$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa File: 22e0224f-add1-4750-9889-4168c3af1743.roa (raw, json) Hash identifier: YZVTJdg8KoMe1lwGNFzDG1TqodLDXa7yQC/RIhUfhMY= Subject key identifier: 78:F2:CC:45:21:F9:47:7F:E2:B8:94:4F:98:3C:76:6B:10:DC:2A:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4574E10A27A85C82A2222C51092CC7C101915461 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:74:e1:0a:27:a8:5c:82:a2:22:2c:51:09:2c:c7:c1:01:91:54:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=bad3b3040e3939f6dd3531f4cf780aaf096ab3a7986040fdc22d78b5fafb7b53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:32:13:a8:2e:90:bb:d9:1b:f9:10:6b:00: ed:a9:68:06:5c:bf:84:ee:44:04:c7:95:64:2f:a3: a2:c2:2d:4d:76:f5:44:29:03:d2:9d:c4:2e:02:88: a2:88:6a:93:a9:95:92:9c:9a:ce:6c:3c:f8:22:a3: f5:3d:eb:f8:66:05:47:c1:be:37:fd:a2:6c:fb:44: 9e:f8:f9:88:6c:9f:7f:17:a5:1a:63:48:40:6d:52: 1e:bd:88:fe:47:47:6a:ab:f1:6d:65:17:13:0d:3c: 72:75:9f:45:97:fb:29:27:f0:1a:3e:4d:2f:a9:1a: 99:da:14:6c:17:33:48:f8:ae:17:46:27:5d:ea:d4: e4:fc:1b:2c:34:8c:b7:ff:0e:73:f2:2f:97:ef:95: e6:7b:0a:a6:08:da:fb:5c:26:08:38:17:d4:89:d4: 9f:b0:da:d5:b7:aa:2d:14:64:7b:2d:a3:a7:d6:ce: 8b:d2:e1:ca:a2:48:26:6a:26:35:66:eb:11:95:1f: 9d:b7:5e:37:97:f5:21:a7:d3:11:5a:b9:22:3f:9b: 0b:f9:66:8e:d7:6b:b9:31:c1:7a:07:0d:5f:c6:51: cb:e3:fa:70:a6:1f:46:44:84:e4:1b:24:1c:8e:0f: d6:ee:8a:58:7c:0a:e4:ef:59:bb:5a:bd:e7:36:f8: 2a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F2:CC:45:21:F9:47:7F:E2:B8:94:4F:98:3C:76:6B:10:DC:2A:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:24:c5:95:fa:51:40:df:80:e9:cd:92:8e:5f:39:30:f7:bb: d2:c7:50:19:17:30:6d:8c:8a:d7:28:31:9f:46:97:2a:18:15: 3b:9b:d0:90:80:37:c1:31:a2:48:c5:f2:2e:77:fe:58:0f:6c: de:e7:f6:9a:32:d2:89:32:7a:6c:cc:91:bd:4b:78:03:fd:9f: 72:d0:38:40:e4:b6:82:24:e3:e8:ff:bf:8a:d1:70:46:3f:a9: 0a:c7:3e:f9:29:ef:88:2d:d0:59:a5:08:7b:2d:c1:24:6d:b2: e2:92:d6:d4:45:00:55:c9:3b:11:10:54:20:ec:97:5d:b0:47: 29:c1:6f:54:46:93:32:b6:d1:8d:de:fa:d1:74:85:b2:e1:d2: 7b:2d:0b:d7:ac:ff:d6:44:c7:2f:01:13:84:32:ef:b3:0c:d6: 6b:09:da:51:0b:fb:af:87:34:39:71:0b:c8:12:b8:8f:c4:91: 51:dc:3a:02:3f:10:b4:1a:b3:bd:96:f0:df:df:c3:28:b2:85: 4d:66:21:ba:b6:c4:c7:f7:37:f1:0c:55:7a:9d:7a:c5:82:f8: 65:7f:68:e3:c3:30:11:1b:6a:c9:7b:32:40:f0:b4:ca:62:32: f7:e0:ee:2e:50:3f:df:a6:60:d0:5b:d6:80:22:98:9a:19:ad: 85:b5:b2:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURXThCieoXIKiIixRCSzHwQGRVGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWQzYjMwNDBlMzkzOWY2ZGQzNTMxZjRjZjc4MGFhZjA5 NmFiM2E3OTg2MDQwZmRjMjJkNzhiNWZhZmI3YjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMazITqC6Qu9kb+RBrAO2paAZcv4TuRATHlWQvo6LCLU12 9UQpA9KdxC4CiKKIapOplZKcms5sPPgio/U96/hmBUfBvjf9omz7RJ74+Yhsn38X pRpjSEBtUh69iP5HR2qr8W1lFxMNPHJ1n0WX+ykn8Bo+TS+pGpnaFGwXM0j4rhdG J13q1OT8Gyw0jLf/DnPyL5fvleZ7CqYI2vtcJgg4F9SJ1J+w2tW3qi0UZHsto6fW zovS4cqiSCZqJjVm6xGVH523XjeX9SGn0xFauSI/mwv5Zo7Xa7kxwXoHDV/GUcvj +nCmH0ZEhOQbJByOD9builh8CuTvWbtavec2+CpZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUePLMRSH5R3/iuJRPmDx2axDcKhYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZTAyMjRmLWFkZDEtNDc1MC05ODg5LTQxNjhjM2FmMTc0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANomXAwDQYJKoZIhvcNAQELBQADggEBAD4kxZX6UUDfgOnNko5fOTD3u9LH UBkXMG2MitcoMZ9GlyoYFTub0JCAN8ExokjF8i53/lgPbN7n9poy0okyemzMkb1L eAP9n3LQOEDktoIk4+j/v4rRcEY/qQrHPvkp74gt0FmlCHstwSRtsuKS1tRFAFXJ OxEQVCDsl12wRynBb1RGkzK20Y3e+tF0hbLh0nstC9es/9ZExy8BE4Qy77MM1msJ 2lEL+6+HNDlxC8gSuI/EkVHcOgI/ELQas72W8N/fwyiyhU1mIbq2xMf3N/EMVXqd esWC+GV/aOPDMBEbasl7MkDwtMpiMvfg7i5QP9+mYNBb1oAimJoZrYW1siM= -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:45 2023 by rpki-client on console-fra.rpki-client.org