$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d561628-fc32-41ca-978b-1f8088986b08.roa File: 1d561628-fc32-41ca-978b-1f8088986b08.roa (raw, json) Hash identifier: 8w4uip9K+ktMGRJfQzy+MJ2OzhgCaNvXw9dZBeABGKE= Subject key identifier: 2A:0B:BE:8E:1C:B7:32:5B:7C:78:33:27:F7:F3:6A:BE:27:45:AE:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28092020CF07121C0D192D8A305FA389949AABF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d561628-fc32-41ca-978b-1f8088986b08.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:09:20:20:cf:07:12:1c:0d:19:2d:8a:30:5f:a3:89:94:9a:ab:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0f847fb176b7f4bfaa4c7e3ba2a030d2c184f5c571835fea9f5a726362123d64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7f:e6:f1:32:57:03:6d:3c:34:46:af:da:69: ab:39:7e:72:28:e5:32:8c:24:3f:98:d0:a1:60:6c: 72:bb:63:ba:a9:3c:77:39:42:bb:2f:b7:66:12:b4: dd:64:4d:28:86:4d:85:43:0f:c2:58:27:68:7a:ba: 49:12:08:59:10:5f:c8:fa:4c:d8:eb:57:cb:6b:a2: 97:f9:4d:47:d5:53:71:56:61:de:b3:9b:76:b4:2f: fd:22:67:9c:02:ff:f7:09:2c:b2:f2:a5:60:c3:4c: 19:2e:21:0b:c5:25:d7:54:bd:fb:1e:22:ba:8d:89: dd:bb:5b:a6:55:82:6f:a9:38:b0:99:d5:c7:be:c1: e5:3c:8d:9b:fe:58:ed:68:73:fc:45:bd:04:63:6c: 06:a8:56:66:b7:cc:b8:f6:63:3a:33:9e:59:d5:a6: 1b:bb:45:83:75:fa:c3:19:22:cb:52:69:59:9d:6d: 1f:fc:e2:d9:27:bc:7d:85:ca:e0:b0:99:0a:97:b0: d1:1a:65:3b:a2:4b:e1:dc:1d:f1:94:e3:89:f8:d4: 28:71:61:11:10:19:6a:53:56:7d:ee:6c:b7:eb:40: 02:4d:bf:f8:b9:10:97:d2:e5:31:d8:28:2e:55:13: a2:53:8b:a8:40:78:75:1d:62:cf:56:6f:f8:dc:45: 86:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0B:BE:8E:1C:B7:32:5B:7C:78:33:27:F7:F3:6A:BE:27:45:AE:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d561628-fc32-41ca-978b-1f8088986b08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.48.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:4a:1f:cd:61:5a:c5:39:d0:da:d1:79:2e:ad:86:61:58:7e: 5c:65:f5:73:b3:74:30:6e:b2:97:ee:ab:db:10:1e:0f:ff:a9: 89:d1:16:c2:f5:85:69:f1:7e:e8:b7:a7:c0:48:4b:ea:4c:0f: 25:85:58:c7:cc:d2:f4:36:9a:13:54:d5:60:9b:3c:00:bd:d8: cd:19:d7:95:fb:31:f0:1d:c7:cc:6b:05:76:7a:85:7a:ff:8d: 13:f0:ec:1e:03:83:d1:20:eb:ec:fa:81:e1:38:72:e0:34:c9: 02:5b:2f:0b:73:70:db:b0:e0:28:da:f2:2b:2b:7a:d4:93:c1: a2:6a:cb:17:60:f2:b6:69:a0:33:8d:47:fc:49:c1:9d:df:df: b6:c9:73:64:81:2b:79:a4:16:b5:72:e7:4c:02:eb:bc:d5:41: 44:02:b8:3a:89:23:c3:d1:00:bd:0c:12:7a:88:84:52:39:86: 7e:4e:ac:a2:11:5c:4a:79:45:c5:6b:93:79:e6:6d:c4:e6:bc: f1:6b:55:56:34:10:8d:01:3d:f2:63:b6:47:1c:3e:04:65:6a: c5:31:35:50:a7:69:1c:01:c5:2a:cc:da:58:94:47:7d:ef:eb: 9b:85:21:6a:4b:5d:cf:55:a0:df:a2:d2:ad:d4:5b:11:7a:ba: 76:87:02:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKAkgIM8HEhwNGS2KMF+jiZSaq/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjg0N2ZiMTc2YjdmNGJmYWE0YzdlM2JhMmEwMzBkMmMx ODRmNWM1NzE4MzVmZWE5ZjVhNzI2MzYyMTIzZDY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCif+bxMlcDbTw0Rq/aaas5fnIo5TKMJD+Y0KFgbHK7Y7qp PHc5Qrsvt2YStN1kTSiGTYVDD8JYJ2h6ukkSCFkQX8j6TNjrV8tropf5TUfVU3FW Yd6zm3a0L/0iZ5wC//cJLLLypWDDTBkuIQvFJddUvfseIrqNid27W6ZVgm+pOLCZ 1ce+weU8jZv+WO1oc/xFvQRjbAaoVma3zLj2YzoznlnVphu7RYN1+sMZIstSaVmd bR/84tknvH2FyuCwmQqXsNEaZTuiS+HcHfGU44n41ChxYREQGWpTVn3ubLfrQAJN v/i5EJfS5THYKC5VE6JTi6hAeHUdYs9Wb/jcRYZtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKgu+jhy3Mlt8eDMn9/NqvidFrtgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkNTYxNjI4LWZjMzItNDFjYS05NzhiLTFmODA4ODk4NmIwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjljAwDQYJKoZIhvcNAQELBQADggEBAE5KH81hWsU50NrReS6thmFYflxl 9XOzdDBuspfuq9sQHg//qYnRFsL1hWnxfui3p8BIS+pMDyWFWMfM0vQ2mhNU1WCb PAC92M0Z15X7MfAdx8xrBXZ6hXr/jRPw7B4Dg9Eg6+z6geE4cuA0yQJbLwtzcNuw 4Cja8isretSTwaJqyxdg8rZpoDONR/xJwZ3f37bJc2SBK3mkFrVy50wC67zVQUQC uDqJI8PRAL0MEnqIhFI5hn5OrKIRXEp5RcVrk3nmbcTmvPFrVVY0EI0BPfJjtkcc PgRlasUxNVCnaRwBxSrM2liUR33v65uFIWpLXc9VoN+i0q3UWxF6unaHAqo= -----END CERTIFICATE-----Generated at Fri Sep 22 19:21:55 2023 by rpki-client on console-ams.rpki-client.org