$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa File: 34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa (raw, json) Hash identifier: C/ecJNIsHgvhxvtD72EkpPSyI2OTIcdkGGmcpSHVcM8= Subject key identifier: A8:3E:B3:76:0D:CF:52:DF:2A:43:9A:CA:BC:C6:0D:2B:47:2A:8B:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 683DE530546837B343AF5CAB5E830825E7E34575 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:3d:e5:30:54:68:37:b3:43:af:5c:ab:5e:83:08:25:e7:e3:45:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=dce9decaf3301bec6bd40390e93b4d989e3b660fd550e0d4f36871b49a7ac8a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:4b:7f:45:52:41:ee:7a:ca:6c:de:20:91: 2b:99:a6:5d:d5:3e:b4:34:da:4b:d5:e6:ac:06:02: 1f:ba:32:83:2d:72:29:4f:03:ed:4a:02:33:28:a0: 50:a8:c7:9c:65:5c:ed:78:75:20:22:01:7d:ad:c4: 04:22:37:38:0d:fd:1b:9f:40:c5:5b:f0:d0:e3:5b: 78:29:5c:8f:e8:0a:03:51:c8:33:a7:27:b4:4e:64: 99:24:c6:3e:92:80:95:2e:76:0a:2d:bc:ba:f5:a6: 5b:34:ec:b5:01:d8:ca:7e:06:16:08:aa:f4:1d:cd: 7f:e3:94:11:7b:e1:61:34:99:a4:d7:1a:ca:b1:19: a1:b8:01:1c:3e:29:d1:f9:91:b6:c0:d2:68:eb:c1: f9:7b:ad:07:2c:14:f6:9b:b4:8b:e1:ab:62:7c:5c: 47:0a:da:b6:77:45:ea:28:13:bb:9e:9c:53:a2:c0: 6c:83:e7:07:9d:54:65:26:30:68:ca:2d:7b:b1:ff: 23:b5:3b:b5:15:6c:93:80:24:fa:c6:d4:68:2b:6a: 45:ce:ba:75:48:c8:56:c8:fc:02:69:8c:25:61:3f: f4:f9:50:2f:5e:1b:3a:d3:74:67:b0:37:40:2b:92: bb:6c:27:70:de:34:15:e5:cb:1f:ae:b9:4c:98:ba: ac:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3E:B3:76:0D:CF:52:DF:2A:43:9A:CA:BC:C6:0D:2B:47:2A:8B:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.189.0/24 Signature Algorithm: sha256WithRSAEncryption a8:09:f7:b4:78:c5:74:8f:23:b7:8e:12:61:3a:e6:91:9b:c8: 96:01:f0:9f:36:b5:a2:bf:66:66:18:6c:8d:3b:75:53:48:d8: 21:0b:f6:7a:2b:8a:02:12:a7:77:a8:3d:d9:3a:ff:74:d1:3e: 1c:59:15:c3:61:d0:f6:00:b0:84:ec:1c:0e:c0:68:db:6d:ad: 5a:f1:59:69:85:4b:15:bb:73:40:5d:b3:a0:6e:0d:d1:f0:8e: 0e:44:55:d4:03:b2:83:fe:89:4c:c1:b2:d6:b1:4a:38:34:4e: 1b:c2:09:b6:92:fc:e3:5d:98:f1:1b:f7:94:5d:fb:95:40:ca: 94:66:92:a8:84:86:a7:8d:a6:ef:1e:f8:53:45:b6:a4:1e:51: d1:5b:3c:ba:03:41:02:c6:bb:f7:58:f9:0c:ac:2c:e7:f6:f6: 5d:39:6d:f5:48:b3:ee:eb:dc:25:83:a1:2b:2c:02:d4:66:5a: ef:32:e4:b0:93:95:b9:64:7d:9c:70:ee:1e:1b:3e:6b:ca:61: 8c:ec:77:85:c7:b9:8c:80:be:e2:56:e0:f1:31:c3:85:9c:40: d6:f8:96:0f:87:f4:5a:4a:e6:16:cc:4e:b4:06:95:54:ed:5d: ba:de:87:23:67:81:92:21:22:1f:7f:2c:dc:c0:b1:36:b7:6d: eb:b1:98:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaD3lMFRoN7NDr1yrXoMIJefjRXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2U5ZGVjYWYzMzAxYmVjNmJkNDAzOTBlOTNiNGQ5ODll M2I2NjBmZDU1MGUwZDRmMzY4NzFiNDlhN2FjOGE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC28Et/RVJB7nrKbN4gkSuZpl3VPrQ02kvV5qwGAh+6MoMt cilPA+1KAjMooFCox5xlXO14dSAiAX2txAQiNzgN/RufQMVb8NDjW3gpXI/oCgNR yDOnJ7ROZJkkxj6SgJUudgotvLr1pls07LUB2Mp+BhYIqvQdzX/jlBF74WE0maTX GsqxGaG4ARw+KdH5kbbA0mjrwfl7rQcsFPabtIvhq2J8XEcK2rZ3ReooE7uenFOi wGyD5wedVGUmMGjKLXux/yO1O7UVbJOAJPrG1GgrakXOunVIyFbI/AJpjCVhP/T5 UC9eGzrTdGewN0ArkrtsJ3DeNBXlyx+uuUyYuqwVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqD6zdg3PUt8qQ5rKvMYNK0cqi7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0YTgwZmQwLTFkMDUtNDBlZi05NmI5LWJjMmQzOTk0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb0wDQYJKoZIhvcNAQELBQADggEBAKgJ97R4xXSPI7eOEmE65pGbyJYB 8J82taK/ZmYYbI07dVNI2CEL9norigISp3eoPdk6/3TRPhxZFcNh0PYAsITsHA7A aNttrVrxWWmFSxW7c0Bds6BuDdHwjg5EVdQDsoP+iUzBstaxSjg0ThvCCbaS/ONd mPEb95Rd+5VAypRmkqiEhqeNpu8e+FNFtqQeUdFbPLoDQQLGu/dY+QysLOf29l05 bfVIs+7r3CWDoSssAtRmWu8y5LCTlblkfZxw7h4bPmvKYYzsd4XHuYyAvuJW4PEx w4WcQNb4lg+H9FpK5hbMTrQGlVTtXbrehyNngZIhIh9/LNzAsTa3beuxmDw= -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:53 2023 by rpki-client on console-fra.rpki-client.org