$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa File: 10a82ea4-88fa-4414-b451-4a5566e775c0.roa (raw, json) Hash identifier: +rq1C8drjgzwYGtEVI+Swhu0VW/aImDogjfFCIgot6M= Subject key identifier: 7E:08:BE:5A:DF:42:BE:C3:4F:02:02:DD:FD:C0:16:99:94:B5:B3:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1782151657FBB3742D7A0BEC297614BE76D2A558 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:82:15:16:57:fb:b3:74:2d:7a:0b:ec:29:76:14:be:76:d2:a5:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=f37eec9cf52a2495bb1a49818a605ec0a96bc4d6dd3ae81110aebda3932d2e87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:80:44:39:17:69:22:07:b2:af:4d:7a:4a:62: 6c:51:db:d8:04:4e:77:e9:cf:1c:f4:43:55:77:04: 26:44:f0:73:ef:f2:dd:8b:9f:2f:2e:f4:dc:fd:95: 3d:1b:98:24:f2:4e:21:2d:74:2c:16:1e:c5:03:fe: 4b:d6:7f:14:37:db:76:ca:6e:f0:d5:79:03:f0:5c: df:93:a0:91:13:7f:0c:b9:4e:83:9c:4f:0d:8b:d7: c5:d7:f1:2b:d0:18:3e:27:e6:3d:36:80:95:67:2b: 1f:77:2e:53:be:5e:3b:9b:e5:a8:fc:e2:5d:6e:4b: d1:86:63:02:02:25:2b:48:40:f7:d5:8f:d4:70:18: 83:11:d5:de:09:f0:8c:b0:0e:0a:a4:c7:b9:f5:10: fc:13:b2:07:4d:a1:43:3f:88:eb:49:a4:f3:4e:46: a4:70:8e:53:2e:72:1e:8b:66:f3:f8:83:d3:75:df: ce:f2:d0:eb:6a:2c:26:8e:2d:9e:b8:33:72:49:18: 8b:1b:d4:ca:2d:b3:28:eb:df:7e:37:b9:e6:df:47: b2:40:2e:83:61:4b:1a:24:14:7b:5f:99:ab:4d:65: 91:68:a3:5c:63:df:3b:18:71:5d:7e:fb:dc:08:43: 3a:aa:98:08:23:ae:37:bf:9d:63:6d:cb:e2:7f:8a: 47:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:08:BE:5A:DF:42:BE:C3:4F:02:02:DD:FD:C0:16:99:94:B5:B3:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption ae:bd:30:0c:09:3d:24:5d:3d:d4:ac:03:33:78:79:4e:f8:20: b2:b4:3d:b6:5c:f2:06:68:4b:1b:98:8a:e6:fc:58:ae:00:f4: 39:db:7c:5e:a4:50:d3:ee:08:1f:fd:4e:31:2c:06:87:42:49: f7:76:47:fe:2f:1b:e4:13:c1:2d:74:98:19:e9:93:67:39:25: 0b:6f:8b:96:0f:dd:76:2d:3b:20:2c:85:f0:14:20:e2:cb:7d: 91:ed:e3:ff:fc:b9:dd:12:6a:26:f5:cd:e2:3d:0d:2a:a7:69: 85:a9:16:f5:f3:ac:fa:ff:9f:0f:9a:ee:f4:37:ae:a4:2c:1a: 37:80:94:29:fe:37:30:20:d5:4d:f3:52:c8:97:a2:ab:3b:4a: 86:40:ed:7d:ac:e4:cc:be:f8:07:a2:37:a0:76:e5:d5:2d:7c: 7c:9a:4a:3e:67:74:cf:84:99:b3:77:70:97:d3:6f:01:f4:6a: 04:ec:86:e7:6a:f7:a2:2e:7a:5d:40:81:52:d3:57:af:8b:85: ed:06:f8:73:89:4e:77:cd:46:b7:4f:e8:12:3d:40:de:9b:af: 3d:d7:59:b7:ea:86:ed:c8:b3:dd:c7:a6:d4:2b:b5:ce:31:c4: 3a:5e:02:1f:34:27:fd:38:d2:eb:8e:b6:00:a2:21:cb:f7:2f: e4:61:1e:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUF4IVFlf7s3QtegvsKXYUvnbSpVgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzdlZWM5Y2Y1MmEyNDk1YmIxYTQ5ODE4YTYwNWVjMGE5 NmJjNGQ2ZGQzYWU4MTExMGFlYmRhMzkzMmQyZTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRgEQ5F2kiB7KvTXpKYmxR29gETnfpzxz0Q1V3BCZE8HPv 8t2Lny8u9Nz9lT0bmCTyTiEtdCwWHsUD/kvWfxQ323bKbvDVeQPwXN+ToJETfwy5 ToOcTw2L18XX8SvQGD4n5j02gJVnKx93LlO+Xjub5aj84l1uS9GGYwICJStIQPfV j9RwGIMR1d4J8IywDgqkx7n1EPwTsgdNoUM/iOtJpPNORqRwjlMuch6LZvP4g9N1 387y0OtqLCaOLZ64M3JJGIsb1Motsyjr3343uebfR7JALoNhSxokFHtfmatNZZFo o1xj3zsYcV1++9wIQzqqmAgjrje/nWNty+J/ikehAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfgi+Wt9CvsNPAgLd/cAWmZS1sxowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwYTgyZWE0LTg4ZmEtNDQxNC1iNDUxLTRhNTU2NmU3NzVjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIorDANBgkqhkiG9w0BAQsFAAOCAQEArr0wDAk9JF091KwDM3h5TvggsrQ9 tlzyBmhLG5iK5vxYrgD0Odt8XqRQ0+4IH/1OMSwGh0JJ93ZH/i8b5BPBLXSYGemT ZzklC2+Llg/ddi07ICyF8BQg4st9ke3j//y53RJqJvXN4j0NKqdphakW9fOs+v+f D5ru9DeupCwaN4CUKf43MCDVTfNSyJeiqztKhkDtfazkzL74B6I3oHbl1S18fJpK Pmd0z4SZs3dwl9NvAfRqBOyG52r3oi56XUCBUtNXr4uF7Qb4c4lOd81Gt0/oEj1A 3puvPddZt+qG7ciz3cem1Cu1zjHEOl4CHzQn/TjS6462AKIhy/cv5GEesQ== -----END CERTIFICATE-----Generated at Fri Sep 22 20:57:01 2023 by rpki-client on console-ams.rpki-client.org