$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa File: 145d5432-1426-4a63-9bed-c2784088be52.roa (raw, json) Hash identifier: MF/BOmMLqxT6HWGgbxxSUQz6HI1O4jWVyaTgwUtt0yE= Subject key identifier: DD:EB:56:F2:CD:27:E7:5C:C5:20:7A:F6:CE:7F:52:E2:9E:AE:37:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 567776CAFCED2457CBDFFCC5681A3CE1807D131B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.37.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:77:76:ca:fc:ed:24:57:cb:df:fc:c5:68:1a:3c:e1:80:7d:13:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=68721ad9fe03aac13c407d9d57e0236c54d8e7fd0b30442a058c2352814ed130, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ef:26:98:0f:e0:8a:fc:36:7a:4a:55:f6:00: c5:d8:72:7c:5a:40:51:07:bd:0b:f5:a0:de:f3:f9: 45:f0:db:66:ae:23:48:d6:3d:3a:74:35:0c:87:29: 65:ef:c0:62:9d:68:0c:f2:74:32:dc:88:df:b8:5b: 35:89:d2:da:11:8a:11:6b:1c:42:2c:15:7c:45:b4: e4:53:f6:aa:68:90:01:54:4f:59:c6:69:f0:9d:ac: 1c:45:ab:df:f9:1f:99:40:c1:e0:f5:31:4d:c9:03: 4b:1d:af:6c:38:e8:c9:3a:09:e0:64:23:40:f3:c1: 5f:68:64:c7:52:4e:a1:4a:7e:22:44:48:54:e7:b8: d8:c9:41:ca:7b:82:0c:b2:ee:ce:47:09:37:b9:03: 0a:46:b5:63:f5:fa:f1:f3:8f:64:6d:7a:b5:ab:4e: f8:66:c1:c7:35:fc:38:08:7f:c4:7f:c7:0e:09:fc: df:d8:6a:7a:44:3e:f5:95:43:a5:71:88:01:2a:88: de:d8:07:67:e7:6f:80:38:47:11:12:91:1b:30:aa: 35:ce:e6:f8:6a:8a:80:f0:5a:ac:93:81:ca:5c:7b: d5:17:71:f0:4f:70:3d:81:f7:e2:40:18:8a:91:d7: df:83:89:04:a6:71:c2:94:c5:f0:52:3f:b1:b2:4f: 3c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EB:56:F2:CD:27:E7:5C:C5:20:7A:F6:CE:7F:52:E2:9E:AE:37:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.37.64.0/18 Signature Algorithm: sha256WithRSAEncryption 78:ee:6f:f7:77:ee:f6:3d:ad:64:fb:ac:0d:1c:94:ab:46:4a: 19:9c:9d:58:01:57:b5:c7:e2:4c:05:0c:5b:7d:1f:38:a8:9e: a2:94:cb:95:64:42:36:34:8d:57:59:34:58:9e:fe:3f:e2:f9: c8:d5:47:00:d0:3a:6b:1f:9f:7e:7d:27:8d:3c:84:39:8f:b7: 1a:45:01:94:a1:55:73:f0:0c:95:7f:c9:39:31:d5:65:d7:73: 59:02:10:3a:d3:91:e9:41:d7:fa:31:25:08:70:2a:e5:b1:08: 44:00:b6:a6:09:d1:b0:1d:b5:17:08:3b:1f:07:45:dd:a9:60: e4:be:32:c5:3e:90:f8:8a:2e:7a:2e:04:89:fa:4c:10:08:c4: 64:06:3f:88:7b:2e:00:78:a2:6a:a4:99:1c:c0:30:e5:ae:cd: a7:a4:70:e4:5d:24:0a:c9:75:55:2b:5d:30:1c:2f:e8:c4:48: 09:82:fb:5a:b5:c3:4e:03:ee:49:8d:18:68:1b:e7:31:d1:78: 15:bf:14:aa:12:d4:d2:e0:39:62:d4:53:d7:0c:86:00:8c:4a: f8:c6:89:b5:ab:a1:64:25:3f:c2:a6:f1:11:0b:eb:a6:fc:48: 08:d0:fa:47:9d:f9:22:c6:ab:44:63:26:b5:23:f9:d7:53:57: ce:43:dd:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVnd2yvztJFfL3/zFaBo84YB9ExswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODcyMWFkOWZlMDNhYWMxM2M0MDdkOWQ1N2UwMjM2YzU0 ZDhlN2ZkMGIzMDQ0MmEwNThjMjM1MjgxNGVkMTMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb7yaYD+CK/DZ6SlX2AMXYcnxaQFEHvQv1oN7z+UXw22au I0jWPTp0NQyHKWXvwGKdaAzydDLciN+4WzWJ0toRihFrHEIsFXxFtORT9qpokAFU T1nGafCdrBxFq9/5H5lAweD1MU3JA0sdr2w46Mk6CeBkI0DzwV9oZMdSTqFKfiJE SFTnuNjJQcp7ggyy7s5HCTe5AwpGtWP1+vHzj2RterWrTvhmwcc1/DgIf8R/xw4J /N/YanpEPvWVQ6VxiAEqiN7YB2fnb4A4RxESkRswqjXO5vhqioDwWqyTgcpce9UX cfBPcD2B9+JAGIqR19+DiQSmccKUxfBSP7GyTzx1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3etW8s0n51zFIHr2zn9S4p6uN4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0NWQ1NDMyLTE0MjYtNGE2My05YmVkLWMyNzg0MDg4YmU1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAJUAwDQYJKoZIhvcNAQELBQADggEBAHjub/d37vY9rWT7rA0clKtGShmc nVgBV7XH4kwFDFt9HzionqKUy5VkQjY0jVdZNFie/j/i+cjVRwDQOmsfn359J408 hDmPtxpFAZShVXPwDJV/yTkx1WXXc1kCEDrTkelB1/oxJQhwKuWxCEQAtqYJ0bAd tRcIOx8HRd2pYOS+MsU+kPiKLnouBIn6TBAIxGQGP4h7LgB4omqkmRzAMOWuzaek cORdJArJdVUrXTAcL+jESAmC+1q1w04D7kmNGGgb5zHReBW/FKoS1NLgOWLUU9cM hgCMSvjGibWroWQlP8Km8REL66b8SAjQ+ked+SLGq0RjJrUj+ddTV85D3Xo= -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:12 2023 by rpki-client on console-fra.rpki-client.org