$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa File: 1e25c82c-c566-43b2-add2-4b2bab8925c8.roa (raw, json) Hash identifier: J9WbxDw1nmnz+PUOQbx5dD7/4KiU8IaIn8VxlDcLmmY= Subject key identifier: AD:48:5B:43:1D:FE:0B:16:38:9B:82:83:03:50:05:31:4D:B9:0E:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C0874BE54B9DE432463A86FD8393B4E8C45AB5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa Signing time: Tue 29 Aug 2023 00:00:00 +0000 ROA not before: Tue 29 Aug 2023 00:00:00 +0000 ROA not after: Tue 03 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 12:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:08:74:be:54:b9:de:43:24:63:a8:6f:d8:39:3b:4e:8c:45:ab:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:00:00 2023 GMT Not After : Oct 3 23:59:59 2023 GMT Subject: serialNumber=580f12e97471cc3ff6fb641ddd55e9c977329d1f9dc23464bfcc162aed77e41c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:16:f9:04:63:2c:c1:3f:ab:fa:38:fb:62:8e: 80:d2:8b:62:1f:19:b4:27:79:3d:e0:3b:91:aa:9c: 0b:f9:04:2c:70:97:b7:02:4e:e6:83:c9:8a:67:49: e1:5a:7c:31:ff:93:84:18:01:03:ef:94:58:f3:37: d6:bf:ee:a7:dc:df:1c:40:56:12:f1:02:e9:6b:ba: 5a:c4:2d:56:a4:83:70:c6:83:88:37:a5:ec:c3:5e: 50:3e:ec:57:d7:02:7a:07:65:d0:26:0d:5e:ce:2a: 09:b6:b5:cc:a2:00:fd:34:d2:bf:4c:76:b5:55:b3: 55:11:be:a8:57:6c:61:31:c6:37:12:b5:d6:c7:0a: 40:01:9f:b0:fc:c6:2d:dd:b6:03:b4:e3:05:18:7b: d0:6c:14:de:0e:45:3b:fb:92:a3:7e:38:2d:59:ea: a9:23:68:4b:5e:ed:87:bc:90:74:5b:3b:c9:de:78: 29:83:89:d9:0e:26:c3:5b:2d:86:b3:e2:ee:07:28: fd:c5:0f:8f:c4:c6:18:aa:b3:e0:75:02:10:47:e2: 17:bc:94:e8:e7:42:cf:7f:d5:4a:44:a4:c7:69:52: 2e:66:fc:d1:d6:88:28:ee:4a:23:92:3b:5f:47:e1: e1:05:ac:41:c1:e3:11:c2:49:df:d6:1e:19:92:91: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:48:5B:43:1D:FE:0B:16:38:9B:82:83:03:50:05:31:4D:B9:0E:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.115.0/24 Signature Algorithm: sha256WithRSAEncryption 88:df:c7:6f:07:9c:5b:ea:a1:ea:5a:db:8e:0c:6f:36:d4:26: b0:7b:59:4b:e4:8f:d4:ae:7e:60:26:8d:7f:b0:94:7b:88:f5: 00:f4:48:bf:0c:e1:12:7d:a3:78:8f:a3:5c:67:57:14:cb:0a: 49:07:c3:3a:60:c4:16:d3:f2:b1:e8:f6:6a:36:34:2d:67:dc: 80:63:2b:2b:0a:e5:76:a3:35:b7:b2:d8:ed:c7:e1:22:8a:95: 1c:8c:87:af:40:ae:69:33:70:48:fc:9f:f2:34:8e:d1:bf:28: 5d:12:db:d5:01:42:49:1b:1c:34:d5:1f:ed:f9:03:2e:06:47: 5a:06:bb:e0:e3:7c:53:54:6a:b6:77:ac:88:a8:4c:2d:e7:a9: 6d:e2:9c:c9:8c:02:cb:93:65:f9:0a:38:ff:1b:99:a1:b2:a8: 2f:39:4c:7e:4b:82:98:ac:61:bf:8c:74:9f:7e:b8:0d:30:70: 28:f6:72:24:b3:d5:39:1c:f7:33:91:e2:6f:03:d7:aa:27:25: 83:35:9f:7a:4c:d8:bc:f0:8b:14:59:24:96:29:17:c4:fa:dd: 9b:e9:10:33:74:bc:81:3c:4f:3e:17:f9:6e:06:af:43:9f:83: 21:2c:46:a6:e7:0c:1d:30:51:e7:2c:25:d7:da:5c:1e:80:da: 52:a4:b1:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXAh0vlS53kMkY6hv2Dk7ToxFq1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI5MDAwMDAwWhcNMjMxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODBmMTJlOTc0NzFjYzNmZjZmYjY0MWRkZDU1ZTljOTc3 MzI5ZDFmOWRjMjM0NjRiZmNjMTYyYWVkNzdlNDFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbFvkEYyzBP6v6OPtijoDSi2IfGbQneT3gO5GqnAv5BCxw l7cCTuaDyYpnSeFafDH/k4QYAQPvlFjzN9a/7qfc3xxAVhLxAulrulrELVakg3DG g4g3pezDXlA+7FfXAnoHZdAmDV7OKgm2tcyiAP000r9MdrVVs1URvqhXbGExxjcS tdbHCkABn7D8xi3dtgO04wUYe9BsFN4ORTv7kqN+OC1Z6qkjaEte7Ye8kHRbO8ne eCmDidkOJsNbLYaz4u4HKP3FD4/Exhiqs+B1AhBH4he8lOjnQs9/1UpEpMdpUi5m /NHWiCjuSiOSO19H4eEFrEHB4xHCSd/WHhmSkVOxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrUhbQx3+CxY4m4KDA1AFMU25DsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMjVjODJjLWM1NjYtNDNiMi1hZGQyLTRiMmJhYjg5MjVjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXMwDQYJKoZIhvcNAQELBQADggEBAIjfx28HnFvqoepa244MbzbUJrB7 WUvkj9SufmAmjX+wlHuI9QD0SL8M4RJ9o3iPo1xnVxTLCkkHwzpgxBbT8rHo9mo2 NC1n3IBjKysK5XajNbey2O3H4SKKlRyMh69ArmkzcEj8n/I0jtG/KF0S29UBQkkb HDTVH+35Ay4GR1oGu+DjfFNUarZ3rIioTC3nqW3inMmMAsuTZfkKOP8bmaGyqC85 TH5LgpisYb+MdJ9+uA0wcCj2ciSz1Tkc9zOR4m8D16onJYM1n3pM2LzwixRZJJYp F8T63ZvpEDN0vIE8Tz4X+W4Gr0OfgyEsRqbnDB0wUecsJdfaXB6A2lKkseo= -----END CERTIFICATE-----Generated at Tue Aug 29 00:34:10 2023 by rpki-client on console-fra.rpki-client.org