$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa File: 2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa (raw, json) Hash identifier: c0er98Rx9t3Sl8T+zVd0uzsD+sef4J9b7Sf1sdQZmFo= Subject key identifier: 93:84:8F:EC:E1:2E:A2:7A:E4:1F:B6:27:EC:45:8E:0D:6B:0B:1B:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E4C24277C4676AABDED2F565ABE34FD3C97F910 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 139.56.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:4c:24:27:7c:46:76:aa:bd:ed:2f:56:5a:be:34:fd:3c:97:f9:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=d5837bef37e4093187a15772c32ca3ce6a0a5695e200f18e01c50fec95fd199e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1d:42:0f:91:4b:e5:df:b9:03:e5:18:6e:0b: b8:90:de:98:3b:83:7f:44:98:31:5f:5e:77:be:b6: 98:1e:b5:cb:73:19:71:f7:46:51:73:53:d5:a7:77: 71:22:7a:04:ec:ba:fd:92:2b:e0:97:ce:82:6e:6c: 43:9d:c5:09:1f:4c:0b:1c:b8:e2:92:85:fe:7c:5a: 43:8e:6d:d8:8e:6a:dc:08:56:e9:10:4a:27:19:76: 6b:a3:e3:45:34:88:be:a5:8e:25:00:5d:05:a7:bf: 6e:79:8b:47:66:b6:04:2c:ee:e6:0a:41:b6:50:91: f8:0c:3b:7e:59:fc:6b:cf:45:9d:5e:bd:73:bd:11: e1:35:00:47:07:5e:78:50:1b:ec:ee:e9:95:20:19: 3f:4b:aa:f5:d5:c3:b4:3e:bd:23:3c:62:bb:ac:c6: 07:5f:a0:bd:bb:f8:64:ec:da:18:cb:14:f0:2b:5a: 64:d6:8b:6e:af:e7:5a:8c:78:05:f6:d8:3d:44:38: 31:75:65:a6:82:84:ce:39:a5:24:ad:ad:d3:c3:94: 27:36:2f:4a:0f:d6:fd:eb:32:21:2e:9f:6a:97:8d: cf:2d:36:93:4e:8c:e3:a2:6d:67:ee:11:a6:b7:64: 43:57:56:7a:3b:0b:50:ba:18:e4:a1:c8:b4:2a:f5: 73:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:84:8F:EC:E1:2E:A2:7A:E4:1F:B6:27:EC:45:8E:0D:6B:0B:1B:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a59bee5-89f9-485c-8a59-86cfb9d5b61b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.4.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:10:e1:48:de:4f:36:ca:c6:9f:03:a2:0b:63:10:39:47:d7: a6:d4:0a:9e:f3:c9:77:2c:22:76:2f:44:5c:4e:90:8c:5c:79: ca:9a:76:c9:c4:b1:c1:4d:63:f0:45:ca:37:3e:96:47:10:fc: ac:fc:06:c2:72:fa:cc:8e:65:1b:1e:b1:74:c8:f2:80:9e:44: 96:22:c3:62:0e:46:78:48:bb:00:67:dc:d2:91:fb:a4:64:05: 75:62:51:64:13:46:d7:b5:68:81:16:00:27:b1:9c:f5:4a:a5: 76:6a:fd:a2:ff:99:4e:3a:d4:1d:09:80:5a:bc:cb:0a:0b:a1: 01:9f:c4:3c:00:6d:bb:c2:71:5a:5a:fb:dd:9a:53:20:e2:bf: c5:48:42:cf:e5:1f:87:71:86:01:80:4c:ca:8c:d4:32:0b:21: 4e:5f:ad:b1:3b:f9:fa:41:45:46:4e:4c:e0:f2:b4:c5:00:8f: 70:8c:95:1e:2f:d2:4c:2e:e3:6e:84:a6:fd:ce:14:c3:94:5e: 03:d9:31:0d:43:b2:ba:8c:ed:96:84:ca:58:1d:30:90:24:d8: 72:83:54:9d:7e:2f:08:a9:67:d8:1c:e1:da:c2:aa:21:72:03: 18:ae:03:2d:de:5f:27:15:bb:86:f9:cd:25:ab:9d:49:33:65: 0e:55:fa:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXkwkJ3xGdqq97S9WWr40/TyX+RAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTgzN2JlZjM3ZTQwOTMxODdhMTU3NzJjMzJjYTNjZTZh MGE1Njk1ZTIwMGYxOGUwMWM1MGZlYzk1ZmQxOTllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaHUIPkUvl37kD5RhuC7iQ3pg7g39EmDFfXne+tpgetctz GXH3RlFzU9Wnd3EiegTsuv2SK+CXzoJubEOdxQkfTAscuOKShf58WkOObdiOatwI VukQSicZdmuj40U0iL6ljiUAXQWnv255i0dmtgQs7uYKQbZQkfgMO35Z/GvPRZ1e vXO9EeE1AEcHXnhQG+zu6ZUgGT9LqvXVw7Q+vSM8YrusxgdfoL27+GTs2hjLFPAr WmTWi26v51qMeAX22D1EODF1ZaaChM45pSStrdPDlCc2L0oP1v3rMiEun2qXjc8t NpNOjOOibWfuEaa3ZENXVno7C1C6GOShyLQq9XN/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk4SP7OEuonrkH7Yn7EWODWsLG1MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNTliZWU1LTg5ZjktNDg1Yy04YTU5LTg2Y2ZiOWQ1YjYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACLOAQwDQYJKoZIhvcNAQELBQADggEBAGoQ4UjeTzbKxp8DogtjEDlH16bU Cp7zyXcsInYvRFxOkIxcecqadsnEscFNY/BFyjc+lkcQ/Kz8BsJy+syOZRsesXTI 8oCeRJYiw2IORnhIuwBn3NKR+6RkBXViUWQTRte1aIEWACexnPVKpXZq/aL/mU46 1B0JgFq8ywoLoQGfxDwAbbvCcVpa+92aUyDiv8VIQs/lH4dxhgGATMqM1DILIU5f rbE7+fpBRUZOTODytMUAj3CMlR4v0kwu426Epv3OFMOUXgPZMQ1DsrqM7ZaEylgd MJAk2HKDVJ1+LwipZ9gc4drCqiFyAxiuAy3eXycVu4b5zSWrnUkzZQ5V+lM= -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:52 2023 by rpki-client on console-ams.rpki-client.org