$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa File: 4447d57f-1c32-47e8-9850-ca8c559cea4b.roa (raw, json) Hash identifier: 5HpI0gFptssTw8cCVLDPt7uLFbEiDsx/oPxajTv/rNg= Subject key identifier: E6:0D:B0:50:1E:5A:D8:60:BC:AA:A5:9F:F5:53:8E:18:F9:8C:39:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ACCE65DA55340378A1B548B540EC6042DB6F564 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 128.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cc:e6:5d:a5:53:40:37:8a:1b:54:8b:54:0e:c6:04:2d:b6:f5:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2930fff698515b3eb2025f8aed8ca3ff1b3a5454009720ada9ad84dd5c6b9e2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c8:89:b1:3b:79:fd:1c:50:54:c1:70:15:d7: 9f:19:47:7a:79:69:d3:cf:cd:5f:71:dc:fc:9b:aa: f4:25:ef:69:3a:07:7a:cf:17:14:fb:ab:cb:1c:68: df:78:db:ef:c6:42:6c:e6:25:f6:9d:c7:53:e5:32: ef:2f:8e:b8:b9:35:cd:ec:70:4e:c5:39:9a:1d:97: 1a:f9:39:ba:96:3b:23:4e:bd:05:06:3d:8c:5a:94: 7b:9e:7c:82:9d:3c:90:88:b2:4c:0e:33:a4:4e:15: b2:d0:67:84:f7:3d:e5:cc:62:7e:89:24:7b:b6:a6: 77:50:64:c4:3a:42:27:08:58:17:16:c5:7a:96:62: 28:ac:15:5f:35:8d:3e:99:21:22:a7:50:20:08:3b: 40:3a:fd:33:0d:76:fd:38:de:65:ad:84:db:65:46: 14:17:ef:f7:f5:89:fb:1b:91:24:56:f7:6f:ac:9e: 19:40:73:c3:c0:59:22:0d:96:bc:76:ae:4f:8b:c8: 7c:65:d9:76:ce:23:27:4e:8c:55:33:54:b5:91:c3: 4e:de:f9:80:03:f8:8c:26:1a:78:9f:82:a9:a3:73: 23:85:03:ee:64:97:14:d2:92:1a:51:a7:a4:d4:90: 60:c4:e4:73:03:d1:8d:26:a7:03:a5:af:3c:91:72: b8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0D:B0:50:1E:5A:D8:60:BC:AA:A5:9F:F5:53:8E:18:F9:8C:39:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:4a:1a:ee:bf:04:58:9d:50:13:60:d5:cc:c3:ae:0d:04:94: 81:02:0f:97:25:7e:09:7d:7d:ec:7e:c5:12:fd:54:e3:b5:a7: 04:92:02:5c:47:c8:99:e1:98:15:b1:e1:55:9f:5e:2e:a2:8e: a9:94:7b:e6:c0:83:7f:be:0b:76:c9:5e:7d:ff:ee:7d:31:ee: 5b:08:16:6f:e8:a1:b5:3c:ba:8a:31:d0:53:dd:7d:95:29:f6: 8b:39:41:49:db:af:98:ea:5d:28:94:a1:93:ed:37:59:18:99: a5:38:44:5b:15:cf:0b:f8:6f:a5:a9:99:f6:13:8f:75:a8:9e: 3d:5c:df:60:a7:65:89:33:33:8f:f3:61:79:5a:37:4f:51:30: 4c:e7:1f:06:bc:39:02:16:e6:6e:0a:b1:f6:2a:b3:92:72:97: a4:4f:c6:4f:b7:8a:90:67:d4:31:5c:f5:65:65:ed:c0:00:6c: 0e:f3:69:d6:39:93:c8:6b:1e:ec:c1:52:e2:4a:c8:f2:51:6c: dc:be:7c:4b:5f:dc:7a:05:ac:3d:33:85:d4:61:6d:a5:a7:25: da:32:69:b4:ce:e7:87:26:3c:07:29:69:b3:23:34:a8:41:64: 79:9b:e8:42:34:4d:1c:bb:e3:c7:fd:8b:db:9d:8b:74:e4:af: 41:8a:fe:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCszmXaVTQDeKG1SLVA7GBC229WQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTMwZmZmNjk4NTE1YjNlYjIwMjVmOGFlZDhjYTNmZjFi M2E1NDU0MDA5NzIwYWRhOWFkODRkZDVjNmI5ZTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxyImxO3n9HFBUwXAV158ZR3p5adPPzV9x3PybqvQl72k6 B3rPFxT7q8scaN942+/GQmzmJfadx1PlMu8vjri5Nc3scE7FOZodlxr5ObqWOyNO vQUGPYxalHuefIKdPJCIskwOM6ROFbLQZ4T3PeXMYn6JJHu2pndQZMQ6QicIWBcW xXqWYiisFV81jT6ZISKnUCAIO0A6/TMNdv043mWthNtlRhQX7/f1ifsbkSRW92+s nhlAc8PAWSINlrx2rk+LyHxl2XbOIydOjFUzVLWRw07e+YAD+IwmGnifgqmjcyOF A+5klxTSkhpRp6TUkGDE5HMD0Y0mpwOlrzyRcrhRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5g2wUB5a2GC8qqWf9VOOGPmMOZkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NDdkNTdmLTFjMzItNDdlOC05ODUwLWNhOGM1NTljZWE0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCACzANBgkqhkiG9w0BAQsFAAOCAQEAsEoa7r8EWJ1QE2DVzMOuDQSUgQIP lyV+CX197H7FEv1U47WnBJICXEfImeGYFbHhVZ9eLqKOqZR75sCDf74Ldsleff/u fTHuWwgWb+ihtTy6ijHQU919lSn2izlBSduvmOpdKJShk+03WRiZpThEWxXPC/hv pamZ9hOPdaiePVzfYKdliTMzj/NheVo3T1EwTOcfBrw5Ahbmbgqx9iqzknKXpE/G T7eKkGfUMVz1ZWXtwABsDvNp1jmTyGse7MFS4krI8lFs3L58S1/cegWsPTOF1GFt pacl2jJptM7nhyY8BylpsyM0qEFkeZvoQjRNHLvjx/2L252LdOSvQYr+tQ== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:42 2023 by rpki-client on console-ams.rpki-client.org