$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa File: 3819daa1-d9d8-4229-a37a-3c8fa9024396.roa (raw, json) Hash identifier: 65jD0POHTZeaTyEKWGx3Vq7uHnYi3isID1OWTUO8DGs= Subject key identifier: E7:0F:44:D2:95:EF:90:A5:AA:8D:CC:8D:87:C1:91:47:64:F8:5E:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AD6F366075636EF5C430A28BE5F670CE852E119 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 144.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d6:f3:66:07:56:36:ef:5c:43:0a:28:be:5f:67:0c:e8:52:e1:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=11149c09537bfef98fcfe3a8ece41db007c78345b5276c0d407e8b9b365779ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ce:89:7d:5b:4c:af:d2:d8:fa:5d:3d:07:3e: f4:a6:f1:90:01:0f:9b:a7:55:50:49:22:d0:91:6d: e3:ff:22:11:41:60:e1:97:57:ab:53:b3:ed:ae:84: 0f:35:6f:d9:c5:96:fe:0f:81:25:a9:70:0b:78:67: ae:df:e6:54:e1:e7:6a:5d:89:cb:57:d7:14:2f:10: f5:38:5b:1c:a5:4d:f4:3a:8a:4d:06:7e:07:3b:13: 60:20:8b:11:b8:c8:4d:63:83:cd:04:0d:d2:48:9e: 90:da:29:e0:f4:56:63:2a:d2:ff:f5:12:0b:01:89: b7:48:56:27:d8:a3:fc:06:d2:1f:2c:c1:f7:a1:9f: 4f:59:df:d2:fe:2d:c6:29:79:a6:39:bd:78:62:e9: 31:38:81:56:fa:a0:a0:a9:4c:4b:6c:14:f9:0a:02: 3e:ea:7d:27:03:f4:ed:de:c1:d6:54:ba:b7:86:bf: dd:15:6a:b1:dc:aa:bf:34:64:85:b4:4f:36:6b:53: e3:35:8d:5f:a6:e7:41:3c:b0:af:65:6f:d1:59:b1: 16:0b:13:19:35:bb:97:be:3b:53:1b:d8:4a:c0:17: c3:53:05:c3:6e:04:14:b4:c7:a0:08:bd:8f:79:e4: 8f:cf:58:1f:bf:f9:27:b2:72:5c:94:64:86:bf:7f: 2e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0F:44:D2:95:EF:90:A5:AA:8D:CC:8D:87:C1:91:47:64:F8:5E:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 51:fe:46:06:42:2d:45:96:9b:ba:04:9c:c2:c9:bc:a2:50:0f: 81:71:a3:fd:b8:a2:2c:f2:b1:40:68:14:d9:36:5e:44:0f:7a: 0a:0d:2b:06:3f:fd:3f:8b:f6:85:aa:e7:bf:e1:fb:c1:04:fd: b9:2e:a2:c8:69:22:e9:a9:02:f9:15:a7:1a:d5:54:26:35:51: c0:6b:86:8f:ce:f7:e1:de:8b:99:ec:5b:e7:c7:bf:8b:a8:2d: 2f:9b:8c:a1:16:eb:91:a1:b2:72:7c:85:51:9d:2f:9c:63:47: 1c:f1:64:18:3a:f7:71:68:6f:a1:3b:d2:26:fe:2b:a3:0f:59: d5:5f:ea:f0:58:b7:1f:b1:3f:58:cd:78:25:a1:5c:2a:27:70: 2c:33:ee:2f:70:0b:da:d8:5c:b4:68:e3:74:b7:80:0f:f5:1a: f4:45:36:05:b1:c7:3d:6e:7e:59:17:39:8f:3e:11:d3:10:00: e9:b5:76:7c:00:16:69:2d:7d:9b:23:7f:b7:20:93:37:22:03: 7c:11:28:98:68:07:e7:4e:3b:5d:84:a3:5f:f2:76:0f:c4:75: 0a:f1:a9:4a:1f:ac:15:ae:fd:00:87:45:d0:a8:6f:37:1f:43: e3:1d:ef:a5:de:7e:e2:b7:1a:d3:23:84:d9:c3:31:22:cd:f0: 5e:14:fa:c7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKtbzZgdWNu9cQwoovl9nDOhS4RkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTE0OWMwOTUzN2JmZWY5OGZjZmUzYThlY2U0MWRiMDA3 Yzc4MzQ1YjUyNzZjMGQ0MDdlOGI5YjM2NTc3OWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtzol9W0yv0tj6XT0HPvSm8ZABD5unVVBJItCRbeP/IhFB YOGXV6tTs+2uhA81b9nFlv4PgSWpcAt4Z67f5lTh52pdictX1xQvEPU4WxylTfQ6 ik0Gfgc7E2AgixG4yE1jg80EDdJInpDaKeD0VmMq0v/1EgsBibdIVifYo/wG0h8s wfehn09Z39L+LcYpeaY5vXhi6TE4gVb6oKCpTEtsFPkKAj7qfScD9O3ewdZUureG v90VarHcqr80ZIW0TzZrU+M1jV+m50E8sK9lb9FZsRYLExk1u5e+O1Mb2ErAF8NT BcNuBBS0x6AIvY955I/PWB+/+SeyclyUZIa/fy7bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5w9E0pXvkKWqjcyNh8GRR2T4XtowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MTlkYWExLWQ5ZDgtNDIyOS1hMzdhLTNjOGZhOTAyNDM5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCQjjANBgkqhkiG9w0BAQsFAAOCAQEAUf5GBkItRZabugScwsm8olAPgXGj /biiLPKxQGgU2TZeRA96Cg0rBj/9P4v2harnv+H7wQT9uS6iyGki6akC+RWnGtVU JjVRwGuGj8734d6Lmexb58e/i6gtL5uMoRbrkaGycnyFUZ0vnGNHHPFkGDr3cWhv oTvSJv4row9Z1V/q8Fi3H7E/WM14JaFcKidwLDPuL3AL2thctGjjdLeAD/Ua9EU2 BbHHPW5+WRc5jz4R0xAA6bV2fAAWaS19myN/tyCTNyIDfBEomGgH5047XYSjX/J2 D8R1CvGpSh+sFa79AIdF0KhvNx9D4x3vpd5+4rca0yOE2cMxIs3wXhT6xw== -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:45 2023 by rpki-client on console-fra.rpki-client.org