$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa File: 4391dc68-2a33-4b79-8713-4af8518a52be.roa (raw, json) Hash identifier: Wpds9mqXSYfWB8wno7DtVluFpIUvr5ZuEQojahv7PP0= Subject key identifier: 9A:A7:21:2C:CB:64:F7:68:12:81:46:56:14:AE:AB:AA:7E:61:1D:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 778762D474218BCDB43B03A133EFB916E212A0E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.255.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:87:62:d4:74:21:8b:cd:b4:3b:03:a1:33:ef:b9:16:e2:12:a0:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=292aa2f504df52b4efb8d1d61cebb8e7dced3fab8743370f5cb7c3d7827ba3a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:46:23:93:5c:cb:00:04:5c:f1:0a:ae:c7:db: b6:1f:2b:4a:59:f3:ff:2c:24:c1:fa:67:ee:12:b6: 8e:ce:66:21:c9:07:01:d6:d6:56:83:8f:b1:47:8b: 4d:66:4c:ce:25:0a:87:60:72:4b:5f:5c:8b:27:ab: cf:a5:fd:49:48:d0:3c:6f:8a:d1:a4:4d:b3:10:f2: dd:ca:fa:7c:ff:d6:59:58:29:f8:9b:41:51:5a:4f: 88:ad:98:d5:a6:8f:7e:f3:e0:94:9f:2d:13:28:1b: 03:fe:5f:c8:80:ae:02:3f:f0:5e:df:dc:b3:69:05: 4f:8d:0b:50:4f:61:5f:7c:3a:a8:d9:09:71:29:88: 7c:33:86:9e:bc:ac:a6:e0:f2:84:0f:ac:57:4c:a4: 77:02:a2:64:39:3f:b3:79:aa:f1:b7:f2:a4:4a:37: 03:36:25:04:fc:1a:66:10:c5:fb:16:f5:e7:61:58: 76:10:5b:4d:39:e8:28:dc:4e:21:b3:d0:d1:2e:97: f0:0e:d4:40:91:af:5d:22:d3:9e:d9:33:df:6c:d8: aa:a3:12:75:ea:6e:51:a4:e1:2e:b1:07:0a:7c:cf: 82:ae:fc:2f:d9:e9:08:16:ea:46:ae:e9:27:aa:ca: 30:ff:45:b3:26:2b:98:c6:c2:65:6c:b7:27:4b:46: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A7:21:2C:CB:64:F7:68:12:81:46:56:14:AE:AB:AA:7E:61:1D:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.255.64.0/18 Signature Algorithm: sha256WithRSAEncryption 90:4d:5e:7d:7d:aa:7a:ed:85:7e:6e:ee:33:a9:a1:cc:9f:bc: ae:8d:a1:39:cb:ec:99:cf:95:6e:c6:05:e6:80:c3:46:1a:fd: b4:94:76:5f:c0:ae:ee:8e:a9:6a:c0:b9:07:fa:c2:ef:17:1f: 6f:a5:84:af:f5:73:b4:33:12:10:7a:5a:cc:b7:bf:01:dc:d8: c5:32:95:1b:34:91:73:76:62:05:bf:6d:29:40:72:01:c9:09: 85:9f:06:ea:e2:18:ad:71:f2:ae:fc:6a:61:46:6a:a3:e5:f2: 88:29:72:ed:4b:c1:ba:4e:7f:b8:41:1d:f8:db:be:3c:e7:0f: d7:f3:fc:3c:b8:f9:f9:49:a4:a0:fd:14:bd:ea:f1:fc:cc:7e: e8:67:ab:a1:b0:10:16:58:9f:e5:bd:c7:17:3f:93:0c:39:92: 24:ae:50:0c:77:a5:01:83:77:ef:b5:fd:55:5a:5a:74:28:e9: dd:33:22:ef:b9:01:f0:3c:c8:71:ee:55:b8:6d:8d:05:9d:e9: 05:df:05:e6:4b:ce:8f:31:0a:8c:44:95:a4:d9:39:f5:0f:d3: f9:d5:ba:8f:bf:af:4c:10:d9:f0:d4:b0:41:c8:e4:97:8f:bc: fc:e7:4e:75:a5:de:76:08:8d:32:76:ee:90:72:cf:07:88:ac: 5e:9e:61:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd4di1HQhi820OwOhM++5FuISoOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTJhYTJmNTA0ZGY1MmI0ZWZiOGQxZDYxY2ViYjhlN2Rj ZWQzZmFiODc0MzM3MGY1Y2I3YzNkNzgyN2JhM2EwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwRiOTXMsABFzxCq7H27YfK0pZ8/8sJMH6Z+4Sto7OZiHJ BwHW1laDj7FHi01mTM4lCodgcktfXIsnq8+l/UlI0DxvitGkTbMQ8t3K+nz/1llY KfibQVFaT4itmNWmj37z4JSfLRMoGwP+X8iArgI/8F7f3LNpBU+NC1BPYV98OqjZ CXEpiHwzhp68rKbg8oQPrFdMpHcComQ5P7N5qvG38qRKNwM2JQT8GmYQxfsW9edh WHYQW0056CjcTiGz0NEul/AO1ECRr10i057ZM99s2KqjEnXqblGk4S6xBwp8z4Ku /C/Z6QgW6kau6SeqyjD/RbMmK5jGwmVstydLRgo3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmqchLMtk92gSgUZWFK6rqn5hHcYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTFkYzY4LTJhMzMtNGI3OS04NzEzLTRhZjg1MThhNTJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM/0AwDQYJKoZIhvcNAQELBQADggEBAJBNXn19qnrthX5u7jOpocyfvK6N oTnL7JnPlW7GBeaAw0Ya/bSUdl/Aru6OqWrAuQf6wu8XH2+lhK/1c7QzEhB6Wsy3 vwHc2MUylRs0kXN2YgW/bSlAcgHJCYWfBuriGK1x8q78amFGaqPl8ogpcu1LwbpO f7hBHfjbvjznD9fz/Dy4+flJpKD9FL3q8fzMfuhnq6GwEBZYn+W9xxc/kww5kiSu UAx3pQGDd++1/VVaWnQo6d0zIu+5AfA8yHHuVbhtjQWd6QXfBeZLzo8xCoxElaTZ OfUP0/nVuo+/r0wQ2fDUsEHI5JePvPznTnWl3nYIjTJ27pByzweIrF6eYZI= -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:13 2023 by rpki-client on console-ams.rpki-client.org