$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa File: 2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa (raw, json) Hash identifier: LTvSZ28fVHcduaAQXP7xhloODxcw8lwy7cHauZ2GsTM= Subject key identifier: FB:67:79:A4:4A:44:D3:80:8E:D1:5B:7B:70:AA:7F:31:7E:40:C2:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3833E5AF55EDDECDA5CF126A49A4A3AAE57C74FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 198.13.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:33:e5:af:55:ed:de:cd:a5:cf:12:6a:49:a4:a3:aa:e5:7c:74:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=ec88521c9439052545bc1f49fc668466d2317684811c746da4b67645be9595fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fb:3e:55:96:64:22:cd:38:bc:3a:46:a9:4b: b1:28:6c:2b:2d:b5:90:6e:82:23:47:73:ee:cf:74: bb:09:1b:2f:70:6e:4e:1b:aa:28:bd:1f:94:69:80: 6e:5f:81:ef:cb:37:36:ef:c4:d2:63:77:8e:8c:7c: c3:81:b9:fc:16:2a:b4:0a:69:b2:db:fc:bc:dd:58: 48:dc:74:22:d5:c7:1c:dc:71:5a:16:cf:8e:7c:6d: c5:3c:ee:76:c5:e0:f6:71:b2:70:96:58:c3:41:8f: 4d:e4:48:72:a7:9d:d6:ef:8a:7e:ca:cc:a7:d5:e5: 2f:df:dc:d7:19:fc:4f:71:9a:bb:cf:86:14:08:fa: c2:36:16:24:a2:2a:2c:43:74:c4:70:78:13:42:ee: 68:06:3c:bb:84:d5:a3:50:9f:f7:f6:88:68:66:70: 83:1d:51:43:74:dd:f7:a8:8e:cf:04:92:51:ff:30: 4e:cd:d4:f1:e3:b1:29:25:d1:d8:0d:ba:4f:46:86: 6c:49:c5:6c:69:c1:04:ee:61:fe:83:1a:84:d4:17: 1c:10:2d:14:8d:37:57:59:5b:1e:5b:f6:d8:56:ad: f3:32:1c:c5:9f:86:a3:ee:e0:a5:fb:51:c7:2d:8e: 2e:ed:eb:92:3e:cf:93:41:69:91:65:8e:e6:80:f1: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:67:79:A4:4A:44:D3:80:8E:D1:5B:7B:70:AA:7F:31:7E:40:C2:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.13.0.0/20 Signature Algorithm: sha256WithRSAEncryption ab:46:f8:25:ce:0e:4b:e1:dc:fb:70:3f:fd:8f:ae:28:92:cf: 92:45:b1:81:10:6c:e8:63:22:0f:ac:3b:a5:9f:d6:68:52:f8: fe:0c:0e:64:de:86:d4:0a:16:05:9b:bc:d6:b6:a4:3c:a4:b2: de:a3:89:49:35:6b:45:bf:80:32:d0:97:b3:79:f4:03:4d:80: f0:df:60:ec:7b:f6:5b:5e:b3:7b:fb:b3:0f:36:30:c9:32:ef: 57:70:48:08:bd:02:e5:8e:de:a1:8e:a7:07:c9:e3:c1:0b:cc: ae:77:f2:dc:92:b7:48:84:1b:cf:43:e2:bb:8e:ec:0d:3a:77: a9:69:42:0a:19:10:af:a4:7a:5e:47:0b:08:df:41:6e:a7:aa: 4f:8f:ae:d7:e1:4e:72:7f:03:55:05:9c:d6:22:39:25:d9:fd: 3d:18:1e:5d:5a:48:34:0f:0e:1c:45:4a:63:3d:60:d8:8a:39: 56:be:e8:36:20:51:8c:7f:83:d4:1d:3e:af:4c:e3:89:9b:7a: 3f:4f:33:72:08:a7:8e:3a:8d:e5:8a:23:54:dc:07:d1:b9:c8: 6f:92:20:19:3e:23:64:22:6e:59:ff:db:b5:d2:c8:fe:54:40: c5:47:98:18:a5:6f:d1:27:75:9b:1c:4e:32:e1:f3:dd:cc:fc: 12:e5:a8:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUODPlr1Xt3s2lzxJqSaSjquV8dPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzg4NTIxYzk0MzkwNTI1NDViYzFmNDlmYzY2ODQ2NmQy MzE3Njg0ODExYzc0NmRhNGI2NzY0NWJlOTU5NWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP+z5VlmQizTi8OkapS7EobCsttZBugiNHc+7PdLsJGy9w bk4bqii9H5RpgG5fge/LNzbvxNJjd46MfMOBufwWKrQKabLb/LzdWEjcdCLVxxzc cVoWz458bcU87nbF4PZxsnCWWMNBj03kSHKnndbvin7KzKfV5S/f3NcZ/E9xmrvP hhQI+sI2FiSiKixDdMRweBNC7mgGPLuE1aNQn/f2iGhmcIMdUUN03feojs8EklH/ ME7N1PHjsSkl0dgNuk9GhmxJxWxpwQTuYf6DGoTUFxwQLRSNN1dZWx5b9thWrfMy HMWfhqPu4KX7Ucctji7t65I+z5NBaZFljuaA8Z8HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+2d5pEpE04CO0Vt7cKp/MX5AwkYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmY2ZkZWVhLTcwZjgtNDJhOS1hNDllLTQ0NmEzYWY3MmQ4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATGDQAwDQYJKoZIhvcNAQELBQADggEBAKtG+CXODkvh3PtwP/2PriiSz5JF sYEQbOhjIg+sO6Wf1mhS+P4MDmTehtQKFgWbvNa2pDykst6jiUk1a0W/gDLQl7N5 9ANNgPDfYOx79ltes3v7sw82MMky71dwSAi9AuWO3qGOpwfJ48ELzK538tySt0iE G89D4ruO7A06d6lpQgoZEK+kel5HCwjfQW6nqk+PrtfhTnJ/A1UFnNYiOSXZ/T0Y Hl1aSDQPDhxFSmM9YNiKOVa+6DYgUYx/g9QdPq9M44mbej9PM3IIp446jeWKI1Tc B9G5yG+SIBk+I2Qibln/27XSyP5UQMVHmBilb9EndZscTjLh893M/BLlqCM= -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:05 2023 by rpki-client on console-fra.rpki-client.org