$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa File: 16b78eb9-3900-423b-9232-5f508710c51b.roa (raw, json) Hash identifier: 5QfNW98OYnukMVJYvU/8V5vztqaD77aW5Gss3CYHH+A= Subject key identifier: 73:64:45:69:AD:90:39:E0:A9:0A:D5:3E:75:97:4E:58:09:62:22:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F09EFD5BD384F8CC6C32A5E03CA0C17E70A6A37 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:09:ef:d5:bd:38:4f:8c:c6:c3:2a:5e:03:ca:0c:17:e7:0a:6a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c717c1ad979880f2866adc1fe3e55c39004b74458cc146a9b6097e85079c067f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:8e:ca:a7:24:2e:e2:4c:72:9b:50:2e:3b: 9e:02:d4:7d:d3:c1:c5:93:a6:84:31:3a:27:4a:24: e0:da:74:59:f6:04:e6:6c:06:b1:2d:59:01:67:ac: 6f:b0:1c:1f:60:45:87:1e:cd:2c:ea:b0:a2:17:20: 15:d6:2d:b5:01:69:09:36:7f:de:2c:4b:8b:94:d1: 1f:16:ed:47:8f:e4:5d:e6:d2:d0:a7:a9:d2:dc:ab: 3d:ac:c7:f9:21:ec:8f:7f:84:9a:b6:3b:0c:48:89: 7d:73:7b:d6:b0:3d:ca:18:76:36:48:ea:d5:dd:29: d2:1a:c6:bd:05:e8:00:fc:27:ea:4a:05:47:91:72: fd:c4:f6:39:70:0d:26:6c:2c:2d:52:d9:13:40:0d: bb:36:9b:d7:27:ff:7f:50:06:77:30:55:4c:10:ac: ba:4c:42:9b:e5:49:08:1f:81:05:19:3b:df:f6:73: 40:28:f0:e3:15:36:75:a7:a0:37:d2:75:4e:b1:bb: 16:b1:36:5b:1d:75:2d:ef:92:7c:6d:aa:a0:73:a0: 72:0c:dc:15:aa:c7:38:7f:32:36:3f:c8:fd:7e:99: 2c:9b:ec:04:c2:b1:9e:d0:6a:68:10:25:67:c3:e9: 08:b3:15:89:53:f2:8a:e4:ba:fc:bc:c3:3b:a5:5f: 20:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:64:45:69:AD:90:39:E0:A9:0A:D5:3E:75:97:4E:58:09:62:22:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.107.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:6c:4f:50:3f:77:2e:3f:b2:8c:74:96:97:a9:b2:4f:d0:3d: 16:9e:e8:39:75:f7:fd:c4:06:50:4e:0a:c6:ce:5f:17:49:26: 1d:db:15:3f:70:ec:95:2e:87:de:cc:f8:ff:9c:99:b3:c4:6b: 5c:95:03:d5:f7:e6:f5:cc:71:20:2a:c2:33:db:2c:b9:c5:84: b2:a8:87:82:7e:58:4c:48:f8:44:93:ac:73:94:95:08:8b:fc: 50:77:c8:3a:76:0a:24:5c:e6:01:61:fc:a7:68:2f:f2:05:ac: 8f:d0:7e:7f:9d:38:2b:70:1a:9b:6c:74:e1:1a:ea:4f:44:7a: 43:b6:f8:f4:91:10:15:d1:3e:83:0f:d5:64:78:6b:04:c9:a0: 64:c0:b9:30:0c:7b:2d:7d:0b:5c:80:35:56:3c:2e:8a:29:8c: 26:09:31:b5:95:ac:36:82:c1:d3:0f:f5:4a:a6:9e:bc:fa:c2: 55:20:91:26:81:14:80:a9:a4:0e:87:26:de:a6:03:2d:4e:53: f0:2d:a0:c6:de:c7:69:17:f7:1c:67:07:e5:dd:ac:55:8c:1c: 50:a6:f2:64:c2:89:de:45:ea:d6:c5:d5:75:62:fb:8c:8e:bd: 38:dd:b2:01:fa:8a:d2:8e:f2:90:6b:62:81:f9:66:2a:50:70: 2a:4f:73:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXwnv1b04T4zGwypeA8oMF+cKajcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzE3YzFhZDk3OTg4MGYyODY2YWRjMWZlM2U1NWMzOTAw NGI3NDQ1OGNjMTQ2YTliNjA5N2U4NTA3OWMwNjdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl947KpyQu4kxym1AuO54C1H3TwcWTpoQxOidKJODadFn2 BOZsBrEtWQFnrG+wHB9gRYcezSzqsKIXIBXWLbUBaQk2f94sS4uU0R8W7UeP5F3m 0tCnqdLcqz2sx/kh7I9/hJq2OwxIiX1ze9awPcoYdjZI6tXdKdIaxr0F6AD8J+pK BUeRcv3E9jlwDSZsLC1S2RNADbs2m9cn/39QBncwVUwQrLpMQpvlSQgfgQUZO9/2 c0Ao8OMVNnWnoDfSdU6xuxaxNlsddS3vknxtqqBzoHIM3BWqxzh/MjY/yP1+mSyb 7ATCsZ7QamgQJWfD6QizFYlT8orkuvy8wzulXyBZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc2RFaa2QOeCpCtU+dZdOWAliIr8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2Yjc4ZWI5LTM5MDAtNDIzYi05MjMyLTVmNTA4NzEwYzUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GswDQYJKoZIhvcNAQELBQADggEBAEtsT1A/dy4/sox0lpepsk/QPRae 6Dl19/3EBlBOCsbOXxdJJh3bFT9w7JUuh97M+P+cmbPEa1yVA9X35vXMcSAqwjPb LLnFhLKoh4J+WExI+ESTrHOUlQiL/FB3yDp2CiRc5gFh/KdoL/IFrI/Qfn+dOCtw GptsdOEa6k9EekO2+PSREBXRPoMP1WR4awTJoGTAuTAMey19C1yANVY8LoopjCYJ MbWVrDaCwdMP9Uqmnrz6wlUgkSaBFICppA6HJt6mAy1OU/AtoMbex2kX9xxnB+Xd rFWMHFCm8mTCid5F6tbF1XVi+4yOvTjdsgH6itKO8pBrYoH5ZipQcCpPcws= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:17 2023 by rpki-client on console-fra.rpki-client.org