$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa File: 386f74be-c953-4ed6-808b-5f23e8a0a6de.roa (raw, json) Hash identifier: jXsKb1+kn+YxAWG3McLady9bKkN07Wu+IRmT42/26kE= Subject key identifier: F6:C7:F7:78:58:00:B6:3C:EF:79:DA:73:72:2F:06:B8:86:CE:DA:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A598551871A3E2A636D23D335C185326F914617 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 172.103.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:59:85:51:87:1a:3e:2a:63:6d:23:d3:35:c1:85:32:6f:91:46:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=bfa682a47ca7acb398a81b9c65eb0291bc2d534e38f2bef5cf7d30e54cea8ecd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:d7:e1:f1:98:d2:60:01:90:11:f9:8c:4b: cf:fc:77:ff:7b:da:8c:77:7c:d1:d6:64:e2:32:7e: 37:a5:ad:59:80:60:5d:73:e2:4d:4b:a0:52:5e:1f: 3c:a8:5f:ec:c3:0a:7f:b2:af:84:59:5f:f5:0a:96: f7:1c:9d:27:73:55:1f:a3:2c:b8:74:15:e8:db:8e: 97:80:9f:28:7a:c1:9b:6e:9d:52:9e:88:66:fc:be: 6b:59:3f:af:5e:e2:71:0c:ed:dd:b5:40:dd:39:c0: 56:31:9d:08:f2:a8:aa:01:0d:44:f1:5f:f5:92:98: e4:36:c9:d5:ed:75:e7:a0:ab:5d:07:c6:24:17:d6: 3f:19:8d:77:1c:10:31:43:44:8f:14:13:46:69:b1: 73:1b:7f:81:02:52:fd:87:5b:fb:13:bc:f3:e9:ca: 14:fa:d5:60:0f:bf:30:fe:54:9e:8f:a5:2f:fc:49: c2:75:95:a5:75:d8:5e:42:6f:4b:2d:64:50:c3:84: 35:ba:b3:6a:53:e0:13:02:4f:56:e7:60:54:16:73: 1a:e2:25:8c:fb:a2:88:0b:bc:9c:45:f6:12:e0:4b: ec:33:88:5c:ac:45:c8:46:4d:91:e6:9a:76:40:2b: 3e:4b:e1:8f:18:c7:b2:25:30:0e:08:26:f0:51:1c: b9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C7:F7:78:58:00:B6:3C:EF:79:DA:73:72:2F:06:B8:86:CE:DA:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.103.40.0/21 Signature Algorithm: sha256WithRSAEncryption a1:17:c6:2f:1e:01:2f:91:9c:cc:71:88:ec:16:88:9c:82:8a: cb:aa:78:03:e4:1d:d4:fe:79:f2:a0:51:6c:fa:f9:d1:d4:d1: d1:86:a5:b6:c6:1d:15:39:bf:64:90:8a:0b:a0:77:6c:3d:b3: d9:3c:81:cd:eb:e1:90:e9:cd:d7:b4:fa:62:60:6d:65:8d:8d: 16:8d:cc:81:17:1d:15:67:44:b6:31:af:53:c3:e5:3d:ce:84: 53:7a:db:c2:95:21:05:ea:39:d1:04:dd:d9:d3:9e:2f:48:c2: 24:08:c1:03:eb:0a:5b:a7:58:0c:2a:f6:af:c3:57:31:bc:49: 57:56:b8:95:89:3f:0b:57:46:2d:1d:0d:69:c5:4a:92:19:ed: 1a:77:86:4d:7e:55:73:c8:8a:25:d0:09:95:5f:2c:7f:c2:d2: 1d:77:31:b3:78:4e:43:2f:7f:22:d1:a8:bd:81:c4:00:b4:ef: cf:d1:ea:11:4a:b4:33:0a:16:f4:a0:9c:cc:36:7e:ab:c8:92: a2:bb:7a:81:20:07:9e:33:c0:cb:23:bc:65:da:e1:ec:dd:aa: 78:8d:3d:ca:60:41:98:c4:a4:ee:83:7e:ea:a1:c1:89:d5:68: 16:a2:a4:b4:cb:93:5a:15:22:a5:68:3a:ff:b9:06:71:b2:ea: 20:11:66:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUalmFUYcaPipjbSPTNcGFMm+RRhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmE2ODJhNDdjYTdhY2IzOThhODFiOWM2NWViMDI5MWJj MmQ1MzRlMzhmMmJlZjVjZjdkMzBlNTRjZWE4ZWNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCVNfh8ZjSYAGQEfmMS8/8d/972ox3fNHWZOIyfjelrVmA YF1z4k1LoFJeHzyoX+zDCn+yr4RZX/UKlvccnSdzVR+jLLh0FejbjpeAnyh6wZtu nVKeiGb8vmtZP69e4nEM7d21QN05wFYxnQjyqKoBDUTxX/WSmOQ2ydXtdeegq10H xiQX1j8ZjXccEDFDRI8UE0ZpsXMbf4ECUv2HW/sTvPPpyhT61WAPvzD+VJ6PpS/8 ScJ1laV12F5Cb0stZFDDhDW6s2pT4BMCT1bnYFQWcxriJYz7oogLvJxF9hLgS+wz iFysRchGTZHmmnZAKz5L4Y8Yx7IlMA4IJvBRHLn3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9sf3eFgAtjzvedpzci8GuIbO2jwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4NmY3NGJlLWM5NTMtNGVkNi04MDhiLTVmMjNlOGEwYTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsZygwDQYJKoZIhvcNAQELBQADggEBAKEXxi8eAS+RnMxxiOwWiJyCisuq eAPkHdT+efKgUWz6+dHU0dGGpbbGHRU5v2SQigugd2w9s9k8gc3r4ZDpzde0+mJg bWWNjRaNzIEXHRVnRLYxr1PD5T3OhFN628KVIQXqOdEE3dnTni9IwiQIwQPrClun WAwq9q/DVzG8SVdWuJWJPwtXRi0dDWnFSpIZ7Rp3hk1+VXPIiiXQCZVfLH/C0h13 MbN4TkMvfyLRqL2BxAC078/R6hFKtDMKFvSgnMw2fqvIkqK7eoEgB54zwMsjvGXa 4ezdqniNPcpgQZjEpO6DfuqhwYnVaBaipLTLk1oVIqVoOv+5BnGy6iARZig= -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:58 2023 by rpki-client on console-ams.rpki-client.org