$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa File: 3115e46c-d653-48fc-b04a-cbdba014f621.roa (raw, json) Hash identifier: Ylf/gp0NCNO8YdNTSNPMRmcL4JIFKs4YIsd5N1CEiyY= Subject key identifier: 3D:73:CC:80:F7:7C:CD:9B:B3:72:4E:6B:A0:B9:13:07:1F:23:6C:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D36883D8684F679535BB4C9E5652D1E268B7BA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:36:88:3d:86:84:f6:79:53:5b:b4:c9:e5:65:2d:1e:26:8b:7b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2c4e211b91261eb04f1344fe2feca8cb1276bb55a145ae43bca761315156acd3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b0:64:a0:64:51:78:37:6f:0f:db:2f:6b:76: 3e:22:44:2a:6f:be:b1:0e:99:97:5e:54:8b:1b:d7: b3:dd:ed:e4:39:8e:3c:d7:48:cd:b0:a4:2a:2c:5d: 5d:99:57:8b:77:af:17:2d:cb:fe:f3:e5:8e:69:79: 51:47:c5:f5:81:ba:91:42:05:bc:2e:a9:b1:33:bc: b0:c1:a2:84:2e:c7:a4:85:60:7c:ee:8f:48:ab:1b: d5:3d:6d:db:8d:45:9a:94:f2:71:60:50:a4:61:0d: a2:78:b4:79:32:f4:1e:89:d9:08:74:71:a1:30:47: 8f:4d:77:02:3b:54:ba:ea:44:64:e2:34:a2:17:cc: 7a:29:a0:c2:93:26:95:31:24:b0:13:d7:f3:05:8e: 9c:66:bc:06:cc:8a:6a:4b:9b:bb:9c:bf:8e:c1:e1: 5a:2e:bc:c4:e5:ad:29:61:f1:3f:a0:84:a5:ba:aa: c0:e5:f4:55:8b:e8:4b:ca:a2:c7:dd:fb:d3:1f:42: 8e:e5:64:0c:d2:43:0f:0c:c3:f4:d8:44:09:82:f2: 04:3d:d0:88:b9:a7:69:6e:2c:60:04:b9:81:2d:87: 2c:df:43:40:fd:2c:a2:46:82:b5:88:b3:5e:dd:77: 3a:46:3e:c8:29:65:1e:9f:89:67:63:cd:0f:98:1d: 72:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:73:CC:80:F7:7C:CD:9B:B3:72:4E:6B:A0:B9:13:07:1F:23:6C:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.99.0/24 Signature Algorithm: sha256WithRSAEncryption 84:11:7f:76:8e:30:d4:15:b0:49:86:3a:1b:ad:40:3e:b7:74: b4:46:3c:96:b9:6d:cc:d4:ae:d7:e8:b2:f9:43:09:bb:fd:d1: 8e:52:c8:3e:92:48:1f:d1:db:ae:30:4b:6a:02:65:de:7e:9e: 0c:f5:4e:e5:7f:79:d6:ca:7b:52:2f:54:77:ce:c3:f5:d0:08: 7e:c5:b7:4d:af:5b:dd:26:1e:4f:b6:bc:80:8a:14:64:fe:84: 25:5e:1f:86:21:9c:37:e2:42:54:57:dd:f0:c5:bb:dc:5e:0a: a0:48:1d:a3:75:bc:10:2f:12:c9:e6:8a:80:2e:68:6b:28:98: c8:cd:f3:31:0f:9f:72:0a:fc:83:1d:48:b5:82:4f:33:f1:9d: ad:69:9e:7c:55:da:55:02:f6:04:9a:f7:99:6c:95:64:fe:fb: d6:b5:21:83:e2:86:a1:55:0d:b0:e5:ae:50:75:ba:a6:50:63: 2f:98:af:3d:8a:6d:03:3b:bc:27:b5:b9:5e:91:6b:8f:64:59: 3c:12:a3:57:ef:13:73:2a:43:9b:28:0d:ab:d3:e2:34:80:49: e9:fc:24:26:4f:b8:e0:de:dd:84:69:f8:8b:11:d9:90:7d:5e: e3:02:14:81:d0:7d:a8:1b:e7:33:44:58:e5:d9:2f:00:dd:f1: 15:83:de:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTTaIPYaE9nlTW7TJ5WUtHiaLe6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzRlMjExYjkxMjYxZWIwNGYxMzQ0ZmUyZmVjYThjYjEy NzZiYjU1YTE0NWFlNDNiY2E3NjEzMTUxNTZhY2QzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmsGSgZFF4N28P2y9rdj4iRCpvvrEOmZdeVIsb17Pd7eQ5 jjzXSM2wpCosXV2ZV4t3rxcty/7z5Y5peVFHxfWBupFCBbwuqbEzvLDBooQux6SF YHzuj0irG9U9bduNRZqU8nFgUKRhDaJ4tHky9B6J2Qh0caEwR49NdwI7VLrqRGTi NKIXzHopoMKTJpUxJLAT1/MFjpxmvAbMimpLm7ucv47B4VouvMTlrSlh8T+ghKW6 qsDl9FWL6EvKosfd+9MfQo7lZAzSQw8Mw/TYRAmC8gQ90Ii5p2luLGAEuYEthyzf Q0D9LKJGgrWIs17ddzpGPsgpZR6fiWdjzQ+YHXKdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPXPMgPd8zZuzck5roLkTBx8jbIswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMTVlNDZjLWQ2NTMtNDhmYy1iMDRhLWNiZGJhMDE0ZjYyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjU2MwDQYJKoZIhvcNAQELBQADggEBAIQRf3aOMNQVsEmGOhutQD63dLRG PJa5bczUrtfosvlDCbv90Y5SyD6SSB/R264wS2oCZd5+ngz1TuV/edbKe1IvVHfO w/XQCH7Ft02vW90mHk+2vICKFGT+hCVeH4YhnDfiQlRX3fDFu9xeCqBIHaN1vBAv EsnmioAuaGsomMjN8zEPn3IK/IMdSLWCTzPxna1pnnxV2lUC9gSa95lslWT++9a1 IYPihqFVDbDlrlB1uqZQYy+Yrz2KbQM7vCe1uV6Ra49kWTwSo1fvE3MqQ5soDavT 4jSASen8JCZPuODe3YRp+IsR2ZB9XuMCFIHQfagb5zNEWOXZLwDd8RWD3mM= -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:04 2023 by rpki-client on console-ams.rpki-client.org