$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa File: 15dd7280-6c64-4c5f-9920-b8e295ae5383.roa (raw, json) Hash identifier: mXrOjxcocPLJl9pHoRSso0qbIF4Mw0OXxCjYGEgaV+U= Subject key identifier: AA:A7:DF:4C:37:DF:4A:9E:B8:D1:37:FC:7F:C2:80:97:69:12:56:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DF33F6C71410A7A255EC72071D6F60C734E3252 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:f3:3f:6c:71:41:0a:7a:25:5e:c7:20:71:d6:f6:0c:73:4e:32:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=18a66b133630eb237b09800fc9d25e446e023e3e113375e0fd446f04e9f31fa8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b5:33:2a:c0:2e:15:3f:c2:64:a4:91:60:c0: 2b:5a:95:b2:77:bd:36:60:3b:9d:7b:1e:1e:50:1a: 06:f8:6b:a8:dc:5e:61:d1:83:ac:fd:b7:9b:93:a5: e5:80:9a:0d:12:03:20:3c:ce:ba:ba:46:d7:ba:81: 93:bd:82:19:2a:8d:52:18:20:55:62:a4:fa:2e:85: 3b:c3:1a:2c:10:aa:98:e5:57:a7:96:1e:ae:62:a9: 19:b2:0a:b7:bc:e1:fd:a5:9c:ac:47:38:03:33:00: 07:57:69:00:4b:7f:75:f0:dc:c5:3f:dd:67:32:9b: 35:6a:2e:c6:de:be:ac:02:e5:df:f3:53:5f:f4:9c: 0a:34:10:df:18:b7:df:aa:3c:e0:8d:e9:f6:64:b2: 00:5e:85:85:fe:4b:5d:2f:d1:db:54:3c:87:32:56: 58:f2:45:fd:50:52:4e:e7:05:6f:ff:62:98:62:3d: eb:e1:8a:38:72:2f:5b:11:8d:28:f2:39:45:68:5a: 1f:3c:46:a2:de:77:6a:b6:01:5a:c3:df:ec:2c:74: a2:9b:d9:5d:6a:80:08:6c:8f:a0:9e:15:26:46:fa: f0:d9:62:8c:97:bf:c1:2b:10:50:d5:99:08:95:4a: d1:b1:67:09:d8:c3:3e:a1:0b:b8:03:a6:43:59:75: 78:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A7:DF:4C:37:DF:4A:9E:B8:D1:37:FC:7F:C2:80:97:69:12:56:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.233.0/24 Signature Algorithm: sha256WithRSAEncryption c7:2e:02:9f:c6:43:fb:4c:8e:af:0b:de:c3:18:ce:6d:27:a5: 36:4d:0e:53:64:2a:33:81:ac:d3:f4:13:a1:4a:a6:70:50:92: 9a:6d:b7:ad:65:81:a2:c3:39:e7:94:e7:e5:f3:08:62:82:a2: 0e:27:b8:eb:44:fa:4e:84:04:b6:00:24:bb:a4:cf:20:85:e4: a7:93:b4:59:b0:3e:33:10:20:80:df:9b:64:bc:47:a7:89:3e: 53:25:d6:bd:7a:45:74:de:db:a0:f7:7b:c5:08:90:22:22:33: c5:1b:d3:92:4b:a6:94:b7:18:b2:b2:a2:d9:b2:d0:82:73:5c: a3:7d:c6:db:8a:89:47:33:3d:a2:c6:3d:d1:aa:54:9c:56:84: ab:00:fe:69:34:ae:4f:f2:8e:c2:e1:a5:7e:9e:3d:80:a6:05: 07:29:b4:75:3b:23:0e:83:2f:f3:ce:c6:65:09:63:d0:91:11: 5c:aa:89:f1:aa:3e:6c:69:41:92:ea:7d:43:4d:43:5d:05:f4: cd:eb:f7:96:4e:de:f3:bd:8b:e5:cf:8c:a8:e8:89:93:1d:3a: b3:c9:4f:9e:9d:2a:28:83:fc:0e:d1:01:07:9a:22:b8:ce:3f: fc:2d:b9:05:b9:28:a5:43:cb:5b:9f:aa:f8:d6:a0:7b:c1:30: 8f:d9:ee:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXfM/bHFBCnolXscgcdb2DHNOMlIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGE2NmIxMzM2MzBlYjIzN2IwOTgwMGZjOWQyNWU0NDZl MDIzZTNlMTEzMzc1ZTBmZDQ0NmYwNGU5ZjMxZmE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCttTMqwC4VP8JkpJFgwCtalbJ3vTZgO517Hh5QGgb4a6jc XmHRg6z9t5uTpeWAmg0SAyA8zrq6Rte6gZO9ghkqjVIYIFVipPouhTvDGiwQqpjl V6eWHq5iqRmyCre84f2lnKxHOAMzAAdXaQBLf3Xw3MU/3WcymzVqLsbevqwC5d/z U1/0nAo0EN8Yt9+qPOCN6fZksgBehYX+S10v0dtUPIcyVljyRf1QUk7nBW//Yphi PevhijhyL1sRjSjyOUVoWh88RqLed2q2AVrD3+wsdKKb2V1qgAhsj6CeFSZG+vDZ YoyXv8ErEFDVmQiVStGxZwnYwz6hC7gDpkNZdXh1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqqffTDffSp640Tf8f8KAl2kSVpYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1ZGQ3MjgwLTZjNjQtNGM1Zi05OTIwLWI4ZTI5NWFlNTM4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTekwDQYJKoZIhvcNAQELBQADggEBAMcuAp/GQ/tMjq8L3sMYzm0npTZN DlNkKjOBrNP0E6FKpnBQkpptt61lgaLDOeeU5+XzCGKCog4nuOtE+k6EBLYAJLuk zyCF5KeTtFmwPjMQIIDfm2S8R6eJPlMl1r16RXTe26D3e8UIkCIiM8Ub05JLppS3 GLKyotmy0IJzXKN9xtuKiUczPaLGPdGqVJxWhKsA/mk0rk/yjsLhpX6ePYCmBQcp tHU7Iw6DL/POxmUJY9CREVyqifGqPmxpQZLqfUNNQ10F9M3r95ZO3vO9i+XPjKjo iZMdOrPJT56dKiiD/A7RAQeaIrjOP/wtuQW5KKVDy1ufqvjWoHvBMI/Z7p0= -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:12 2023 by rpki-client on console-fra.rpki-client.org