$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45affd42-2744-48f2-a212-a55559bedfe0.roa File: 45affd42-2744-48f2-a212-a55559bedfe0.roa (raw, json) Hash identifier: wS7DHhOyDXkt2hwUbu0dSlIy+9vvl6cpAzJijA/vrDI= Subject key identifier: 3F:5E:B7:B5:B7:1D:D4:52:5C:7D:35:99:04:D7:3B:2E:D3:D0:C8:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 443F781953445656D1A62F5A56B4505E6E8D6729 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45affd42-2744-48f2-a212-a55559bedfe0.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:3f:78:19:53:44:56:56:d1:a6:2f:5a:56:b4:50:5e:6e:8d:67:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=b532798f2d697e01f75b06e182102075df8d264a94680d197fcfca94b9423808, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f4:51:2d:89:1e:7f:11:02:ff:eb:12:81:b1: fa:fe:30:e8:03:85:a4:4a:89:70:f5:b9:da:48:ab: 10:4c:c2:00:0f:84:8d:4f:b6:41:35:22:4c:61:7b: be:5c:ab:8c:87:9f:d5:2e:7f:f2:c3:34:06:34:d4: d2:d9:e9:c3:29:bf:cb:6e:cb:f1:cb:b5:78:d8:b3: 04:31:10:e7:39:08:d4:77:df:e8:b3:94:48:ad:e3: 9d:d5:e1:89:cf:28:1a:65:34:3e:f2:cb:a6:62:71: 33:25:4c:f4:2b:af:74:5f:a4:08:54:1f:ab:92:a2: 5a:35:dd:1a:e1:92:c1:b4:dc:0a:4b:2b:84:f3:cd: e2:59:09:53:72:6e:d8:16:d7:e4:eb:9e:ba:a8:9d: b6:a7:25:b7:f1:59:87:39:0d:c0:c1:04:35:18:25: 37:5a:6d:e2:c4:de:4f:e4:fc:6c:21:43:2c:dd:cb: 65:ef:52:4f:c8:9c:c0:88:c6:c8:93:13:ab:a9:ce: ad:19:0f:36:56:f2:43:7c:8d:51:23:3f:09:26:96: 36:92:4b:a3:d4:97:ff:73:5b:80:80:6a:e9:eb:5a: f4:5d:39:18:7a:bb:ea:98:58:0d:47:31:ae:6d:46: 83:84:40:66:af:72:49:e7:7d:aa:f1:f2:36:54:fa: bf:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5E:B7:B5:B7:1D:D4:52:5C:7D:35:99:04:D7:3B:2E:D3:D0:C8:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45affd42-2744-48f2-a212-a55559bedfe0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.72.0/21 Signature Algorithm: sha256WithRSAEncryption b5:d4:b6:d1:6d:cb:7d:fe:31:d6:a9:c3:b3:df:45:dd:03:21: 12:c2:36:55:cf:6d:9b:a3:72:ac:f5:ef:48:ed:31:af:47:fc: 43:7f:43:11:18:54:51:8d:00:51:7c:95:ec:91:ad:01:01:64: 9d:10:21:01:39:30:0e:ef:7d:53:b9:e9:6c:82:d2:1e:18:d1: 9f:9e:ac:03:73:e0:5b:40:5d:77:53:34:93:41:ad:ff:e8:5a: b0:cb:81:ca:e8:9e:ab:08:26:11:c4:bd:fe:10:b1:b0:03:a2: 1e:40:b5:7b:24:da:c3:91:43:20:cc:7c:3d:af:48:fc:86:91: d5:fe:85:9c:ae:de:e5:31:a6:1b:0a:79:e4:c8:ad:45:ec:0f: 22:8d:da:7c:21:b6:2f:2e:4f:cc:86:ca:23:5e:f3:1e:f8:1a: 0d:fe:ee:9f:ec:d3:7a:15:6c:2d:34:b5:3d:40:76:08:94:91: 1d:f2:59:41:4a:f2:19:6f:e0:aa:8b:cb:60:7f:e2:de:ad:08: 44:64:12:2e:f9:42:56:d1:fd:db:20:11:c1:87:20:7e:36:11: f2:ec:e6:3f:ee:02:e7:3e:41:82:2b:4e:31:eb:b7:e4:16:29: ce:8f:51:1c:4f:5c:ad:19:ad:fc:d0:30:9c:cf:00:39:5d:59: ba:98:f9:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURD94GVNEVlbRpi9aVrRQXm6NZykwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTMyNzk4ZjJkNjk3ZTAxZjc1YjA2ZTE4MjEwMjA3NWRm OGQyNjRhOTQ2ODBkMTk3ZmNmY2E5NGI5NDIzODA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq9FEtiR5/EQL/6xKBsfr+MOgDhaRKiXD1udpIqxBMwgAP hI1PtkE1Ikxhe75cq4yHn9Uuf/LDNAY01NLZ6cMpv8tuy/HLtXjYswQxEOc5CNR3 3+izlEit453V4YnPKBplND7yy6ZicTMlTPQrr3RfpAhUH6uSolo13RrhksG03ApL K4TzzeJZCVNybtgW1+TrnrqonbanJbfxWYc5DcDBBDUYJTdabeLE3k/k/GwhQyzd y2XvUk/InMCIxsiTE6upzq0ZDzZW8kN8jVEjPwkmljaSS6PUl/9zW4CAaunrWvRd ORh6u+qYWA1HMa5tRoOEQGavcknnfarx8jZU+r9HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP163tbcd1FJcfTWZBNc7LtPQyOcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YWZmZDQyLTI3NDQtNDhmMi1hMjEyLWE1NTU1OWJlZGZlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgAEgwDQYJKoZIhvcNAQELBQADggEBALXUttFty33+Mdapw7PfRd0DIRLC NlXPbZujcqz170jtMa9H/EN/QxEYVFGNAFF8leyRrQEBZJ0QIQE5MA7vfVO56WyC 0h4Y0Z+erANz4FtAXXdTNJNBrf/oWrDLgcronqsIJhHEvf4QsbADoh5AtXsk2sOR QyDMfD2vSPyGkdX+hZyu3uUxphsKeeTIrUXsDyKN2nwhti8uT8yGyiNe8x74Gg3+ 7p/s03oVbC00tT1AdgiUkR3yWUFK8hlv4KqLy2B/4t6tCERkEi75QlbR/dsgEcGH IH42EfLs5j/uAuc+QYIrTjHrt+QWKc6PURxPXK0ZrfzQMJzPADldWbqY+Xs= -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:39 2023 by rpki-client on console-fra.rpki-client.org