$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa File: 0f928fc8-8614-4113-b84d-7aa32406a477.roa (raw, json) Hash identifier: vBGieb7wqRh9xhajBSL4I05FioLSWBWJhHI7dLN/4Gw= Subject key identifier: CA:E6:73:13:37:39:B6:D2:12:92:AB:02:63:EF:00:F2:D1:BB:15:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F7FFB2C70199E728AE4CB11CA8808713AC11A23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 07:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7f:fb:2c:70:19:9e:72:8a:e4:cb:11:ca:88:08:71:3a:c1:1a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=221e50ef63bd1ae16bf7845848a649c4a94571f24d200c1cda3cdf022760f6db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bf:e9:66:04:fa:19:5a:48:e5:a6:23:8b:77: 97:94:f3:64:c0:f5:f3:6b:1f:6f:da:63:c7:51:c0: 5a:d6:38:61:39:8e:7d:da:84:e8:1c:ff:f0:96:57: 77:45:53:db:85:2e:54:b0:7f:c6:88:41:15:b2:33: 96:93:f4:0c:e4:f1:f6:1d:d7:86:e4:4b:ea:ad:a9: 2f:38:0a:09:61:dc:64:12:4b:e7:e5:6a:a7:f7:54: ce:fe:2c:c8:e2:38:5e:59:47:12:ba:f4:e1:a5:e7: c3:9e:f4:b5:a4:66:8b:85:37:2d:e4:e2:2d:d5:e6: 07:72:57:b4:0f:21:01:1c:5e:89:f9:93:5b:40:e4: c2:2e:02:04:76:ef:2d:ce:2a:da:47:be:ed:81:dc: ab:38:be:da:9d:eb:0e:0a:36:ce:5e:7f:b2:06:1b: e1:8e:a7:21:fd:ec:90:4c:4c:22:77:11:d4:86:4b: 15:95:5a:28:37:b6:58:15:95:7a:bc:f0:b0:f4:95: c8:74:24:fa:89:3a:0f:d9:28:9a:f0:ce:3c:68:6f: a4:0c:1b:e8:19:bc:d2:c8:cd:15:d1:cf:41:cc:0e: 14:80:3a:39:79:5f:5b:e2:80:4e:62:c9:8b:f1:21: 07:3a:2e:fc:5a:ab:16:af:97:fe:2c:9a:d8:f2:28: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E6:73:13:37:39:B6:D2:12:92:AB:02:63:EF:00:F2:D1:BB:15:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:2c:92:5a:c2:78:10:56:5b:60:41:49:dc:90:91:8a:20:aa: 22:a2:44:e0:bb:d5:ef:0d:51:16:f8:da:17:e1:f2:a4:3d:96: aa:08:21:40:f9:16:89:2c:5e:bc:70:42:19:f4:dc:b1:70:5d: 82:4b:03:7f:f0:24:55:d4:c8:43:16:9c:54:4d:f3:ad:b1:ee: af:57:53:cd:f7:ae:4f:aa:63:d1:01:c1:6a:ef:3b:c3:bc:7f: 49:24:05:44:ca:3c:fa:1e:75:7a:94:d2:34:c1:40:78:4d:03: 73:9f:7f:f8:90:ab:00:71:c4:0c:5c:f5:a0:9f:59:02:7d:12: a1:ec:79:b2:cb:19:78:5c:bf:77:c5:1d:38:ba:05:55:97:8c: 9f:75:6f:55:6d:a0:73:e0:11:d4:3c:8f:60:b6:34:9d:ac:85: 44:49:63:1d:dd:00:26:77:62:b3:a0:fd:df:0a:d2:f0:30:83: 3d:7f:91:7b:b1:ea:ba:d0:a8:3a:a8:5f:ca:9e:86:ac:8e:74: 88:07:ac:67:81:60:10:77:2b:bd:98:38:6d:89:87:5c:3f:72: d3:e5:1f:ef:d3:7f:93:57:2d:33:bd:40:60:83:fb:d8:bb:59: 03:5e:89:f4:28:e6:80:f8:d8:6b:c3:b4:c5:5d:d1:01:2f:3f: f7:dc:04:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT3/7LHAZnnKK5MsRyogIcTrBGiMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjFlNTBlZjYzYmQxYWUxNmJmNzg0NTg0OGE2NDljNGE5 NDU3MWYyNGQyMDBjMWNkYTNjZGYwMjI3NjBmNmRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSv+lmBPoZWkjlpiOLd5eU82TA9fNrH2/aY8dRwFrWOGE5 jn3ahOgc//CWV3dFU9uFLlSwf8aIQRWyM5aT9Azk8fYd14bkS+qtqS84Cglh3GQS S+flaqf3VM7+LMjiOF5ZRxK69OGl58Oe9LWkZouFNy3k4i3V5gdyV7QPIQEcXon5 k1tA5MIuAgR27y3OKtpHvu2B3Ks4vtqd6w4KNs5ef7IGG+GOpyH97JBMTCJ3EdSG SxWVWig3tlgVlXq88LD0lch0JPqJOg/ZKJrwzjxob6QMG+gZvNLIzRXRz0HMDhSA Ojl5X1vigE5iyYvxIQc6Lvxaqxavl/4smtjyKC5zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyuZzEzc5ttISkqsCY+8A8tG7FRAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmOTI4ZmM4LTg2MTQtNDExMy1iODRkLTdhYTMyNDA2YTQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2BzANBgkqhkiG9w0BAQsFAAOCAQEAviySWsJ4EFZbYEFJ3JCRiiCqIqJE 4LvV7w1RFvjaF+HypD2WqgghQPkWiSxevHBCGfTcsXBdgksDf/AkVdTIQxacVE3z rbHur1dTzfeuT6pj0QHBau87w7x/SSQFRMo8+h51epTSNMFAeE0Dc59/+JCrAHHE DFz1oJ9ZAn0Soex5sssZeFy/d8UdOLoFVZeMn3VvVW2gc+AR1DyPYLY0nayFRElj Hd0AJndis6D93wrS8DCDPX+Re7HqutCoOqhfyp6GrI50iAesZ4FgEHcrvZg4bYmH XD9y0+Uf79N/k1ctM71AYIP72LtZA16J9CjmgPjYa8O0xV3RAS8/99wEIg== -----END CERTIFICATE-----Generated at Mon Aug 28 19:28:00 2023 by rpki-client on console-fra.rpki-client.org