$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa File: 41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa (raw, json) Hash identifier: 1nM+fDh5DhNz3F4yEf+STQhmfMENgmOzhCaWAGUsMgs= Subject key identifier: 6B:13:B3:3F:0B:5F:D1:8A:B8:1E:2D:0B:2A:DE:18:5C:9F:78:AC:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74B31B7984C4789DC47DF7A11CBCCB15EF93B161 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b3:1b:79:84:c4:78:9d:c4:7d:f7:a1:1c:bc:cb:15:ef:93:b1:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1d4e8e49577974f7b7abf31ae1fc8ab3328d4cdd3538d4d73adcacb5d592a933, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:33:c0:43:50:1f:c6:c0:6e:20:cd:c3:21:99: 22:0c:ca:e5:33:e0:92:16:cc:04:56:fd:35:da:b0: bd:89:fa:6e:ac:ad:f5:96:db:c9:2c:f0:26:fe:b9: 37:f2:c8:2e:ce:ab:f2:e8:1d:3b:e0:aa:b2:a5:3d: 03:d9:78:7d:0a:c4:cc:b2:e2:e7:0a:2a:e8:a7:cf: 95:3d:1c:b4:ab:70:cf:be:3c:8b:26:d7:13:0a:d1: 18:04:49:c3:a1:4a:21:0d:b2:90:86:e8:2c:e2:ae: 8c:65:b8:aa:0a:15:cf:59:3f:20:7c:77:01:fb:74: 05:c4:ad:72:35:57:9e:26:15:1e:44:60:b6:c2:53: cc:5b:94:9a:b7:b5:84:a8:a5:3b:8d:96:75:e2:05: 7a:9a:4a:b7:7c:c2:90:eb:a2:42:f2:58:a5:cc:37: bf:8a:1f:a1:a0:80:6a:2f:e1:70:86:1d:40:cd:17: 09:b3:1d:12:d5:e8:55:d2:e8:88:ff:d8:00:0e:ec: 36:23:6b:2b:40:a9:ce:8f:ff:c3:c8:fa:e0:2d:e1: ee:d9:4c:f8:cf:9c:21:e8:4f:54:8c:f7:4e:02:85: 91:87:e0:1b:06:9a:44:1e:42:29:11:02:02:c7:d8: 7b:3d:e6:d3:bc:86:8a:99:2b:a0:c3:28:d6:3f:24: 36:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:13:B3:3F:0B:5F:D1:8A:B8:1E:2D:0B:2A:DE:18:5C:9F:78:AC:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:c9:3d:ec:b5:78:08:e8:47:13:6f:0a:9e:86:5c:1e:66:64: ef:c2:c4:84:7c:38:57:84:2f:39:e4:ac:75:f3:b5:b2:61:d1: df:e3:f8:e7:b7:dd:0e:df:38:2f:a2:b9:dd:2d:29:1c:48:f9: 6a:9b:7d:96:15:25:6f:a4:c1:f2:32:90:56:1f:b7:f0:35:8e: 93:a5:a0:16:9f:ba:69:18:6f:cd:97:74:05:03:89:dc:c8:94: 8d:5e:4a:30:96:b0:25:d1:48:fd:be:a1:30:da:33:22:d9:c9: 48:ba:03:43:75:7c:77:97:17:8a:4a:62:29:b7:83:ae:81:af: 4d:dd:a3:41:00:42:13:ac:3c:8d:77:20:76:84:27:a9:50:c4: 32:f1:8c:52:ef:1b:a0:3d:2e:f0:13:d0:f8:8d:d5:24:4b:4b: 2a:a1:bc:e4:bc:90:0a:0b:bd:b6:b6:02:d0:fe:2d:16:5c:ba: 52:1d:fb:0f:79:38:af:ec:41:51:67:fd:f2:b3:dc:e4:3d:12: 63:95:52:80:bd:c8:1e:90:16:8e:0d:bf:6c:50:d2:34:4b:30: 43:26:d2:01:c1:cb:72:57:1a:b7:2b:00:be:43:0c:e7:c9:77: 92:94:8a:f7:89:d3:8f:a5:ea:95:e2:57:ba:22:92:01:16:19: ff:09:35:39 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdLMbeYTEeJ3EffehHLzLFe+TsWEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDRlOGU0OTU3Nzk3NGY3YjdhYmYzMWFlMWZjOGFiMzMy OGQ0Y2RkMzUzOGQ0ZDczYWRjYWNiNWQ1OTJhOTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChM8BDUB/GwG4gzcMhmSIMyuUz4JIWzARW/TXasL2J+m6s rfWW28ks8Cb+uTfyyC7Oq/LoHTvgqrKlPQPZeH0KxMyy4ucKKuinz5U9HLSrcM++ PIsm1xMK0RgEScOhSiENspCG6CziroxluKoKFc9ZPyB8dwH7dAXErXI1V54mFR5E YLbCU8xblJq3tYSopTuNlnXiBXqaSrd8wpDrokLyWKXMN7+KH6GggGov4XCGHUDN FwmzHRLV6FXS6Ij/2AAO7DYjaytAqc6P/8PI+uAt4e7ZTPjPnCHoT1SM904ChZGH 4BsGmkQeQikRAgLH2Hs95tO8hoqZK6DDKNY/JDa3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaxOzPwtf0Yq4Hi0LKt4YXJ94rOowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxZDhmMTdmLTI1M2MtNGRlNS05ZTcyLTJjMjViODJkOGRiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAosDANBgkqhkiG9w0BAQsFAAOCAQEArck97LV4COhHE28KnoZcHmZk78LE hHw4V4QvOeSsdfO1smHR3+P457fdDt84L6K53S0pHEj5apt9lhUlb6TB8jKQVh+3 8DWOk6WgFp+6aRhvzZd0BQOJ3MiUjV5KMJawJdFI/b6hMNozItnJSLoDQ3V8d5cX ikpiKbeDroGvTd2jQQBCE6w8jXcgdoQnqVDEMvGMUu8boD0u8BPQ+I3VJEtLKqG8 5LyQCgu9trYC0P4tFly6Uh37D3k4r+xBUWf98rPc5D0SY5VSgL3IHpAWjg2/bFDS NEswQybSAcHLclcatysAvkMM58l3kpSK94nTj6XqleJXuiKSARYZ/wk1OQ== -----END CERTIFICATE-----Generated at Fri Sep 22 22:26:59 2023 by rpki-client on console-fra.rpki-client.org