$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa File: 3694a095-b131-421a-9330-fac2c9987478.roa (raw, json) Hash identifier: H2nSrRU93x05SpOhY+XbbDpNEP4DhkZMce6wtt7J8gc= Subject key identifier: 14:A5:D3:1E:74:79:91:27:A6:E0:E3:66:C1:9D:BC:35:3B:00:36:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 082AFE2FE207351C90CD53F0C06FBB390BCB4954 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:2a:fe:2f:e2:07:35:1c:90:cd:53:f0:c0:6f:bb:39:0b:cb:49:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1ba0742b831d17267a9253ab537b139b0e1bff6a576ec0be561e7c40c7ff1174, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:aa:37:a3:5a:be:24:70:91:f9:66:8b:c9:1a: cd:d6:4c:63:e3:eb:fa:9d:bb:bd:b1:53:e3:e3:ba: 5e:65:36:18:1f:0b:3c:89:e6:53:26:7d:dc:7b:a6: 8a:ef:e0:8a:63:e4:29:06:10:3b:47:38:27:34:6b: 7a:0e:56:d3:21:af:3d:cd:e4:6c:d8:48:06:16:3a: 71:d8:5f:89:4f:4f:79:80:2a:0d:3f:a2:15:3f:0d: 33:64:4f:7a:7d:53:3a:22:59:9a:a6:39:7f:e5:20: fa:17:f9:27:cb:09:86:83:7d:7c:4d:dd:cf:d2:4f: 59:7a:23:4f:a5:72:7c:29:2c:6d:72:40:a0:0e:5f: 70:66:34:87:f4:b6:27:d3:55:d6:35:06:58:db:c9: 29:9b:e1:cd:06:02:82:19:0a:78:04:b6:35:5b:7d: ff:79:9d:b1:f7:d4:14:50:da:8d:8d:99:d3:19:eb: 3f:75:f2:a7:78:78:84:f9:13:97:f2:cf:80:2b:23: 10:6a:fb:cf:cb:d5:87:a2:43:f5:80:74:de:f8:8a: ae:32:2b:f5:fd:b1:9f:45:3b:18:c9:9d:a7:f3:5d: 9a:2c:ec:79:ea:4b:30:80:26:6a:72:b4:d7:b9:1a: 23:eb:66:86:af:cf:86:2c:8b:aa:df:be:52:b8:dc: 00:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A5:D3:1E:74:79:91:27:A6:E0:E3:66:C1:9D:BC:35:3B:00:36:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:cc:40:22:70:91:8e:6c:e2:51:4d:ec:f7:67:9b:de:ed:d2: cf:47:61:ed:f0:30:cf:3a:d4:11:32:d1:07:52:67:9b:f7:3e: 6e:51:bc:7f:ba:c1:2a:5b:38:79:d9:19:e5:d1:90:71:14:a2: 0e:fc:82:e4:d0:b4:01:43:a8:bf:22:67:18:e6:30:30:60:fd: 0b:71:b6:74:fa:6e:06:a8:6e:14:fb:b7:45:98:b7:64:b4:da: 21:0e:cc:7a:fc:c2:0e:b9:66:de:28:69:97:a9:d6:c6:96:03: b9:2e:4d:f6:ae:b0:b3:4d:23:c2:2a:a7:5a:d0:22:4d:5e:d3: 4a:9e:67:3e:37:50:e8:e1:2e:f9:e2:59:81:52:6e:dc:8c:f3: 9c:38:d0:a1:54:c5:56:54:8b:a2:03:7e:b2:ca:40:0b:b3:f0: 40:8e:51:e1:fa:70:c4:78:db:5c:8b:8d:88:12:23:b1:32:71: 25:43:2d:38:91:8c:74:bd:b5:fb:3e:30:45:32:00:67:59:82: 5b:57:58:81:46:0b:62:32:f2:75:b0:c6:8e:1e:92:be:7c:66: 18:62:f0:53:da:1e:b2:7f:64:6c:57:98:79:d5:79:89:8b:1b: a8:c1:88:96:a9:47:9d:88:e8:8b:7f:79:7c:d3:29:9b:b9:5c: ce:ad:44:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCCr+L+IHNRyQzVPwwG+7OQvLSVQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmEwNzQyYjgzMWQxNzI2N2E5MjUzYWI1MzdiMTM5YjBl MWJmZjZhNTc2ZWMwYmU1NjFlN2M0MGM3ZmYxMTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/qjejWr4kcJH5ZovJGs3WTGPj6/qdu72xU+Pjul5lNhgf CzyJ5lMmfdx7porv4Ipj5CkGEDtHOCc0a3oOVtMhrz3N5GzYSAYWOnHYX4lPT3mA Kg0/ohU/DTNkT3p9UzoiWZqmOX/lIPoX+SfLCYaDfXxN3c/ST1l6I0+lcnwpLG1y QKAOX3BmNIf0tifTVdY1BljbySmb4c0GAoIZCngEtjVbff95nbH31BRQ2o2NmdMZ 6z918qd4eIT5E5fyz4ArIxBq+8/L1YeiQ/WAdN74iq4yK/X9sZ9FOxjJnafzXZos 7HnqSzCAJmpytNe5GiPrZoavz4Ysi6rfvlK43ACBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFKXTHnR5kSem4ONmwZ28NTsANgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2OTRhMDk1LWIxMzEtNDIxYS05MzMwLWZhYzJjOTk4NzQ3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBjTzANBgkqhkiG9w0BAQsFAAOCAQEAPcxAInCRjmziUU3s92eb3u3Sz0dh 7fAwzzrUETLRB1Jnm/c+blG8f7rBKls4edkZ5dGQcRSiDvyC5NC0AUOovyJnGOYw MGD9C3G2dPpuBqhuFPu3RZi3ZLTaIQ7MevzCDrlm3ihpl6nWxpYDuS5N9q6ws00j wiqnWtAiTV7TSp5nPjdQ6OEu+eJZgVJu3IzznDjQoVTFVlSLogN+sspAC7PwQI5R 4fpwxHjbXIuNiBIjsTJxJUMtOJGMdL21+z4wRTIAZ1mCW1dYgUYLYjLydbDGjh6S vnxmGGLwU9oesn9kbFeYedV5iYsbqMGIlqlHnYjoi395fNMpm7lczq1E/Q== -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:52 2023 by rpki-client on console-ams.rpki-client.org