$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1555521e-db05-4379-b959-9d437510a9b0.roa File: 1555521e-db05-4379-b959-9d437510a9b0.roa (raw, json) Hash identifier: pykvGtSRbFOPXjECLnaT9QStFkQX3O0v5K7sGvkfTZI= Subject key identifier: 60:E6:16:BC:69:18:FB:FA:A8:B2:9D:15:1E:8F:A1:48:8A:45:95:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E6AD645C92F4019A6625938F4E4ECC243B570C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1555521e-db05-4379-b959-9d437510a9b0.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:6a:d6:45:c9:2f:40:19:a6:62:59:38:f4:e4:ec:c2:43:b5:70:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=557019a6fae5f0b6e254262b4f4e24e9aa523d3ec5ca98b1cd0c9fdee5504937, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d8:c5:fc:52:3d:3b:a3:de:09:42:06:60:99: 18:52:7c:29:c3:66:5c:90:ab:9a:01:4f:9e:8f:56: d7:b8:3e:7c:61:da:24:98:2e:09:5f:6f:19:12:b3: 45:b5:3d:59:cd:bf:89:85:55:52:b2:84:e8:1a:fa: 4a:2f:72:fd:d7:59:13:a7:8b:8f:16:f9:1a:92:be: c1:37:ea:68:51:bb:a9:e5:81:8f:27:1a:28:cd:1a: 9d:1f:eb:ea:bf:62:a0:f0:92:8e:b2:05:10:84:59: da:5a:b9:fd:e4:10:24:12:3b:b8:8c:bf:8f:b6:26: 01:82:95:ca:37:08:28:f8:12:77:9f:f0:ae:28:48: ff:c9:13:b2:c9:85:5b:46:49:aa:83:e0:6f:8c:60: 33:f3:e0:fe:cb:a9:83:f6:41:86:a0:ba:d8:35:d2: 44:ef:5c:e1:05:df:88:7a:8b:5e:d1:32:88:20:b7: cc:63:f8:75:71:96:95:96:df:eb:a1:85:55:df:df: 14:cb:2a:e0:c2:37:6f:6a:5f:86:34:db:65:ec:13: 86:1a:6f:3a:e9:83:62:35:57:5d:66:b7:e6:f1:e7: 12:25:5b:54:50:ee:2f:99:da:08:28:1f:70:4e:67: ea:df:e7:54:f5:d1:2f:9a:8c:38:39:cf:d2:09:e4: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E6:16:BC:69:18:FB:FA:A8:B2:9D:15:1E:8F:A1:48:8A:45:95:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1555521e-db05-4379-b959-9d437510a9b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:72:6d:1a:aa:c1:c7:00:a8:b0:da:eb:9c:d9:2a:53:ba:1f: 72:da:73:d7:1b:37:9f:a8:b4:4b:62:57:23:6c:c6:d7:5f:93: c9:5e:75:98:f8:35:95:27:7b:4d:be:3c:3a:b8:16:7c:87:98: 62:8c:9c:97:39:78:bc:8f:f7:b2:03:a4:2c:5d:b5:7d:38:ba: 2d:70:c9:a2:3a:03:e8:e2:35:34:41:07:09:5e:a8:53:28:58: 42:e0:76:da:a0:7c:a0:a4:18:5e:37:9a:f2:83:bf:83:97:e9: 2d:a5:69:8c:93:51:86:74:b2:b6:b1:d3:c1:63:37:d6:d0:c9: ff:44:72:c9:ef:1f:a6:1d:f7:af:3f:3c:f5:a4:90:43:3c:75: a5:ac:b8:f7:34:94:4b:68:f5:53:fc:f5:0a:d2:a3:7b:78:02: 34:30:0d:75:cb:6d:2c:24:5e:e4:13:a6:72:32:b8:b8:67:db: 59:60:82:da:de:cb:d0:05:d7:d8:a0:88:7b:a7:a4:be:fd:7e: 6a:3c:a6:79:29:33:e4:ad:d0:7e:7b:2f:b1:6c:7d:08:ee:fd: 08:cd:95:ba:cb:5d:7b:d2:e5:6f:ec:72:a7:da:23:c9:f2:c6: e9:a9:1f:01:f4:44:75:ed:04:77:21:29:e8:86:bc:fb:d6:1f: fd:c7:e7:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULmrWRckvQBmmYlk49OTswkO1cMUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTcwMTlhNmZhZTVmMGI2ZTI1NDI2MmI0ZjRlMjRlOWFh NTIzZDNlYzVjYTk4YjFjZDBjOWZkZWU1NTA0OTM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh2MX8Uj07o94JQgZgmRhSfCnDZlyQq5oBT56PVte4Pnxh 2iSYLglfbxkSs0W1PVnNv4mFVVKyhOga+kovcv3XWROni48W+RqSvsE36mhRu6nl gY8nGijNGp0f6+q/YqDwko6yBRCEWdpauf3kECQSO7iMv4+2JgGClco3CCj4Enef 8K4oSP/JE7LJhVtGSaqD4G+MYDPz4P7LqYP2QYagutg10kTvXOEF34h6i17RMogg t8xj+HVxlpWW3+uhhVXf3xTLKuDCN29qX4Y022XsE4Yabzrpg2I1V11mt+bx5xIl W1RQ7i+Z2ggoH3BOZ+rf51T10S+ajDg5z9IJ5Ja/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYOYWvGkY+/qosp0VHo+hSIpFlVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NTU1MjFlLWRiMDUtNDM3OS1iOTU5LTlkNDM3NTEwYTliMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAFxybRqqwccAqLDa65zZKlO6H3La c9cbN5+otEtiVyNsxtdfk8ledZj4NZUne02+PDq4FnyHmGKMnJc5eLyP97IDpCxd tX04ui1wyaI6A+jiNTRBBwleqFMoWELgdtqgfKCkGF43mvKDv4OX6S2laYyTUYZ0 srax08FjN9bQyf9EcsnvH6Yd968/PPWkkEM8daWsuPc0lEto9VP89QrSo3t4AjQw DXXLbSwkXuQTpnIyuLhn21lggtrey9AF19igiHunpL79fmo8pnkpM+St0H57L7Fs fQju/QjNlbrLXXvS5W/scqfaI8nyxumpHwH0RHXtBHchKeiGvPvWH/3H5/k= -----END CERTIFICATE-----Generated at Fri Sep 22 16:18:47 2023 by rpki-client on console-ams.rpki-client.org