELBQADggEBADsp+8juuspidjHB2cPMmEZI60XS kZemkWeqqYtiwTfu8Y6kYjvdoLTXQVFmvnc5jq/L5f4qVQuB1F9ubzTaajceQgBY 33nljTGz4pldydonJ0AQSe/ztsPHWdUagzgziZyfngqEYd8mUFQbfM0yH3a0Dg8F jGAe6Beqe3Nb/enZaCyhbLdEoEL/fPLRllzI+asAE7fTPTeRtQeeyUWqnCKT1Xis SXqnAOjH3FTMuCPghJIobGrW2ORkuGypeqZRDUtUtSs8VwYcqUksWZcFOat0VUBo PKGPNfnm2WnNxLN/9qBw0L0aW7aSd70P9/gra/ZOaF58qzXcxoeGdT1RQQk= -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:03 2023 by rpki-client on console-ams.rpki-client.org