$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa File: 0dc2871e-4870-49a7-8242-56cfe0f652d5.roa (raw, json) Hash identifier: P8lYrfJKr6Kif59E6tecSRj00BInrR6qyPPaCRBkqow= Subject key identifier: 65:B1:74:A0:68:AD:BD:F1:50:C5:A7:40:D5:06:F7:DF:88:18:EE:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 498DA81B155418B735622C743565A9CD5389304F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:8d:a8:1b:15:54:18:b7:35:62:2c:74:35:65:a9:cd:53:89:30:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b4edac692f02d215f29b24aa6e48548e2755a85c661f84e40aadec1b001f0fce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8c:32:6b:9e:01:86:a2:c1:21:ef:30:25:9c: 23:ab:41:48:d8:fd:a9:6c:38:b6:0a:af:fa:8f:f5: 01:e4:d9:56:cd:3f:e1:d3:6c:17:46:e1:37:c4:b3: 44:34:e3:6b:55:dd:5f:1a:c5:15:53:69:29:3f:1a: 3c:0d:9f:58:21:a1:1d:c5:44:e0:b6:93:64:90:05: 30:06:b6:85:dc:92:0c:e6:cf:8b:e8:86:7f:fe:e5: 66:d6:59:70:a0:57:85:27:06:79:93:71:2e:fa:2c: 67:03:83:f1:a8:17:a6:6b:63:18:6b:ca:9f:4a:37: b6:c3:d1:0e:aa:07:5d:d0:ae:ca:67:17:cc:47:bf: ec:b7:25:0f:cd:5a:14:86:e1:2c:e9:2e:d1:06:a5: b8:64:d6:28:66:9a:b9:70:7b:41:d1:55:62:6b:2d: ea:cd:f3:84:1a:1d:eb:d8:a5:10:90:e3:23:36:fe: 0a:f7:e3:4a:c8:79:9b:45:c6:70:e3:26:ce:72:7e: d0:4a:c1:98:58:3e:2d:4c:de:b7:8d:bb:fa:72:8c: e5:23:a7:dd:b1:f4:3e:2e:c7:74:a2:30:44:fd:71: f5:64:bb:2b:9b:a7:bb:db:82:cf:5f:24:d1:8f:09: 14:84:45:31:53:c1:3b:9d:2c:96:45:92:86:38:03: 86:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B1:74:A0:68:AD:BD:F1:50:C5:A7:40:D5:06:F7:DF:88:18:EE:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:3b:db:34:64:08:1a:63:cc:b7:71:1b:e8:8d:fa:a1:20:23: fa:15:ac:f0:85:12:1a:cb:e6:6d:6b:a6:6e:2f:63:f3:cf:6b: 76:de:1a:0e:7a:48:fa:65:df:cb:f3:db:04:e4:3a:47:c3:21: ea:7b:d8:2a:9d:24:3b:b6:30:3b:eb:2f:70:50:2a:61:9f:4e: 84:aa:ac:8d:db:62:ff:4c:d3:bb:c7:32:70:dd:8c:9f:6e:6e: b3:e4:69:50:03:a4:cc:ab:25:33:c9:f8:cc:86:b8:62:7e:13: 30:09:6e:5a:fc:8d:bf:86:2b:d8:62:ea:d1:86:cd:1d:c2:b2: 8f:e3:f5:d8:e3:1c:94:00:1e:eb:93:89:4e:35:ed:53:7d:96: fd:ba:6d:cd:ce:ee:32:a1:e0:0d:f3:57:35:c7:a3:d3:e0:40: 49:69:ab:43:5f:1b:c5:e8:67:12:78:76:88:3c:f9:77:89:79: ef:01:02:6e:5d:13:78:fe:41:e8:ab:4c:01:e9:74:0e:56:42: 33:47:2a:c3:e1:6b:24:c8:3e:01:05:37:40:c1:6b:59:8b:98: 85:73:ca:28:2c:39:e9:2a:23:49:a4:ad:79:21:ec:37:a5:06: 5a:2d:ed:f6:7f:84:4c:28:59:4d:99:03:65:27:b6:f2:74:73: 71:0d:39:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSY2oGxVUGLc1Yix0NWWpzVOJME8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGVkYWM2OTJmMDJkMjE1ZjI5YjI0YWE2ZTQ4NTQ4ZTI3 NTVhODVjNjYxZjg0ZTQwYWFkZWMxYjAwMWYwZmNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnjDJrngGGosEh7zAlnCOrQUjY/alsOLYKr/qP9QHk2VbN P+HTbBdG4TfEs0Q042tV3V8axRVTaSk/GjwNn1ghoR3FROC2k2SQBTAGtoXckgzm z4vohn/+5WbWWXCgV4UnBnmTcS76LGcDg/GoF6ZrYxhryp9KN7bD0Q6qB13Qrspn F8xHv+y3JQ/NWhSG4SzpLtEGpbhk1ihmmrlwe0HRVWJrLerN84QaHevYpRCQ4yM2 /gr340rIeZtFxnDjJs5yftBKwZhYPi1M3reNu/pyjOUjp92x9D4ux3SiMET9cfVk uyubp7vbgs9fJNGPCRSERTFTwTudLJZFkoY4A4aFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZbF0oGitvfFQxadA1Qb334gY7hIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkYzI4NzFlLTQ4NzAtNDlhNy04MjQyLTU2Y2ZlMGY2NTJkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoqDANBgkqhkiG9w0BAQsFAAOCAQEA1jvbNGQIGmPMt3Eb6I36oSAj+hWs 8IUSGsvmbWumbi9j889rdt4aDnpI+mXfy/PbBOQ6R8Mh6nvYKp0kO7YwO+svcFAq YZ9OhKqsjdti/0zTu8cycN2Mn25us+RpUAOkzKslM8n4zIa4Yn4TMAluWvyNv4Yr 2GLq0YbNHcKyj+P12OMclAAe65OJTjXtU32W/bptzc7uMqHgDfNXNcej0+BASWmr Q18bxehnEnh2iDz5d4l57wECbl0TeP5B6KtMAel0DlZCM0cqw+FrJMg+AQU3QMFr WYuYhXPKKCw56SojSaSteSHsN6UGWi3t9n+ETChZTZkDZSe28nRzcQ05Qg== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:03 2023 by rpki-client on console-ams.rpki-client.org