$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa File: 0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa (raw, json) Hash identifier: BPWZdTJiUC1z+D9YPnYCMHqI8JSTkiV2hDqMEkJtSnQ= Subject key identifier: E9:C8:7B:84:11:33:8B:66:F6:73:54:46:04:99:D3:B1:62:44:DF:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5411136F73160668C097EEDF5895BCB31E02E0AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:11:13:6f:73:16:06:68:c0:97:ee:df:58:95:bc:b3:1e:02:e0:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2c7acbe779d3ef0a32383a6387d656838a53fb60fe041a964a32085e43a4a03b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ed:7b:95:48:06:88:ba:b0:eb:05:52:33:24: d8:0c:d6:04:5b:1e:e6:22:be:65:05:2a:82:a7:86: 66:52:03:44:30:bc:76:6b:75:47:8c:78:7e:a5:66: a2:e0:1e:f8:44:de:21:85:a0:a7:a2:42:23:79:6c: b6:d6:03:7d:f8:1a:48:48:a3:ea:d4:96:33:48:5b: 1f:8e:a9:9c:55:c0:24:68:53:96:3f:5c:42:7f:13: 35:8e:c1:88:cc:9d:16:13:01:cb:57:a2:98:f9:6e: d8:fb:28:9f:3e:ad:25:6d:2a:05:0a:19:02:a6:bb: 72:02:67:13:41:05:af:fe:bd:62:72:b5:f2:59:84: 18:b0:b2:0d:13:62:d7:04:27:9f:e2:8e:e5:bb:7f: 86:58:6f:da:d8:b6:3b:13:78:f5:c2:eb:b2:03:26: 65:69:e9:1f:9a:fa:29:df:05:cf:b7:ff:df:44:2a: 1c:d3:d0:2e:5e:43:17:69:b8:a6:36:a4:8d:21:72: a5:fe:53:04:cd:35:3c:c0:1b:b7:0b:a0:24:f3:38: 09:a0:9c:d6:ac:e4:f3:b1:3c:17:11:30:cc:7c:bc: 68:55:11:01:22:22:ee:ed:cb:50:19:6a:a6:4c:ca: d7:5f:52:38:59:cc:b9:cb:a1:ec:3e:0c:d6:69:60: f0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C8:7B:84:11:33:8B:66:F6:73:54:46:04:99:D3:B1:62:44:DF:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption cf:0b:e5:41:cd:d4:72:a6:b3:b1:76:bc:c9:89:a7:3f:0f:c9: 53:17:17:9d:22:f1:18:e4:32:62:e4:96:59:51:d1:2c:8c:4c: 97:93:fa:36:61:72:1a:6e:85:6e:48:cf:12:a8:9f:e1:31:28: f1:00:8f:e0:33:7b:ce:09:19:17:aa:95:b2:f2:7e:be:af:63: e8:81:ec:9d:69:81:90:ec:09:5c:50:25:ee:fb:30:47:9e:a5: d0:e7:8d:cb:81:cc:82:c3:1c:10:df:9d:de:1c:c0:df:ce:83: 96:c5:ca:8d:94:22:74:68:c2:3c:d4:43:aa:31:94:a2:26:7a: be:9a:ae:8d:16:c7:73:a2:dc:5a:d3:ca:31:a0:42:51:79:3d: 66:4a:42:fb:8e:4d:19:c3:ad:7d:6c:cf:9f:b5:f5:ed:fb:34: f9:d2:ca:38:33:da:14:b3:ff:78:23:b6:7c:09:e9:3a:98:2c: 8b:65:25:1f:26:c3:d2:a1:2d:f3:52:86:0b:e3:59:f1:55:5e: 46:9c:7b:e9:67:b4:b2:5e:1b:35:c4:4d:79:a9:93:48:36:44: e8:e9:f2:a5:25:cc:6c:19:93:27:6a:d5:77:18:44:e4:08:e3: bb:b4:b4:ba:e0:94:02:7a:84:21:a1:d3:fb:92:cb:8b:1c:81: cd:65:7b:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVBETb3MWBmjAl+7fWJW8sx4C4KwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzdhY2JlNzc5ZDNlZjBhMzIzODNhNjM4N2Q2NTY4Mzhh NTNmYjYwZmUwNDFhOTY0YTMyMDg1ZTQzYTRhMDNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr7XuVSAaIurDrBVIzJNgM1gRbHuYivmUFKoKnhmZSA0Qw vHZrdUeMeH6lZqLgHvhE3iGFoKeiQiN5bLbWA334GkhIo+rUljNIWx+OqZxVwCRo U5Y/XEJ/EzWOwYjMnRYTActXopj5btj7KJ8+rSVtKgUKGQKmu3ICZxNBBa/+vWJy tfJZhBiwsg0TYtcEJ5/ijuW7f4ZYb9rYtjsTePXC67IDJmVp6R+a+infBc+3/99E KhzT0C5eQxdpuKY2pI0hcqX+UwTNNTzAG7cLoCTzOAmgnNas5POxPBcRMMx8vGhV EQEiIu7ty1AZaqZMytdfUjhZzLnLoew+DNZpYPCxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6ch7hBEzi2b2c1RGBJnTsWJE3/4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMGNhMDkxLWIzYjUtNGUwYS05N2RjLTUyMGU1OGEyM2U1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjVwQwDQYJKoZIhvcNAQELBQADggEBAM8L5UHN1HKms7F2vMmJpz8PyVMX F50i8RjkMmLklllR0SyMTJeT+jZhchpuhW5IzxKon+ExKPEAj+Aze84JGReqlbLy fr6vY+iB7J1pgZDsCVxQJe77MEeepdDnjcuBzILDHBDfnd4cwN/Og5bFyo2UInRo wjzUQ6oxlKImer6aro0Wx3Oi3FrTyjGgQlF5PWZKQvuOTRnDrX1sz5+19e37NPnS yjgz2hSz/3gjtnwJ6TqYLItlJR8mw9KhLfNShgvjWfFVXkace+lntLJeGzXETXmp k0g2ROjp8qUlzGwZkydq1XcYROQI47u0tLrglAJ6hCGh0/uSy4scgc1le5c= -----END CERTIFICATE-----Generated at Fri Sep 22 22:26:58 2023 by rpki-client on console-fra.rpki-client.org