$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c766b7f-e698-4e7f-8708-1c01042b5bcc.roa File: 3c766b7f-e698-4e7f-8708-1c01042b5bcc.roa (raw, json) Hash identifier: TSO51nv7JaN0vgcAzwQVwPCLxsJX5yuJNCut+i6HbIQ= Subject key identifier: 7F:F1:BD:A0:12:1B:6C:18:90:1F:1B:B3:41:5C:46:1D:91:8E:13:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 066A5AE2047BB5EABBD47CB1991D6047CB139141 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c766b7f-e698-4e7f-8708-1c01042b5bcc.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.178.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6a:5a:e2:04:7b:b5:ea:bb:d4:7c:b1:99:1d:60:47:cb:13:91:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1a07a5233fcbde68eb1956016ad9b1a28214de56714ef4f07ac5f281c3c2d2db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:40:a5:7f:21:35:3e:21:c9:87:62:17:be: 90:88:9d:ed:23:9f:59:ed:d7:b5:f1:88:e1:31:d8: e0:3f:05:3d:ce:f0:db:52:73:4d:ea:39:1c:c3:12: 53:d9:9b:6d:ad:54:02:9e:71:3e:41:e1:43:80:d5: fc:44:2c:f4:35:33:4f:7c:d7:2b:2d:5f:5e:b5:05: 42:0f:84:24:4f:7a:d2:b5:ee:2e:94:74:93:83:82: 25:c8:a8:8e:ca:85:2b:97:56:60:ad:be:d7:3c:9c: 83:58:31:45:1f:d7:ce:f8:b4:ae:5e:aa:3e:de:e5: 08:04:7a:18:85:8e:ee:71:c6:d9:ec:1e:1d:54:32: bd:64:53:cc:f3:33:f5:64:47:64:dd:3e:ad:4b:ae: ce:b4:63:7c:96:1c:bf:09:db:eb:ed:bb:18:50:6e: 9a:c5:7a:9b:3e:7e:40:b1:8a:8b:ae:0f:18:da:78: 94:21:90:c6:e1:69:26:13:9e:69:5e:ef:3d:ae:23: 0d:9a:43:e4:a3:1f:80:7b:ae:0d:03:a0:0b:66:f5: 0c:cf:14:38:2d:a2:b3:4b:54:f7:d2:9b:5f:0b:c9: 1f:f1:29:d9:ec:ff:53:cd:f0:18:20:c8:23:66:4f: 0a:5a:d7:7b:de:35:ee:26:69:92:a1:a1:5a:9c:51: 21:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F1:BD:A0:12:1B:6C:18:90:1F:1B:B3:41:5C:46:1D:91:8E:13:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c766b7f-e698-4e7f-8708-1c01042b5bcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:9b:04:35:1b:76:42:c4:9a:57:7d:6b:2f:e4:2c:00:94:d5: 28:a2:f1:b5:d5:85:69:cb:d7:26:e8:d6:08:23:41:5b:c6:f4: 27:d6:ec:79:03:7e:28:bd:56:8e:e5:c0:05:e9:e8:ce:7d:9c: 98:23:53:0a:dc:60:63:83:df:7a:2f:2b:ae:8a:6b:00:55:a7: 70:af:7f:cc:16:26:f7:8f:35:8d:9b:af:a7:4d:9f:d5:30:1c: 9a:2e:cf:a0:ee:cb:4f:6e:10:1d:e4:46:7e:67:bd:d8:77:57: 1a:5c:a4:83:d5:aa:98:72:ca:1e:53:d0:a2:48:ad:10:e2:a4: c9:69:79:2d:d7:e4:6e:17:a1:d0:e8:75:03:6e:11:e3:43:89: e1:a6:a1:d7:f1:df:db:4f:de:d8:5d:6e:a5:06:33:3f:4f:f7: ad:76:5f:64:2b:fe:ab:18:7c:f0:62:2c:a6:fb:9d:b4:fd:39: 4e:74:47:9f:53:03:d8:3b:8d:f5:4b:5c:94:60:a9:25:be:92: 01:54:9d:92:69:e2:69:f3:dc:0d:d4:6c:13:ba:0f:cd:f2:b9: 33:0f:4b:ff:97:e8:19:cd:ef:b0:5f:79:26:cb:47:c6:1c:d6: ae:26:09:2d:71:7e:c1:9d:b2:68:e9:3e:06:ed:79:6c:e2:e4: 36:8a:c3:18 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBmpa4gR7teq71HyxmR1gR8sTkUEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTA3YTUyMzNmY2JkZTY4ZWIxOTU2MDE2YWQ5YjFhMjgy MTRkZTU2NzE0ZWY0ZjA3YWM1ZjI4MWMzYzJkMmRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4LEClfyE1PiHJh2IXvpCIne0jn1nt17XxiOEx2OA/BT3O 8NtSc03qORzDElPZm22tVAKecT5B4UOA1fxELPQ1M0981ystX161BUIPhCRPetK1 7i6UdJODgiXIqI7KhSuXVmCtvtc8nINYMUUf1874tK5eqj7e5QgEehiFju5xxtns Hh1UMr1kU8zzM/VkR2TdPq1Lrs60Y3yWHL8J2+vtuxhQbprFeps+fkCxiouuDxja eJQhkMbhaSYTnmle7z2uIw2aQ+SjH4B7rg0DoAtm9QzPFDgtorNLVPfSm18LyR/x Kdns/1PN8BggyCNmTwpa13veNe4maZKhoVqcUSF7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUf/G9oBIbbBiQHxuzQVxGHZGOEyYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNzY2YjdmLWU2OTgtNGU3Zi04NzA4LTFjMDEwNDJiNWJjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAosjANBgkqhkiG9w0BAQsFAAOCAQEAKJsENRt2QsSaV31rL+QsAJTVKKLx tdWFacvXJujWCCNBW8b0J9bseQN+KL1WjuXABenozn2cmCNTCtxgY4Pfei8rropr AFWncK9/zBYm9481jZuvp02f1TAcmi7PoO7LT24QHeRGfme92HdXGlykg9WqmHLK HlPQokitEOKkyWl5Ldfkbheh0Oh1A24R40OJ4aah1/Hf20/e2F1upQYzP0/3rXZf ZCv+qxh88GIspvudtP05TnRHn1MD2DuN9UtclGCpJb6SAVSdkmniafPcDdRsE7oP zfK5Mw9L/5foGc3vsF95JstHxhzWriYJLXF+wZ2yaOk+Bu15bOLkNorDGA== -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:14 2023 by rpki-client on console-fra.rpki-client.org