$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f26a4b-62f1-40da-8ebc-27801bd5f757.roa File: 40f26a4b-62f1-40da-8ebc-27801bd5f757.roa (raw, json) Hash identifier: LmViDRHdjqsYQPBFJmKSmc3MWdC/eSBasB5gNmFjj4A= Subject key identifier: D3:2E:2E:D9:29:F0:AC:64:35:E5:ED:40:50:2C:F0:06:2B:1A:9D:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F7C253A70691D974C1D7DF076689F02BEDED57B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f26a4b-62f1-40da-8ebc-27801bd5f757.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.95.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:7c:25:3a:70:69:1d:97:4c:1d:7d:f0:76:68:9f:02:be:de:d5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2c4c4578f593347a462788dd8b65ee0c15efa40a9ec3f4bfe0f12df2900e6c88, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:98:22:b5:70:18:f8:e4:3a:04:f0:d3:bb: 84:69:7a:59:a9:86:5f:10:41:91:0e:70:47:95:aa: 26:ce:42:9e:9c:f8:52:be:fc:5e:01:7e:bd:65:77: 81:e4:09:eb:25:09:7e:e7:79:af:75:7d:67:df:b2: f8:7a:56:a3:a4:71:14:09:d0:94:a2:5b:d0:8a:a0: 2a:ec:5d:e9:70:fd:b3:bd:68:b4:de:02:ab:0a:66: f1:b1:83:bf:fc:11:b8:d2:5f:c4:17:67:23:7f:95: 35:c2:44:cb:a8:1b:07:e1:53:de:ce:54:b6:a1:85: b6:d6:ea:5f:69:5c:75:90:96:ad:b6:2c:71:a6:a7: c0:af:9a:36:1c:8e:54:96:21:09:e7:17:b0:94:f9: e8:17:93:cf:7c:7d:87:f2:27:01:be:23:4a:70:bf: 81:84:47:e3:83:ee:43:e8:4b:a7:14:4d:b2:e6:b1: 05:c9:31:13:3e:e8:db:4c:ef:f2:5a:d0:6b:27:00: 6c:40:6e:a9:bd:8c:45:68:81:fd:94:12:05:2c:03: bd:4a:57:a6:8b:0e:fc:c7:07:5f:ab:d2:35:41:a1: 6d:a6:ae:66:9a:23:7a:b6:d2:d0:f4:80:d4:68:41: a3:40:aa:b4:4c:9a:ad:62:78:8f:4e:4f:df:4a:ec: 17:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2E:2E:D9:29:F0:AC:64:35:E5:ED:40:50:2C:F0:06:2B:1A:9D:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f26a4b-62f1-40da-8ebc-27801bd5f757.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:93:ba:47:0c:00:63:48:2b:f2:90:f3:5e:eb:ac:5f:fb:51: bb:26:9f:15:95:6d:6f:9c:89:14:64:8e:14:4a:b5:85:8c:e0: 54:42:f3:07:8f:07:be:0a:7c:07:77:ca:38:40:16:10:2c:e6: 8e:03:22:af:17:bd:21:9a:34:d1:0a:a8:43:30:11:62:09:1a: 71:89:71:4a:2c:8a:27:cf:d8:91:b5:11:a9:c2:a0:db:2c:ba: 4f:68:93:6b:40:90:c5:50:11:f5:87:a5:7b:d4:7a:36:9e:65: eb:43:ce:2e:a0:e2:24:af:00:7e:ce:57:ef:87:d8:12:d9:4a: f6:56:57:34:64:b7:a9:f2:65:ec:ad:8f:60:51:ff:b1:4e:97: ca:77:03:43:3f:4e:e1:60:a6:57:94:9c:d4:67:93:d3:26:74: 4f:1f:50:ab:3f:88:1f:4d:64:ea:9e:04:ba:11:8f:c5:76:1c: be:60:6f:7c:b7:36:57:30:29:64:8f:86:fa:7b:ec:5d:3c:20: 21:40:42:bc:5d:d4:7f:46:4f:2f:4a:54:34:67:1c:9a:cd:1b: c8:d0:47:fc:0d:45:a6:9a:25:41:d2:33:72:4e:8b:87:5f:dd: 61:48:06:95:14:f7:be:22:80:06:37:70:3b:92:08:c4:a7:09: cb:a5:a4:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL3wlOnBpHZdMHX3wdmifAr7e1XswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzRjNDU3OGY1OTMzNDdhNDYyNzg4ZGQ4YjY1ZWUwYzE1 ZWZhNDBhOWVjM2Y0YmZlMGYxMmRmMjkwMGU2Yzg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6v5gitXAY+OQ6BPDTu4Rpelmphl8QQZEOcEeVqibOQp6c +FK+/F4Bfr1ld4HkCeslCX7nea91fWffsvh6VqOkcRQJ0JSiW9CKoCrsXelw/bO9 aLTeAqsKZvGxg7/8EbjSX8QXZyN/lTXCRMuoGwfhU97OVLahhbbW6l9pXHWQlq22 LHGmp8CvmjYcjlSWIQnnF7CU+egXk898fYfyJwG+I0pwv4GER+OD7kPoS6cUTbLm sQXJMRM+6NtM7/Ja0GsnAGxAbqm9jEVogf2UEgUsA71KV6aLDvzHB1+r0jVBoW2m rmaaI3q20tD0gNRoQaNAqrRMmq1ieI9OT99K7BctAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0y4u2SnwrGQ15e1AUCzwBisanegwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwZjI2YTRiLTYyZjEtNDBkYS04ZWJjLTI3ODAxYmQ1Zjc1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXzANBgkqhkiG9w0BAQsFAAOCAQEAOZO6RwwAY0gr8pDzXuusX/tRuyaf FZVtb5yJFGSOFEq1hYzgVELzB48Hvgp8B3fKOEAWECzmjgMirxe9IZo00QqoQzAR YgkacYlxSiyKJ8/YkbURqcKg2yy6T2iTa0CQxVAR9Yele9R6Np5l60POLqDiJK8A fs5X74fYEtlK9lZXNGS3qfJl7K2PYFH/sU6XyncDQz9O4WCmV5Sc1GeT0yZ0Tx9Q qz+IH01k6p4EuhGPxXYcvmBvfLc2VzApZI+G+nvsXTwgIUBCvF3Uf0ZPL0pUNGcc ms0byNBH/A1FppolQdIzck6Lh1/dYUgGlRT3viKABjdwO5IIxKcJy6WkIw== -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:58 2023 by rpki-client on console-ams.rpki-client.org