$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa File: 3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa (raw, json) Hash identifier: O6xbENaYeMmsxq34utBiGtTWsTdYHbf5J0m+qUzz7Cc= Subject key identifier: E0:EB:FA:90:28:9B:34:20:0B:F0:67:B7:32:7A:34:CD:45:65:10:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 220F64B978AA265B9F36FE6F0F3D86C0428392AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.255.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0f:64:b9:78:aa:26:5b:9f:36:fe:6f:0f:3d:86:c0:42:83:92:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7de77a2ead90979fe150021b0fc5be2ef03573d26951732fb51094d1ac4bef5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:98:1e:78:0f:41:50:bf:46:b9:e6:72:73:ed: ac:34:fe:a6:c8:e8:a7:f4:71:c5:98:73:e8:4d:ab: d2:5e:f2:2d:8f:71:3f:9b:b7:d6:8b:ad:d0:14:04: 9e:f2:fc:ca:5e:22:98:92:6c:1b:b9:74:15:ce:20: 5c:86:97:d4:9a:c3:c4:90:4b:48:19:3b:33:16:6a: 98:4c:37:2b:38:77:a0:a4:dc:72:b5:96:ed:68:23: a4:6a:5f:6e:0f:f0:b0:57:74:5d:e3:a6:90:50:71: 8c:24:56:26:84:89:b7:39:4e:81:a9:70:33:8f:c0: 17:a6:94:49:7c:b7:31:81:39:ba:4a:dc:69:d6:ae: 6d:59:ba:10:af:13:e1:2c:6a:6d:2a:53:3f:23:d6: 63:e7:9e:97:ef:c9:fe:cc:d0:d2:f7:ac:ac:d4:5b: b7:5f:b5:d1:1a:5a:d2:af:76:5b:ea:45:f0:12:da: e7:44:85:e2:39:a7:e1:ec:6c:c9:20:01:fe:cb:0c: 0f:88:93:9f:df:91:02:73:69:22:7b:d2:94:c5:df: c4:de:7c:bf:a3:86:9e:6e:14:e8:d8:c4:4e:bf:45: 55:ef:24:45:0d:97:7d:c2:d6:06:74:26:83:10:9e: e1:fc:f9:29:d9:fc:8e:42:50:2a:80:84:a3:66:6e: 37:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:EB:FA:90:28:9B:34:20:0B:F0:67:B7:32:7A:34:CD:45:65:10:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3522c9be-f71a-4e49-9a01-0096bdc8b2c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.255.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:f5:ec:f3:3c:22:36:2f:08:8a:fb:85:57:73:c9:1b:92:46: 2d:5a:2a:bf:a8:54:76:6c:3a:ee:24:36:cd:56:54:52:1c:64: 0c:94:2b:15:0d:3b:d0:05:47:7e:f6:0c:2b:94:fa:6a:8c:b5: 06:ba:f8:e2:71:fc:de:f2:53:6c:5a:8f:35:cf:e2:76:06:85: 55:1e:f3:d3:71:ca:19:a9:d9:4b:50:89:bc:89:19:da:df:1a: 1e:87:5b:1a:95:5a:82:b3:f1:e4:f9:0d:26:90:31:2c:26:1a: f4:14:b5:56:e6:e5:45:74:24:9e:a2:3f:12:23:11:31:67:52: ce:30:0c:cf:30:2b:1d:c8:7b:ba:f4:bb:77:1b:48:75:bf:63: 67:da:10:8c:83:cb:c2:12:13:a5:c0:25:27:c6:a6:7b:f7:4f: e8:d6:01:98:fb:99:3f:cf:09:62:c0:64:c4:b3:1d:a6:36:8c: fc:19:44:89:11:e2:3a:fa:e8:e7:96:2e:e7:79:6b:72:38:a5: a4:8b:83:2f:a5:36:81:86:59:f8:9d:f5:0c:f4:a1:0f:ac:a0: 82:20:99:bf:46:85:88:ad:af:dc:a0:8e:5c:73:9e:38:c5:5e: 8f:b2:0b:f2:cf:9e:42:ee:cf:07:bc:ec:be:e4:31:f5:79:fd: 60:e6:06:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIg9kuXiqJlufNv5vDz2GwEKDkqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGU3N2EyZWFkOTA5NzlmZTE1MDAyMWIwZmM1YmUyZWYw MzU3M2QyNjk1MTczMmZiNTEwOTRkMWFjNGJlZjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQmB54D0FQv0a55nJz7aw0/qbI6Kf0ccWYc+hNq9Je8i2P cT+bt9aLrdAUBJ7y/MpeIpiSbBu5dBXOIFyGl9Saw8SQS0gZOzMWaphMNys4d6Ck 3HK1lu1oI6RqX24P8LBXdF3jppBQcYwkViaEibc5ToGpcDOPwBemlEl8tzGBObpK 3GnWrm1ZuhCvE+Esam0qUz8j1mPnnpfvyf7M0NL3rKzUW7dftdEaWtKvdlvqRfAS 2udEheI5p+HsbMkgAf7LDA+Ik5/fkQJzaSJ70pTF38TefL+jhp5uFOjYxE6/RVXv JEUNl33C1gZ0JoMQnuH8+SnZ/I5CUCqAhKNmbjfjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4Ov6kCibNCAL8Ge3Mno0zUVlEJQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MjJjOWJlLWY3MWEtNGU0OS05YTAxLTAwOTZiZGM4YjJjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4/zANBgkqhkiG9w0BAQsFAAOCAQEAqvXs8zwiNi8IivuFV3PJG5JGLVoq v6hUdmw67iQ2zVZUUhxkDJQrFQ070AVHfvYMK5T6aoy1Brr44nH83vJTbFqPNc/i dgaFVR7z03HKGanZS1CJvIkZ2t8aHodbGpVagrPx5PkNJpAxLCYa9BS1VublRXQk nqI/EiMRMWdSzjAMzzArHch7uvS7dxtIdb9jZ9oQjIPLwhITpcAlJ8ame/dP6NYB mPuZP88JYsBkxLMdpjaM/BlEiRHiOvro55Yu53lrcjilpIuDL6U2gYZZ+J31DPSh D6yggiCZv0aFiK2v3KCOXHOeOMVej7IL8s+eQu7PB7zsvuQx9Xn9YOYGvA== -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:52 2023 by rpki-client on console-ams.rpki-client.org