$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa File: 2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa (raw, json) Hash identifier: OFy6tNZ/W1iHe02euaJ6Bm8bLb+UimSHr8diCni5c0g= Subject key identifier: 63:47:D5:B8:7E:0E:56:EC:ED:D6:AC:53:E1:41:8A:31:F0:5A:51:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01629779B619430DE80E9959783BB6494FF540F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:62:97:79:b6:19:43:0d:e8:0e:99:59:78:3b:b6:49:4f:f5:40:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c28db0db104f653552689f99c3adeaca85966fccf9bdb3e1e5031d4eef5a87f5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e5:59:3a:2e:c8:f1:b7:3c:d8:d3:7a:e5:bd: bf:7d:db:eb:7a:1d:a1:9b:ae:bf:8e:fc:69:04:9e: bc:ad:95:7a:b3:6d:f7:aa:87:2a:b3:d9:00:b0:6b: e8:4c:1d:15:d3:c5:f6:30:78:34:36:da:69:23:73: 7a:4f:3b:3d:97:cf:35:29:30:a7:4e:91:6a:96:52: 1d:54:a7:d8:43:40:72:f3:01:f6:bb:e3:de:00:08: 1e:a3:06:0f:0a:90:58:1c:e6:8a:e6:40:27:88:0a: e6:07:13:d2:a0:95:e1:55:48:53:b1:e8:18:5e:28: f3:f9:19:98:51:7a:b3:a0:5d:e0:01:dc:e2:f6:db: 8d:b5:c2:e1:07:65:1a:50:82:b3:6a:12:0c:a8:a3: aa:1a:b3:ad:17:f7:17:a5:80:ca:13:3b:a1:65:3b: 6b:39:c5:9a:8d:b5:83:a8:f9:ed:83:0a:1e:c7:1a: da:98:b7:be:66:f8:ab:29:86:83:00:25:52:23:23: 74:be:28:b1:a3:50:7d:ed:f1:33:df:35:ba:9d:21: 1e:d4:fc:bc:a7:48:e8:c1:ba:d8:39:1a:30:d0:57: 7a:51:50:2c:9d:35:ef:40:1f:fa:62:3a:42:79:69: 41:d3:e1:da:7d:74:61:3b:be:da:14:b5:07:bc:2e: 0b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:47:D5:B8:7E:0E:56:EC:ED:D6:AC:53:E1:41:8A:31:F0:5A:51:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.162.0/24 Signature Algorithm: sha256WithRSAEncryption 31:fa:92:b7:49:83:6a:2e:27:07:b5:7a:a2:85:12:9b:65:d4: 08:cb:f3:03:15:fe:1a:b0:67:12:30:db:9d:d2:57:e5:34:d0: 00:af:6c:5a:8e:b3:d3:ed:80:b7:7b:c6:ae:c7:4e:5e:4c:d0: 98:f3:eb:d9:f8:a3:0f:19:df:01:72:c3:4a:bd:be:7c:11:91: 5f:87:f5:68:d1:e6:97:47:fb:a4:9d:f8:d8:51:85:c9:6a:d7: c6:e1:77:9e:fe:1a:ed:bb:d3:e2:b6:a9:d9:ec:94:1c:c7:eb: e0:cc:61:77:21:8b:31:0f:14:6b:81:f1:d3:50:66:12:85:30: 3d:f1:e1:f0:93:67:4e:f2:30:3b:5e:53:88:08:59:8f:58:27: b7:d3:ad:e1:66:4d:b2:d2:bc:13:50:74:56:78:7e:68:ec:46: 52:54:b2:24:0f:b6:cb:c7:5d:4e:93:b2:1d:d1:4d:c8:20:82: 50:01:5d:86:09:f7:35:0d:a7:d6:ca:34:04:fc:9e:80:f4:ee: 5f:e5:11:7a:f6:dc:0f:22:da:c4:8f:e7:72:5f:90:b2:47:6e: e6:44:27:8d:5b:0c:a6:ff:aa:4a:18:6b:e0:05:3c:0b:92:20: eb:a6:8f:e0:15:26:30:50:96:da:d0:9d:1e:57:e7:b1:95:d9: f6:00:b8:7d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAWKXebYZQw3oDplZeDu2SU/1QPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjhkYjBkYjEwNGY2NTM1NTI2ODlmOTljM2FkZWFjYTg1 OTY2ZmNjZjliZGIzZTFlNTAzMWQ0ZWVmNWE4N2Y1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG5Vk6LsjxtzzY03rlvb992+t6HaGbrr+O/GkEnrytlXqz bfeqhyqz2QCwa+hMHRXTxfYweDQ22mkjc3pPOz2XzzUpMKdOkWqWUh1Up9hDQHLz Afa7494ACB6jBg8KkFgc5ormQCeICuYHE9KgleFVSFOx6BheKPP5GZhRerOgXeAB 3OL22421wuEHZRpQgrNqEgyoo6oas60X9xelgMoTO6FlO2s5xZqNtYOo+e2DCh7H GtqYt75m+KsphoMAJVIjI3S+KLGjUH3t8TPfNbqdIR7U/LynSOjButg5GjDQV3pR UCydNe9AH/piOkJ5aUHT4dp9dGE7vtoUtQe8Lgt5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY0fVuH4OVuzt1qxT4UGKMfBaUc8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiZjZhNzlkLWU3ZmItNGIyMy1iODc4LWM0OWVkOTkxOTFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36IwDQYJKoZIhvcNAQELBQADggEBADH6krdJg2ouJwe1eqKFEptl1AjL 8wMV/hqwZxIw253SV+U00ACvbFqOs9PtgLd7xq7HTl5M0Jjz69n4ow8Z3wFyw0q9 vnwRkV+H9WjR5pdH+6Sd+NhRhclq18bhd57+Gu270+K2qdnslBzH6+DMYXchizEP FGuB8dNQZhKFMD3x4fCTZ07yMDteU4gIWY9YJ7fTreFmTbLSvBNQdFZ4fmjsRlJU siQPtsvHXU6Tsh3RTcggglABXYYJ9zUNp9bKNAT8noD07l/lEXr23A8i2sSP53Jf kLJHbuZEJ41bDKb/qkoYa+AFPAuSIOumj+AVJjBQltrQnR5X57GV2fYAuH0= -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:12 2023 by rpki-client on console-fra.rpki-client.org