$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa File: 38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa (raw, json) Hash identifier: 3x5KxUVQSs1ZTbJ8A847UJjIC+mLbmlvUsoNo7GGAQg= Subject key identifier: 1F:2D:81:8B:BC:2E:48:69:03:9E:1E:5D:77:46:66:9D:60:68:90:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BD895BA5E171C81306DBE0C8A7B07A7FBC45F48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d8:95:ba:5e:17:1c:81:30:6d:be:0c:8a:7b:07:a7:fb:c4:5f:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=5a9335940f0b7dc0a0219e0565b21397c4d16980f07ed799c8b7bd48f66237b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:6f:38:9a:49:a3:b4:37:f3:5e:07:77:d9:25: b3:40:9e:a1:d6:a7:ce:03:f4:51:88:23:44:6e:21: 22:d3:1f:86:d3:9a:15:a5:10:67:c2:b9:01:f2:2b: e8:3b:4d:2d:12:1f:ea:4d:5b:a8:37:05:9f:e1:27: b0:83:ce:fa:07:a9:9f:f7:af:ba:13:80:ab:3e:b6: df:e7:cf:b4:5a:7c:18:ff:e1:19:cd:9e:6b:9b:38: 34:6c:eb:a1:fd:62:6f:df:b6:62:89:9c:b0:4e:98: f1:c7:2e:ad:ad:e5:1a:08:74:80:e6:17:05:f2:4f: 54:f3:e1:1d:06:10:c7:7d:c3:68:01:9a:ea:f5:20: a0:f3:f2:22:73:75:27:84:fa:2c:fe:22:10:21:e3: c8:d2:31:d9:e2:d0:73:68:4b:96:e7:6f:94:3c:f7: d2:e0:cc:4c:73:eb:f0:b1:30:f0:24:fe:d3:8b:05: 6d:55:97:e7:42:06:c0:01:40:77:66:54:f1:7f:83: ac:45:80:3a:74:8a:b3:a2:52:dc:47:c3:ab:f8:01: 78:23:53:cc:9c:c6:e2:fb:c5:5e:50:20:25:d0:d5: 56:8a:d9:fd:e3:14:34:aa:80:5a:b0:07:38:1d:ce: 99:30:51:a3:0d:53:2a:c6:21:02:a7:0a:3b:67:84: 1d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:2D:81:8B:BC:2E:48:69:03:9E:1E:5D:77:46:66:9D:60:68:90:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:27:e8:77:e3:a0:7a:c5:17:8d:5d:65:c4:25:7a:f4:60:32: 93:6f:a5:02:fd:95:fa:89:08:e4:c5:62:18:d8:eb:5a:d5:f8: fd:7a:f9:c0:39:a3:2d:a3:5c:ed:10:d3:c7:de:53:75:ed:f9: 27:c0:89:81:c5:82:96:8e:d5:f9:62:53:7f:91:db:59:07:12: e6:7f:9e:86:bc:21:88:80:42:86:3a:d7:dc:34:a9:7d:0f:d0: 71:ed:4a:0a:71:0f:9d:49:86:ef:20:90:81:8e:c6:8b:a3:07: c5:5d:4c:6c:62:1e:65:63:04:05:5b:14:ef:a1:d2:f8:15:00: 10:7b:1e:af:36:cc:f3:c9:69:10:f8:41:9c:bf:a2:f8:e5:12: d5:82:cd:09:7d:4e:ca:a4:fb:4e:d2:19:b0:fc:c8:1e:c0:e8: 38:8c:94:9c:04:fd:b4:a8:78:34:6c:b5:1d:c8:ff:1a:d8:93: 65:bc:5c:4e:a6:52:59:02:85:4b:07:4d:95:c5:fb:c5:2c:b0: 7e:e5:c9:93:91:53:9e:ef:80:21:97:fe:84:16:65:da:9a:c3: 95:25:f8:a0:4c:13:6f:03:3e:f1:08:92:7d:47:62:19:e9:85: 63:b1:b1:14:e5:c6:f3:e4:cc:bc:69:31:03:da:17:92:7e:68: 77:ae:5c:f5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG9iVul4XHIEwbb4MinsHp/vEX0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTkzMzU5NDBmMGI3ZGMwYTAyMTllMDU2NWIyMTM5N2M0 ZDE2OTgwZjA3ZWQ3OTljOGI3YmQ0OGY2NjIzN2I2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPbziaSaO0N/NeB3fZJbNAnqHWp84D9FGII0RuISLTH4bT mhWlEGfCuQHyK+g7TS0SH+pNW6g3BZ/hJ7CDzvoHqZ/3r7oTgKs+tt/nz7RafBj/ 4RnNnmubODRs66H9Ym/ftmKJnLBOmPHHLq2t5RoIdIDmFwXyT1Tz4R0GEMd9w2gB mur1IKDz8iJzdSeE+iz+IhAh48jSMdni0HNoS5bnb5Q899LgzExz6/CxMPAk/tOL BW1Vl+dCBsABQHdmVPF/g6xFgDp0irOiUtxHw6v4AXgjU8ycxuL7xV5QICXQ1VaK 2f3jFDSqgFqwBzgdzpkwUaMNUyrGIQKnCjtnhB2DAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHy2Bi7wuSGkDnh5dd0ZmnWBokDEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4ZTBhMWViLTMwMzQtNDEwYi05MGUzLWUxOWZmYjQ4ZmMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4IzANBgkqhkiG9w0BAQsFAAOCAQEACCfod+OgesUXjV1lxCV69GAyk2+l Av2V+okI5MViGNjrWtX4/Xr5wDmjLaNc7RDTx95Tde35J8CJgcWClo7V+WJTf5Hb WQcS5n+ehrwhiIBChjrX3DSpfQ/Qce1KCnEPnUmG7yCQgY7Gi6MHxV1MbGIeZWME BVsU76HS+BUAEHserzbM88lpEPhBnL+i+OUS1YLNCX1OyqT7TtIZsPzIHsDoOIyU nAT9tKh4NGy1Hcj/GtiTZbxcTqZSWQKFSwdNlcX7xSywfuXJk5FTnu+AIZf+hBZl 2prDlSX4oEwTbwM+8QiSfUdiGemFY7GxFOXG8+TMvGkxA9oXkn5od65c9Q== -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:18 2023 by rpki-client on console-fra.rpki-client.org