$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa File: 4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa (raw, json) Hash identifier: J0cpLB5G6aDx4vMgxzEo15zrCmAdkzRIej2Rkh1ZAnc= Subject key identifier: C8:FF:FB:21:CC:FB:6C:29:54:1C:82:7E:8E:73:C9:3A:8E:26:F4:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B66CADEE527940F1EAEC20EE2A5990D8322DBB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:66:ca:de:e5:27:94:0f:1e:ae:c2:0e:e2:a5:99:0d:83:22:db:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=fa2e54b7e5695436da9b10c324783b36cdf9b3cfbc3389e44b016ba848b3f26c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:2f:73:64:96:fd:c9:9e:52:9e:5e:02:0c: 8f:c8:d4:52:8c:38:57:a6:a6:d1:22:0d:05:1b:b9: 41:f7:37:6b:cf:1c:c3:a4:55:e4:8b:96:bf:18:46: 4d:98:17:bb:e5:09:d4:84:6f:b9:20:26:23:8a:51: 1d:98:fa:0e:b2:f9:d0:46:36:77:a7:4a:60:6b:3b: a5:15:87:6c:28:94:62:d6:85:b1:ea:b9:b4:9c:ba: 6c:e8:57:6c:94:bf:15:ae:29:98:c5:95:07:fe:9e: 26:77:0d:dc:10:fe:25:20:b3:d5:52:6f:a6:02:9e: 3d:c9:ee:05:d4:16:b1:5d:50:50:b0:b3:64:d7:0d: 48:a5:9b:f5:83:d9:d2:33:d6:b7:87:4f:b2:d4:fe: 3c:d2:86:cf:c5:1f:98:7d:cc:79:c2:29:77:83:ee: 01:60:4c:aa:90:81:81:a4:9d:f0:77:82:10:5c:45: 4c:8a:5e:21:92:ae:f5:c3:6d:20:5c:f2:0e:17:5e: 32:84:36:24:7e:b5:1b:b4:fa:b8:d6:46:b9:ab:56: 80:71:8e:81:83:ab:a4:2c:a4:ed:ec:d8:f2:b5:69: 7b:a0:d0:fa:d8:d9:d4:75:5b:15:a9:c9:9c:68:1d: 79:86:9a:fd:dc:c7:92:f5:b1:0b:a3:3b:01:95:b6: 83:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FF:FB:21:CC:FB:6C:29:54:1C:82:7E:8E:73:C9:3A:8E:26:F4:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.242.0/24 Signature Algorithm: sha256WithRSAEncryption a8:6d:72:cf:68:2b:88:31:47:d5:a0:b5:f9:20:ae:82:57:d8: 48:a4:fb:37:6c:5b:5e:b8:62:2e:75:2d:49:11:e9:6a:f0:08: 13:87:b9:75:3d:ec:74:a8:00:79:53:fb:a0:70:80:45:47:f6: d4:d4:0f:5a:90:2b:4b:af:36:42:d6:e9:bf:21:59:f6:d5:85: 33:f4:a5:36:db:7d:da:67:de:16:da:6e:34:6a:2f:2b:19:4c: 41:52:e2:9a:cc:39:bc:9f:68:40:df:ea:a9:08:b1:70:39:af: db:c5:1d:35:91:71:76:a7:ac:5f:6a:64:57:b2:c0:27:e0:fd: 93:51:b9:1e:e7:74:2c:6a:dd:0d:f6:6f:c7:66:77:d0:77:ce: 2a:1b:d4:1e:9d:98:cd:ed:17:43:2f:f0:30:5d:70:0c:fb:74: 7d:4d:0d:3f:8b:4b:92:2f:0e:aa:76:15:69:b7:d0:ec:1c:00: 4a:8c:31:5b:ce:e0:33:83:40:e7:2d:b3:8d:33:ba:82:2f:b9: 15:00:57:ff:e3:f4:65:24:9b:ff:62:54:0e:fc:68:ed:fe:bc: 3a:e9:f3:45:e6:f0:9b:8c:6c:71:79:63:0f:66:0f:ca:1f:3c: 3c:9b:a8:88:f4:dd:9d:a1:d9:90:ca:f9:d0:8b:11:10:bb:d5: a3:df:b9:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS2bK3uUnlA8ersIO4qWZDYMi27IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTJlNTRiN2U1Njk1NDM2ZGE5YjEwYzMyNDc4M2IzNmNk ZjliM2NmYmMzMzg5ZTQ0YjAxNmJhODQ4YjNmMjZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2wy9zZJb9yZ5Snl4CDI/I1FKMOFemptEiDQUbuUH3N2vP HMOkVeSLlr8YRk2YF7vlCdSEb7kgJiOKUR2Y+g6y+dBGNnenSmBrO6UVh2wolGLW hbHqubScumzoV2yUvxWuKZjFlQf+niZ3DdwQ/iUgs9VSb6YCnj3J7gXUFrFdUFCw s2TXDUilm/WD2dIz1reHT7LU/jzShs/FH5h9zHnCKXeD7gFgTKqQgYGknfB3ghBc RUyKXiGSrvXDbSBc8g4XXjKENiR+tRu0+rjWRrmrVoBxjoGDq6QspO3s2PK1aXug 0PrY2dR1WxWpyZxoHXmGmv3cx5L1sQujOwGVtoM3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyP/7Icz7bClUHIJ+jnPJOo4m9FQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzMDlhZTJkLTEwYzEtNDY1Yy04Yjc0LTZhN2UwZTNmNzFiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfIwDQYJKoZIhvcNAQELBQADggEBAKhtcs9oK4gxR9WgtfkgroJX2Eik +zdsW164Yi51LUkR6WrwCBOHuXU97HSoAHlT+6BwgEVH9tTUD1qQK0uvNkLW6b8h WfbVhTP0pTbbfdpn3hbabjRqLysZTEFS4prMObyfaEDf6qkIsXA5r9vFHTWRcXan rF9qZFeywCfg/ZNRuR7ndCxq3Q32b8dmd9B3ziob1B6dmM3tF0Mv8DBdcAz7dH1N DT+LS5IvDqp2FWm30OwcAEqMMVvO4DODQOcts40zuoIvuRUAV//j9GUkm/9iVA78 aO3+vDrp80Xm8JuMbHF5Yw9mD8ofPDybqIj03Z2h2ZDK+dCLERC71aPfuZk= -----END CERTIFICATE-----Generated at Fri Sep 22 15:34:20 2023 by rpki-client on console-fra.rpki-client.org