$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa File: 23ef0758-1090-4510-af75-cb75140d882f.roa (raw, json) Hash identifier: F3aUYhMxPlGRnP9sKnm23qfHdzouUuttLNlzKFLuk/g= Subject key identifier: 0C:E9:AD:BE:A5:01:D5:83:69:A0:ED:6F:5D:74:6F:06:82:37:C2:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03396460D56D27C4037F89A485B50FAB2B441D08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.176.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:39:64:60:d5:6d:27:c4:03:7f:89:a4:85:b5:0f:ab:2b:44:1d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2b09a8cc55d68de8a6ba1f396ca9547daba28fef6782ad95cdf918c65b4c683c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:23:36:90:22:bb:87:cb:30:cb:94:8f:d6:f1: 2a:1c:31:0b:e7:ea:bc:bc:22:0b:d8:04:c8:25:80: 67:3a:28:b8:af:9c:13:9f:af:1a:27:df:8a:70:4e: d6:be:26:58:96:33:4f:98:ad:25:bd:d5:e8:ac:cc: 6a:78:0d:84:16:27:61:d1:fb:a2:2b:04:23:d9:c5: 7e:23:c8:41:b6:dd:59:a2:3e:87:83:c7:15:5b:61: 47:18:20:13:46:3f:36:b0:dc:89:c3:e1:1b:5a:aa: dd:a2:79:70:44:21:ef:d0:b7:73:33:d1:71:4d:3c: 2f:db:32:38:33:e8:62:e1:53:c8:51:0f:6f:77:44: 3a:7c:08:c4:42:88:ff:d7:5e:50:9a:a5:34:b8:ca: dc:be:b1:bb:96:bb:0f:52:1c:d8:4c:b7:e3:d1:b0: f5:51:82:be:c5:28:a3:a5:0a:9b:76:58:02:eb:ae: 36:3e:5f:10:e1:5c:b6:86:7c:5a:c9:21:16:2d:e9: bb:ff:dd:12:93:38:a9:9a:01:7c:0f:06:8b:d4:1a: 3c:11:20:ba:4a:d7:f3:57:2d:f5:10:cf:fa:b2:33: 81:fb:1f:eb:c4:f7:a1:e2:ff:42:40:f9:5f:82:ca: 05:bc:a6:40:a7:34:d7:63:a2:d4:0c:56:e6:4f:ad: 7e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E9:AD:BE:A5:01:D5:83:69:A0:ED:6F:5D:74:6F:06:82:37:C2:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:29:d8:87:a9:59:7c:9f:f0:c1:fd:1f:61:b7:f8:58:45:fc: ca:f8:50:39:4b:a8:a6:dc:98:99:72:a8:6a:c4:12:4f:49:c6: 20:c7:75:5e:b3:86:8b:b7:23:36:b3:40:84:d4:0a:37:44:71: b1:ad:94:16:b3:02:64:9a:9f:41:04:2f:cd:04:ce:a4:10:65: f0:eb:4f:76:f1:8b:28:ec:ed:44:a5:b2:6f:be:c0:23:e0:1c: c1:c9:1a:ae:2a:be:ed:16:7e:d5:15:3c:1d:68:bd:88:f0:ea: 8b:5f:e4:0a:f0:59:14:6e:2e:a0:f1:46:f2:2d:71:6d:84:ca: c8:d6:ea:16:e5:0e:f3:ac:26:ff:4e:df:c6:4e:a0:0d:5a:6b: 58:e0:dc:b1:9b:fa:82:f0:bf:bc:74:3d:ec:5b:dc:ae:1a:e7: 4c:1f:80:d5:ca:53:4d:a5:2f:6c:9b:f9:07:b7:3c:38:b8:97: 10:23:1b:fc:a2:63:69:09:8e:49:24:f7:28:6c:c5:e1:32:03: 8f:74:97:30:df:04:3d:57:a7:d9:87:af:9e:bc:0a:8e:b0:24: 54:88:fa:3f:a3:8b:58:f8:fa:4f:8f:18:41:a6:54:ca:73:31: 63:84:86:c5:e5:06:c0:de:b8:70:df:ad:fd:6b:18:89:be:c8: 45:5f:11:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAzlkYNVtJ8QDf4mkhbUPqytEHQgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjA5YThjYzU1ZDY4ZGU4YTZiYTFmMzk2Y2E5NTQ3ZGFi YTI4ZmVmNjc4MmFkOTVjZGY5MThjNjViNGM2ODNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwIzaQIruHyzDLlI/W8SocMQvn6ry8IgvYBMglgGc6KLiv nBOfrxon34pwTta+JliWM0+YrSW91eiszGp4DYQWJ2HR+6IrBCPZxX4jyEG23Vmi PoeDxxVbYUcYIBNGPzaw3InD4Rtaqt2ieXBEIe/Qt3Mz0XFNPC/bMjgz6GLhU8hR D293RDp8CMRCiP/XXlCapTS4yty+sbuWuw9SHNhMt+PRsPVRgr7FKKOlCpt2WALr rjY+XxDhXLaGfFrJIRYt6bv/3RKTOKmaAXwPBovUGjwRILpK1/NXLfUQz/qyM4H7 H+vE96Hi/0JA+V+CygW8pkCnNNdjotQMVuZPrX4/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDOmtvqUB1YNpoO1vXXRvBoI3wpowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzZWYwNzU4LTEwOTAtNDUxMC1hZjc1LWNiNzUxNDBkODgyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4sDANBgkqhkiG9w0BAQsFAAOCAQEASynYh6lZfJ/wwf0fYbf4WEX8yvhQ OUuoptyYmXKoasQST0nGIMd1XrOGi7cjNrNAhNQKN0Rxsa2UFrMCZJqfQQQvzQTO pBBl8OtPdvGLKOztRKWyb77AI+Acwckariq+7RZ+1RU8HWi9iPDqi1/kCvBZFG4u oPFG8i1xbYTKyNbqFuUO86wm/07fxk6gDVprWODcsZv6gvC/vHQ97FvcrhrnTB+A 1cpTTaUvbJv5B7c8OLiXECMb/KJjaQmOSST3KGzF4TIDj3SXMN8EPVen2YevnrwK jrAkVIj6P6OLWPj6T48YQaZUynMxY4SGxeUGwN64cN+t/WsYib7IRV8RNA== -----END CERTIFICATE-----Generated at Fri Sep 22 19:21:56 2023 by rpki-client on console-ams.rpki-client.org