$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa File: 2279a492-73db-41f0-98ae-bd6039e89d3b.roa (raw, json) Hash identifier: oPD5GvXhCGK/6FHO5BHQcMFxMb7pl/9D5xHcM5ARIkI= Subject key identifier: C4:0B:AC:C4:57:27:EA:C6:5E:F5:6A:1B:07:E9:63:29:DE:1E:DA:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56B784F05F854C7402171E1692F84A9CD95EDC95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 134.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b7:84:f0:5f:85:4c:74:02:17:1e:16:92:f8:4a:9c:d9:5e:dc:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=36e1ab99c4dbe9826817428c228cbae01171b0d49492ee378bc2aa452afdddc8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:be:63:69:a0:d3:d7:36:35:9b:fc:94:b9:40: f3:f8:ec:ac:bd:e3:18:41:c7:6f:fb:9e:86:54:51: d9:09:b3:ce:b7:8c:fb:4f:7c:85:88:27:ff:5d:2a: 92:97:ae:2f:7f:6d:54:fc:b9:bd:90:58:f8:d9:86: 9e:a4:7c:d9:68:a1:d2:d5:cf:50:48:0b:90:1b:4c: 91:03:73:f5:d7:2b:28:b1:3b:f6:fa:5d:d7:44:49: b0:27:29:89:fc:71:92:c4:e3:da:a6:72:7d:bd:15: 8c:2f:86:19:94:7f:c5:bc:c3:9e:6f:bb:30:bd:88: ce:e2:04:05:1f:ca:89:da:36:d9:01:4f:38:fa:4b: 8b:8e:a0:c4:f1:7e:d3:13:5f:32:c8:ff:95:4a:79: 64:6a:f9:70:08:b9:bc:7d:3b:59:3d:38:6c:40:a6: f7:87:3d:58:8a:92:39:49:cc:43:6f:ac:36:4d:b0: 20:7d:84:02:b6:94:1a:25:01:9c:a6:ab:30:36:7e: e0:c7:35:88:26:b5:fb:d9:de:40:e1:04:2c:d7:63: 46:22:f0:2f:e2:9c:72:e2:df:91:05:bc:d2:ef:5c: 27:eb:d9:a1:ca:9a:8f:b5:31:47:96:81:bd:d7:e4: c1:c2:1d:73:92:97:ec:05:68:66:cf:d5:98:37:0f: 9a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0B:AC:C4:57:27:EA:C6:5E:F5:6A:1B:07:E9:63:29:DE:1E:DA:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:91:f9:db:61:af:1e:2a:5f:62:04:7c:7c:b2:d6:fb:ec:99: 25:b8:df:4b:9c:6d:95:0d:1f:77:d1:d7:de:b4:71:e9:11:68: 3d:65:8f:f1:b3:2c:a6:d8:75:5f:11:a5:c5:aa:61:62:4a:09: 10:89:bd:ff:fc:cc:ce:23:58:b8:55:93:b8:a1:d6:dc:d0:c5: 5b:75:35:21:c4:bc:d7:f6:62:c9:f1:e7:87:5b:fa:43:eb:6f: 64:44:6e:e3:f9:28:56:77:b8:98:4f:62:2d:a5:ec:a1:a7:78: 32:4b:c6:70:b1:ee:12:90:8e:40:48:fb:66:68:49:fb:4d:3d: 4b:b2:74:08:85:b2:98:ac:7c:ba:1c:cc:d4:5b:06:f8:97:11: 23:78:2e:3a:74:80:bf:f8:70:e8:52:81:67:64:5b:9f:0a:a9: bb:aa:ed:d9:f6:2e:cd:1f:56:d2:4d:d6:54:ea:bd:24:d1:8c: c7:93:80:81:95:8b:34:d0:24:ca:04:b6:b2:9e:71:34:5a:2a: 13:50:35:b2:34:43:1b:94:fd:3e:53:33:a4:ae:68:b8:8c:5e: a8:c0:c5:15:32:4a:82:b8:b9:56:99:c7:20:1d:c0:9a:07:f7: 50:09:cd:ec:25:ba:06:45:fc:b9:f2:ea:cc:2b:66:27:a8:b7: 3f:a9:4a:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVreE8F+FTHQCFx4WkvhKnNle3JUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmUxYWI5OWM0ZGJlOTgyNjgxNzQyOGMyMjhjYmFlMDEx NzFiMGQ0OTQ5MmVlMzc4YmMyYWE0NTJhZmRkZGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIvmNpoNPXNjWb/JS5QPP47Ky94xhBx2/7noZUUdkJs863 jPtPfIWIJ/9dKpKXri9/bVT8ub2QWPjZhp6kfNloodLVz1BIC5AbTJEDc/XXKyix O/b6XddESbAnKYn8cZLE49qmcn29FYwvhhmUf8W8w55vuzC9iM7iBAUfyonaNtkB Tzj6S4uOoMTxftMTXzLI/5VKeWRq+XAIubx9O1k9OGxApveHPViKkjlJzENvrDZN sCB9hAK2lBolAZymqzA2fuDHNYgmtfvZ3kDhBCzXY0Yi8C/inHLi35EFvNLvXCfr 2aHKmo+1MUeWgb3X5MHCHXOSl+wFaGbP1Zg3D5qRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxAusxFcn6sZe9WobB+ljKd4e2pkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNzlhNDkyLTczZGItNDFmMC05OGFlLWJkNjAzOWU4OWQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGHzANBgkqhkiG9w0BAQsFAAOCAQEALpH522GvHipfYgR8fLLW++yZJbjf S5xtlQ0fd9HX3rRx6RFoPWWP8bMspth1XxGlxaphYkoJEIm9//zMziNYuFWTuKHW 3NDFW3U1IcS81/ZiyfHnh1v6Q+tvZERu4/koVne4mE9iLaXsoad4MkvGcLHuEpCO QEj7ZmhJ+009S7J0CIWymKx8uhzM1FsG+JcRI3guOnSAv/hw6FKBZ2Rbnwqpu6rt 2fYuzR9W0k3WVOq9JNGMx5OAgZWLNNAkygS2sp5xNFoqE1A1sjRDG5T9PlMzpK5o uIxeqMDFFTJKgri5VpnHIB3Amgf3UAnN7CW6BkX8ufLqzCtmJ6i3P6lKJQ== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:52 2023 by rpki-client on console-fra.rpki-client.org