$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa File: 37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa (raw, json) Hash identifier: /tSpatIGuqWbW225Xmo2Y3ZYvBvU5vl9zmWDw+EUyZo= Subject key identifier: A8:1F:4F:B5:46:CB:0A:8C:19:39:29:2C:D0:50:06:C5:EA:92:BB:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01C951DFF564CDD3C8336F9B7466419D9B7D69FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 104.200.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c9:51:df:f5:64:cd:d3:c8:33:6f:9b:74:66:41:9d:9b:7d:69:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b9a3754b8d624f2c4dc0ecb2fa2bbb0caa2481abcb7c005535f5f9a89b183e84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:21:bb:09:0e:39:36:61:45:0a:a2:5b:9a: 1f:d1:14:fb:9b:1f:3c:de:35:45:6d:75:33:08:05: ba:b8:fd:94:55:10:c4:2f:fc:2e:b6:32:c3:a4:4d: e1:a7:5f:86:5e:8f:7c:86:a9:38:96:3d:ff:63:b8: 98:db:4a:ea:e5:6d:95:6c:f6:8a:85:c2:8e:58:d7: 68:99:cc:3f:0f:44:52:25:07:af:33:c5:1b:5e:9c: 76:fe:5e:4a:a5:ac:aa:6d:62:60:8b:ea:d2:86:79: c7:20:08:7d:04:e3:c3:02:b1:87:23:cc:12:83:a7: 79:35:9d:53:10:18:88:be:d3:81:d7:29:79:e5:c0: e5:4a:2a:2c:68:99:0f:1d:94:3a:fa:82:f0:ed:72: 06:2f:74:12:40:8b:89:09:b2:d6:51:49:60:9e:77: c5:6c:cf:fc:09:4b:f5:b6:c2:db:90:bb:e0:ee:be: c4:20:09:a5:7f:e2:f8:36:a4:44:06:fc:20:ba:40: 46:ec:91:ee:53:61:d6:30:94:77:19:9d:5f:9e:fc: 41:8c:e5:13:59:8f:7b:db:3a:77:a7:ed:b0:1b:d4: 3a:f3:38:12:ea:87:9b:fb:78:9d:91:eb:09:c3:60: 24:5f:24:03:d6:87:95:f9:40:d3:c2:0c:73:2c:fe: f8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1F:4F:B5:46:CB:0A:8C:19:39:29:2C:D0:50:06:C5:EA:92:BB:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.200.224.0/19 Signature Algorithm: sha256WithRSAEncryption 5f:25:ae:ce:1e:18:34:c7:37:99:da:59:f6:e9:e1:9f:25:c7: f9:68:b6:b6:d8:7b:ab:db:d8:7b:d8:ba:9a:47:17:8b:9a:68: e3:2b:12:c7:61:f9:40:42:45:f1:98:23:4f:75:a4:7f:bf:69: f7:60:c0:ec:c5:20:b4:0e:41:4a:7c:f1:38:c5:ca:fb:38:2e: d8:e6:c4:1c:fa:d4:cd:d1:95:74:b5:74:7e:33:d9:13:f2:a0: b2:8f:d8:ac:69:55:cd:07:a0:91:8e:09:42:1a:db:33:6a:f5: 82:ed:c3:33:ff:cf:a2:8a:aa:29:47:44:9a:f7:9c:7c:a5:d0: ed:b2:8b:1e:a7:57:3f:42:ad:b5:26:64:56:96:59:7a:a8:54: d0:53:01:de:7f:25:59:f6:28:bc:db:0a:ba:1a:f6:a3:80:fb: 53:ab:f6:ff:6c:c7:bc:96:bf:67:f3:a8:a0:0a:3e:48:95:20: 11:bf:dd:49:99:3c:b8:5f:71:0b:32:85:0f:58:62:b5:b6:89: 55:4b:c7:a5:6f:f6:eb:99:63:15:85:80:e2:b3:f7:69:5c:4d: 8c:1b:ae:8e:cc:a4:7f:42:66:5e:cc:1b:5a:ab:71:96:ed:f7: 89:82:9d:3c:6a:a9:d4:fc:da:a7:bf:38:fd:79:dd:5e:58:39: a1:b0:a9:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAclR3/VkzdPIM2+bdGZBnZt9afswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWEzNzU0YjhkNjI0ZjJjNGRjMGVjYjJmYTJiYmIwY2Fh MjQ4MWFiY2I3YzAwNTUzNWY1ZjlhODliMTgzZTg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/5SG7CQ45NmFFCqJbmh/RFPubHzzeNUVtdTMIBbq4/ZRV EMQv/C62MsOkTeGnX4Zej3yGqTiWPf9juJjbSurlbZVs9oqFwo5Y12iZzD8PRFIl B68zxRtenHb+XkqlrKptYmCL6tKGeccgCH0E48MCsYcjzBKDp3k1nVMQGIi+04HX KXnlwOVKKixomQ8dlDr6gvDtcgYvdBJAi4kJstZRSWCed8Vsz/wJS/W2wtuQu+Du vsQgCaV/4vg2pEQG/CC6QEbske5TYdYwlHcZnV+e/EGM5RNZj3vbOnen7bAb1Drz OBLqh5v7eJ2R6wnDYCRfJAPWh5X5QNPCDHMs/vijAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqB9PtUbLCowZOSks0FAGxeqSu3EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3YmU1MTlkLTBlM2QtNDliOC1iNGZhLWNiMDBmN2EyOWFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVoyOAwDQYJKoZIhvcNAQELBQADggEBAF8lrs4eGDTHN5naWfbp4Z8lx/lo trbYe6vb2HvYuppHF4uaaOMrEsdh+UBCRfGYI091pH+/afdgwOzFILQOQUp88TjF yvs4LtjmxBz61M3RlXS1dH4z2RPyoLKP2KxpVc0HoJGOCUIa2zNq9YLtwzP/z6KK qilHRJr3nHyl0O2yix6nVz9CrbUmZFaWWXqoVNBTAd5/JVn2KLzbCroa9qOA+1Or 9v9sx7yWv2fzqKAKPkiVIBG/3UmZPLhfcQsyhQ9YYrW2iVVLx6Vv9uuZYxWFgOKz 92lcTYwbro7MpH9CZl7MG1qrcZbt94mCnTxqqdT82qe/OP153V5YOaGwqXE= -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:13 2023 by rpki-client on console-fra.rpki-client.org