$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4061bcc9-1675-46ae-885e-5350c3322285.roa File: 4061bcc9-1675-46ae-885e-5350c3322285.roa (raw, json) Hash identifier: I3WSQ4soeLkOlkxy7oo+3T2vkkh+orPIl2bmjs2T7/8= Subject key identifier: C1:37:5C:33:05:E9:B5:D5:61:D3:73:FB:DC:00:3B:23:F1:3B:85:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E5310D460FBAEE40D3CEEF2E7A66F55356DDA00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4061bcc9-1675-46ae-885e-5350c3322285.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:53:10:d4:60:fb:ae:e4:0d:3c:ee:f2:e7:a6:6f:55:35:6d:da:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=8fce5572512fbdd5796ba6316ff1a3deaee1d431f9592da55c869c35e52836ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:91:d7:7e:aa:68:6d:65:73:89:68:09:c9:ac: ec:36:3c:24:69:fa:94:08:41:4c:6c:82:34:4c:16: 10:e2:6e:d0:0c:97:34:ac:21:fd:20:4c:d2:c7:93: c3:0d:56:0f:17:e7:92:35:1f:1e:c3:20:e8:68:1b: c8:6f:dc:ec:00:15:23:ac:89:15:fc:38:b7:7f:54: 3f:6f:5d:4b:95:d6:0f:3c:9b:27:95:97:df:42:84: 04:ef:b7:48:d2:99:78:e3:b2:18:13:c5:3e:71:99: 71:06:ef:26:ee:11:69:31:19:04:70:0a:ef:b6:29: e3:b6:a6:a7:c5:9a:fc:21:9f:aa:a3:71:21:fd:20: 75:51:eb:25:56:74:e5:6b:08:b9:e1:ae:21:28:75: a6:96:3f:0e:bc:59:d6:1f:cc:dd:c0:c1:f4:be:11: 89:6c:65:b0:da:1f:1d:8c:d1:a0:6e:da:6e:fc:d4: 81:90:37:df:e6:df:d9:66:1b:9d:5b:2f:97:7e:37: 68:e7:01:50:46:64:0b:d5:da:e9:58:14:2f:05:9c: 46:f5:3a:5a:e8:09:62:55:4a:48:42:dd:59:a3:3d: c3:29:e0:c6:c5:9b:5c:48:f5:dc:25:18:d9:9f:bc: 41:85:91:8d:cc:27:1e:41:19:73:88:ab:5e:ff:fb: d7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:37:5C:33:05:E9:B5:D5:61:D3:73:FB:DC:00:3B:23:F1:3B:85:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4061bcc9-1675-46ae-885e-5350c3322285.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.160.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:32:e9:bd:ec:d4:48:36:ba:40:e9:e7:3f:b4:0b:4b:83:88: db:aa:51:67:a8:04:1f:9d:96:c6:47:23:fe:1a:79:5a:b8:5d: 66:81:36:b0:7a:f7:47:4f:62:6f:5e:6f:d1:07:58:99:82:47: 96:71:46:f1:aa:6b:ac:2e:07:37:02:9c:30:f7:e6:3b:01:53: 9d:6c:30:29:8c:aa:e4:43:87:bb:12:b7:0d:4d:ab:b4:09:90: 20:d9:46:d9:49:0b:5c:d3:83:75:89:b9:0a:21:c4:93:b7:f8: 19:83:db:3e:46:53:c7:a9:d2:b5:45:c6:19:3e:28:4e:6e:6e: 1a:97:87:3f:b0:f0:68:9d:66:87:84:11:8b:96:c8:fb:9e:f2: 05:78:6d:87:46:d7:c9:87:b6:3a:ea:45:fb:0a:f7:62:2d:8c: 8c:bb:0c:6e:3c:ad:ad:94:02:86:b2:35:cf:e6:2a:31:96:cd: 9f:72:1e:a2:af:4d:3b:55:b4:4e:20:47:69:ac:67:57:5f:c4: c8:f7:af:84:67:f7:17:33:b4:53:dc:a5:ad:04:29:ec:74:bd: a4:5c:3c:2c:1d:e7:c9:9c:51:28:63:33:d5:bd:e6:e3:7c:4e: 6e:85:6e:d9:19:b1:db:27:24:be:b0:0b:5e:1d:f6:81:02:d6: 93:d6:73:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXlMQ1GD7ruQNPO7y56ZvVTVt2gAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmNlNTU3MjUxMmZiZGQ1Nzk2YmE2MzE2ZmYxYTNkZWFl ZTFkNDMxZjk1OTJkYTU1Yzg2OWMzNWU1MjgzNmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCskdd+qmhtZXOJaAnJrOw2PCRp+pQIQUxsgjRMFhDibtAM lzSsIf0gTNLHk8MNVg8X55I1Hx7DIOhoG8hv3OwAFSOsiRX8OLd/VD9vXUuV1g88 myeVl99ChATvt0jSmXjjshgTxT5xmXEG7ybuEWkxGQRwCu+2KeO2pqfFmvwhn6qj cSH9IHVR6yVWdOVrCLnhriEodaaWPw68WdYfzN3AwfS+EYlsZbDaHx2M0aBu2m78 1IGQN9/m39lmG51bL5d+N2jnAVBGZAvV2ulYFC8FnEb1OlroCWJVSkhC3VmjPcMp 4MbFm1xI9dwlGNmfvEGFkY3MJx5BGXOIq17/+9enAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwTdcMwXptdVh03P73AA7I/E7hfswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNjFiY2M5LTE2NzUtNDZhZS04ODVlLTUzNTBjMzMyMjI4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjTqAwDQYJKoZIhvcNAQELBQADggEBAFwy6b3s1Eg2ukDp5z+0C0uDiNuq UWeoBB+dlsZHI/4aeVq4XWaBNrB690dPYm9eb9EHWJmCR5ZxRvGqa6wuBzcCnDD3 5jsBU51sMCmMquRDh7sStw1Nq7QJkCDZRtlJC1zTg3WJuQohxJO3+BmD2z5GU8ep 0rVFxhk+KE5ubhqXhz+w8GidZoeEEYuWyPue8gV4bYdG18mHtjrqRfsK92ItjIy7 DG48ra2UAoayNc/mKjGWzZ9yHqKvTTtVtE4gR2msZ1dfxMj3r4Rn9xcztFPcpa0E Kex0vaRcPCwd58mcUShjM9W95uN8Tm6FbtkZsdsnJL6wC14d9oEC1pPWc/c= -----END CERTIFICATE-----Generated at Sat Sep 23 00:46:19 2023 by rpki-client on console-fra.rpki-client.org