$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa File: 3f0ed130-c978-4135-ae3e-448821f3a86f.roa (raw, json) Hash identifier: A2zC6rvO24lFfsy1frUhDLUO9A2rPBD9Upn5Bozvohk= Subject key identifier: FE:B2:E8:68:A1:DD:C5:E3:05:8D:EC:D6:25:7D:E4:64:A0:E5:93:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23EB704F0019D0EB2CFE6119DCCCA4A5207E2068 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 57.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:eb:70:4f:00:19:d0:eb:2c:fe:61:19:dc:cc:a4:a5:20:7e:20:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=4a1459a132f08f16101532cf6d5df2e64c347d24974fce4710ad635c0bf30e84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6d:8b:0a:e0:a4:57:cc:11:8a:35:6a:f6:a4: a1:2c:31:06:86:1a:67:f5:7a:6a:fc:29:f1:da:ad: c5:25:be:60:a2:6a:6a:03:23:df:2f:79:87:fc:31: b2:e4:5c:4c:c3:65:c9:97:2e:02:3c:0a:36:7a:a3: 53:2f:be:a5:9f:c8:98:e4:57:d6:0c:78:39:dc:da: 58:7d:b8:83:83:22:ec:f8:2f:d5:62:77:47:6b:f7: 01:63:a3:13:74:0e:74:43:bb:6c:8f:d4:b4:ca:11: e9:6a:66:23:8a:ec:9d:ec:c9:6e:db:37:d8:1c:70: c8:a8:46:fb:c5:04:41:df:34:6a:0b:db:44:d2:63: 29:fd:45:39:f1:a6:c4:0d:4d:cd:2d:06:50:56:47: 89:a6:97:1b:43:fd:af:ab:a8:ed:8e:f0:a6:6e:9b: 41:58:1c:54:f9:6b:2a:ec:f8:e0:84:99:5b:4b:8a: 7d:a5:ef:f3:96:e3:72:e0:b9:b3:64:7b:f0:eb:53: a4:42:22:05:3a:d4:17:86:0c:8c:c9:e7:51:0c:f4: cb:59:f2:11:dd:c2:8b:ec:6e:68:9b:e4:70:92:80: 6c:d8:5c:a4:c7:01:22:7b:40:4c:fc:74:90:70:fc: dc:6d:af:ff:d5:6d:c1:7f:dc:66:bf:af:c3:69:cb: 5d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B2:E8:68:A1:DD:C5:E3:05:8D:EC:D6:25:7D:E4:64:A0:E5:93:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:72:46:9b:d6:f0:47:3c:c5:22:9b:09:1e:74:9d:27:e2:73: b8:a0:86:a3:3e:20:3f:b9:43:7e:e2:ea:a1:06:8d:60:da:8f: e4:60:68:38:33:25:ca:ce:9d:1e:22:eb:ba:e9:84:1d:00:84: be:35:de:f9:c2:bc:5a:ac:23:5d:55:11:d9:6a:e4:5f:7a:4f: 3b:42:cf:41:ec:54:55:c5:e3:c9:a1:88:ab:d1:f0:d9:ed:19: 03:08:92:37:81:bc:92:cd:36:5b:90:b1:8e:b6:a4:ad:1e:3c: 86:ac:74:9c:d1:c2:51:36:ea:62:80:65:bf:61:59:e8:79:74: dd:f6:00:04:7c:3e:b4:8c:2a:c5:aa:8f:1c:25:32:20:f3:dd: 7d:6f:b2:77:9d:d8:91:cf:6b:a8:64:55:e2:e4:a2:2f:46:71: 6f:5c:20:2d:5d:c7:21:ff:0b:01:9e:7e:5d:42:25:0f:da:4b: 12:0b:5a:24:c8:90:2b:81:56:c9:22:c3:18:33:32:80:e8:f1: 50:95:02:37:ee:43:5d:d5:76:46:04:f0:8c:44:08:f9:b6:e4: d4:e9:8a:7c:33:a1:f6:0b:a5:cb:36:60:b0:5c:d2:04:10:73: 9b:70:9b:7d:98:49:2b:de:fc:65:14:fc:b9:63:0f:cf:ab:cb: 39:25:95:58 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI+twTwAZ0Oss/mEZ3MykpSB+IGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTE0NTlhMTMyZjA4ZjE2MTAxNTMyY2Y2ZDVkZjJlNjRj MzQ3ZDI0OTc0ZmNlNDcxMGFkNjM1YzBiZjMwZTg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpbYsK4KRXzBGKNWr2pKEsMQaGGmf1emr8KfHarcUlvmCi amoDI98veYf8MbLkXEzDZcmXLgI8CjZ6o1MvvqWfyJjkV9YMeDnc2lh9uIODIuz4 L9Vid0dr9wFjoxN0DnRDu2yP1LTKEelqZiOK7J3syW7bN9gccMioRvvFBEHfNGoL 20TSYyn9RTnxpsQNTc0tBlBWR4mmlxtD/a+rqO2O8KZum0FYHFT5ayrs+OCEmVtL in2l7/OW43LgubNke/DrU6RCIgU61BeGDIzJ51EM9MtZ8hHdwovsbmib5HCSgGzY XKTHASJ7QEz8dJBw/Nxtr//VbcF/3Ga/r8Npy12HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/rLoaKHdxeMFjezWJX3kZKDlk8YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmMGVkMTMwLWM5NzgtNDEzNS1hZTNlLTQ0ODgyMWYzYTg2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5xDANBgkqhkiG9w0BAQsFAAOCAQEAmXJGm9bwRzzFIpsJHnSdJ+JzuKCG oz4gP7lDfuLqoQaNYNqP5GBoODMlys6dHiLruumEHQCEvjXe+cK8WqwjXVUR2Wrk X3pPO0LPQexUVcXjyaGIq9Hw2e0ZAwiSN4G8ks02W5CxjrakrR48hqx0nNHCUTbq YoBlv2FZ6Hl03fYABHw+tIwqxaqPHCUyIPPdfW+yd53Ykc9rqGRV4uSiL0Zxb1wg LV3HIf8LAZ5+XUIlD9pLEgtaJMiQK4FWySLDGDMygOjxUJUCN+5DXdV2RgTwjEQI +bbk1OmKfDOh9gulyzZgsFzSBBBzm3CbfZhJK978ZRT8uWMPz6vLOSWVWA== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:04 2023 by rpki-client on console-ams.rpki-client.org