$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa File: 0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa (raw, json) Hash identifier: RcKC+sYnLxtIGXzFv+kt6s7yu9xjnCY+dnrb4RryIAM= Subject key identifier: 99:17:4D:A0:60:BB:57:A0:47:8D:79:D6:B2:D0:88:9F:20:B4:87:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15C6FF6351904627AD309B58B28508FD0C1734D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c6:ff:63:51:90:46:27:ad:30:9b:58:b2:85:08:fd:0c:17:34:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=dcf05429098f2c2b545813360dcaa5103efd59f228859c45374d5382ba4fcacf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:48:88:1b:43:34:c4:26:b5:c2:7c:0a:42: 7a:b0:f4:05:8e:1b:b7:d5:33:be:10:3f:7b:da:0c: fc:d6:87:a8:73:e6:82:59:9f:4e:c9:9b:61:7e:f3: eb:86:a8:fa:12:27:c0:e6:67:4c:e1:5b:2a:14:00: 70:db:f9:ab:7f:a4:c0:ca:f1:97:39:cc:01:58:36: 67:79:d6:d0:33:f6:4f:68:18:cc:c4:ae:a4:47:43: 78:97:97:2a:85:cd:1f:51:b7:aa:08:3e:73:21:91: 38:58:85:fc:76:4a:ae:19:f6:98:ce:35:10:c8:cd: a5:85:fd:6d:05:2e:81:c3:57:bf:09:74:51:20:9a: 47:3b:80:75:0e:7b:99:a6:ff:6f:69:4a:37:6a:bc: 9a:4c:e9:68:a2:a6:7c:4b:af:80:e5:8d:30:da:a9: f2:e6:53:38:0e:23:92:83:5d:a0:08:cb:5c:40:88: 8e:ae:8c:84:19:a0:b5:a6:87:6f:2a:e7:04:70:7d: f0:d2:f0:da:39:78:6a:65:e6:51:b2:e6:ba:3e:f8: 6a:c3:1c:6a:63:10:c3:72:0d:27:19:19:cd:85:e1: 6f:b6:1e:a4:67:06:4d:c3:9e:28:d5:11:d7:80:30: 0f:7e:76:0e:91:0d:49:ac:e6:8d:e6:49:b4:a6:6d: bc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:17:4D:A0:60:BB:57:A0:47:8D:79:D6:B2:D0:88:9F:20:B4:87:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption 58:89:e8:63:d3:3a:9f:29:7d:c4:3c:46:f4:b7:35:cb:76:84: c2:a9:41:fc:d6:52:ba:65:27:b2:32:b8:21:7c:40:48:86:bc: c7:42:35:8b:10:f4:2b:22:3a:9b:60:ea:ef:3e:b4:db:1b:d4: dc:be:53:15:a7:6f:82:06:8f:01:16:5a:f3:ff:24:a3:d8:04: 4f:3c:c4:61:1d:fb:63:92:de:cf:56:56:0c:d0:f7:60:bb:df: c9:2f:d1:46:e5:b3:5a:15:ea:43:43:25:10:43:29:b3:b3:39: 04:2d:6e:89:53:f1:0c:56:8c:6a:20:9f:ef:7f:47:11:51:1f: e8:3c:72:a6:99:42:55:38:5c:65:9f:74:e6:d1:10:cd:07:16: 1c:b1:37:9c:08:a0:cb:ef:9c:37:f7:36:39:a5:80:32:68:fd: 43:bc:f4:0f:f7:a7:26:81:e3:66:2f:a8:e1:1f:33:7c:83:ed: 3f:5f:0a:e3:5d:84:99:f5:3a:b0:cc:16:16:81:cc:47:4c:18: c3:9b:22:fd:35:9b:2a:fc:ec:4c:4e:b6:4b:47:66:86:7b:62: 11:5d:fb:ac:7b:9f:c3:71:97:f0:f5:8d:a4:68:d1:03:5f:63: b7:4f:22:fa:6f:1b:33:29:43:be:37:c0:15:d7:c3:92:ac:1d: eb:63:7b:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFcb/Y1GQRietMJtYsoUI/QwXNNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2YwNTQyOTA5OGYyYzJiNTQ1ODEzMzYwZGNhYTUxMDNl ZmQ1OWYyMjg4NTljNDUzNzRkNTM4MmJhNGZjYWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkJUiIG0M0xCa1wnwKQnqw9AWOG7fVM74QP3vaDPzWh6hz 5oJZn07Jm2F+8+uGqPoSJ8DmZ0zhWyoUAHDb+at/pMDK8Zc5zAFYNmd51tAz9k9o GMzErqRHQ3iXlyqFzR9Rt6oIPnMhkThYhfx2Sq4Z9pjONRDIzaWF/W0FLoHDV78J dFEgmkc7gHUOe5mm/29pSjdqvJpM6WiipnxLr4DljTDaqfLmUzgOI5KDXaAIy1xA iI6ujIQZoLWmh28q5wRwffDS8No5eGpl5lGy5ro++GrDHGpjEMNyDScZGc2F4W+2 HqRnBk3DnijVEdeAMA9+dg6RDUms5o3mSbSmbbzZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmRdNoGC7V6BHjXnWstCInyC0h6AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZGMyNTIxLWE1M2UtNGIwNS1iNTM0LThiM2JlOWQ5ZjhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAFiJ6GPTOp8pfcQ8RvS3Nct2hMKp QfzWUrplJ7IyuCF8QEiGvMdCNYsQ9CsiOptg6u8+tNsb1Ny+UxWnb4IGjwEWWvP/ JKPYBE88xGEd+2OS3s9WVgzQ92C738kv0Ubls1oV6kNDJRBDKbOzOQQtbolT8QxW jGogn+9/RxFRH+g8cqaZQlU4XGWfdObREM0HFhyxN5wIoMvvnDf3NjmlgDJo/UO8 9A/3pyaB42YvqOEfM3yD7T9fCuNdhJn1OrDMFhaBzEdMGMObIv01myr87ExOtktH ZoZ7YhFd+6x7n8Nxl/D1jaRo0QNfY7dPIvpvGzMpQ743wBXXw5KsHetje1w= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:52 2023 by rpki-client on console-fra.rpki-client.org