$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa File: 3a08c855-4cd4-4fa5-b780-8a773463b987.roa (raw, json) Hash identifier: crOiweCm6LLb/V+/e6KuGJIVmvaLdhrMK5NyLdsbUtE= Subject key identifier: 4A:79:BE:14:65:99:7E:04:82:FF:4F:91:BD:AA:69:9B:7C:38:13:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72E78C28896AE8231C450BDDE34DD8E35413C129 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 03:04:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e7:8c:28:89:6a:e8:23:1c:45:0b:dd:e3:4d:d8:e3:54:13:c1:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=6427297a18c52e818b843f2e4e6a086ea91df756056d63a8905bbf6c2006c88a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:79:08:3b:b8:9c:62:6b:86:03:d5:09:83:fe: 2f:36:80:2a:cd:03:e7:7e:83:81:30:08:69:f2:89: 8f:4c:2f:1f:06:3f:5a:a4:a8:6c:c0:d0:f9:ee:14: ad:7c:53:01:fd:ec:97:d4:eb:e8:75:99:e1:00:40: 92:7e:4c:1c:bf:b9:8c:c8:95:ac:59:44:cc:22:9a: 36:42:a1:0e:a0:63:84:a8:9b:f4:71:eb:f1:84:a5: f0:bb:02:59:7b:33:08:c2:d3:18:1f:3a:fe:b7:54: 1a:c4:d2:9b:b2:c6:72:32:17:57:44:52:1f:41:a0: 25:5e:9d:6a:b7:e3:aa:2a:fc:60:83:34:eb:41:05: ea:13:af:42:f6:42:5a:e8:79:b7:f7:0e:a3:c8:c6: 0c:9a:f4:8e:92:46:de:46:a8:83:db:0d:ab:da:1e: 5d:91:76:d2:77:4e:d7:9a:6c:0c:67:60:b3:bc:ae: 44:ab:d2:7e:34:f9:2b:64:45:5f:2f:d4:83:d8:0d: de:b6:d0:a8:85:c8:ac:fb:b3:92:4a:80:d4:97:1f: d4:59:89:3d:83:99:74:bc:e7:eb:a4:03:76:6a:b0: 01:88:19:fc:79:d3:a1:fc:3e:a3:b9:0e:cd:bb:47: 79:40:f0:ef:81:0b:12:86:8d:bd:c3:51:91:cd:4b: 43:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:79:BE:14:65:99:7E:04:82:FF:4F:91:BD:AA:69:9B:7C:38:13:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.16.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:67:6b:56:7a:43:20:d0:25:ea:ec:70:0a:39:1c:78:96:37: 36:a1:18:38:e4:08:a1:78:04:35:1a:93:5f:db:26:5b:76:0f: 3c:6c:7d:2f:e3:30:91:52:b9:e4:98:1a:65:95:7a:1c:5c:b9: 6a:e4:07:52:12:a2:e1:15:01:25:73:28:74:74:ad:d8:df:cb: 34:dc:fc:7e:64:75:6e:30:d4:1b:e4:92:82:94:85:62:00:36: a2:05:ed:d0:ba:1c:73:be:ae:bc:f1:6b:b4:e0:94:ca:ae:1d: 57:ef:c1:6e:e1:cb:47:68:30:e5:10:b0:62:40:7c:ba:bd:fe: f0:22:90:e2:b3:b4:76:81:b6:b2:97:08:99:aa:07:f4:76:fe: ac:95:77:09:58:ec:d8:ed:6e:76:fe:53:e8:1c:4e:7e:66:c0: 03:b8:6c:ac:21:cd:96:53:76:d5:d2:6c:52:d5:5d:13:e8:5e: 8c:c7:3e:e5:8f:e6:a3:23:cd:56:d2:e7:21:c9:93:91:b5:d2: 2a:f8:a3:c1:45:f0:9e:f6:db:3f:bb:e7:0e:5c:31:85:f6:a3: 50:59:6f:3d:71:55:e4:14:d3:7c:9c:d5:31:af:b8:62:2a:51: eb:5e:2b:25:2e:48:9c:03:e5:66:c2:de:91:79:93:bf:14:d0: fa:fb:e1:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcueMKIlq6CMcRQvd403Y41QTwSkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDI3Mjk3YTE4YzUyZTgxOGI4NDNmMmU0ZTZhMDg2ZWE5 MWRmNzU2MDU2ZDYzYTg5MDViYmY2YzIwMDZjODhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqeQg7uJxia4YD1QmD/i82gCrNA+d+g4EwCGnyiY9MLx8G P1qkqGzA0PnuFK18UwH97JfU6+h1meEAQJJ+TBy/uYzIlaxZRMwimjZCoQ6gY4So m/Rx6/GEpfC7All7MwjC0xgfOv63VBrE0puyxnIyF1dEUh9BoCVenWq346oq/GCD NOtBBeoTr0L2Qlroebf3DqPIxgya9I6SRt5GqIPbDavaHl2RdtJ3TteabAxnYLO8 rkSr0n40+StkRV8v1IPYDd620KiFyKz7s5JKgNSXH9RZiT2DmXS85+ukA3ZqsAGI Gfx506H8PqO5Ds27R3lA8O+BCxKGjb3DUZHNS0MVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSnm+FGWZfgSC/0+Rvappm3w4E4cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhMDhjODU1LTRjZDQtNGZhNS1iNzgwLThhNzczNDYzYjk4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASXlBAwDQYJKoZIhvcNAQELBQADggEBAHxna1Z6QyDQJerscAo5HHiWNzah GDjkCKF4BDUak1/bJlt2DzxsfS/jMJFSueSYGmWVehxcuWrkB1ISouEVASVzKHR0 rdjfyzTc/H5kdW4w1BvkkoKUhWIANqIF7dC6HHO+rrzxa7TglMquHVfvwW7hy0do MOUQsGJAfLq9/vAikOKztHaBtrKXCJmqB/R2/qyVdwlY7Njtbnb+U+gcTn5mwAO4 bKwhzZZTdtXSbFLVXRPoXozHPuWP5qMjzVbS5yHJk5G10ir4o8FF8J722z+75w5c MYX2o1BZbz1xVeQU03yc1TGvuGIqUeteKyUuSJwD5WbC3pF5k78U0Pr74fc= -----END CERTIFICATE-----Generated at Mon Aug 28 15:21:23 2023 by rpki-client on console-ams.rpki-client.org