$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d8aa8e-8cfa-475d-b0f4-d4eefbae1433.roa File: 46d8aa8e-8cfa-475d-b0f4-d4eefbae1433.roa (raw, json) Hash identifier: 6Vd5BCzmifo/bDYVsqOE6uJg8QINTBU0OswFsZC5ssM= Subject key identifier: 16:9F:81:E2:BE:48:82:D0:45:81:4D:53:15:9D:33:9D:D4:E4:FE:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7265EFA093F4FA899DDB783EB6AF52E8AF19134E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d8aa8e-8cfa-475d-b0f4-d4eefbae1433.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 138.240.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:65:ef:a0:93:f4:fa:89:9d:db:78:3e:b6:af:52:e8:af:19:13:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=6a1f22d21a78c37335ebde4ce83218dbe936f1822905f17efa675c08b6515e69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:97:c2:0d:e5:1b:84:84:02:a2:7c:f1:09:4d: 3c:63:ba:36:0f:bd:64:9c:3f:f6:a4:1a:e1:33:ab: 47:2e:f6:38:58:75:e1:30:f6:e9:46:2d:d3:59:a4: 5d:35:73:26:e3:ca:c7:88:e3:4a:ca:c4:a0:86:51: 92:85:f8:81:98:67:30:6e:43:82:70:44:9c:be:20: d9:2c:c2:aa:dd:10:80:5f:0e:81:df:6f:01:00:35: 1f:25:b6:5c:bc:5d:1c:d8:61:8c:f7:6d:61:b3:8f: 8c:07:df:bd:2e:8d:b4:61:2d:8f:a4:eb:8a:24:51: 82:c7:11:d3:cd:2a:03:2a:da:5a:c4:91:53:98:85: 33:05:48:5c:98:c2:39:f1:30:40:2f:11:87:e5:c4: b6:a4:72:ae:30:d7:2c:0b:10:fd:46:ab:bf:06:1f: 62:4b:d8:0f:1c:78:b5:89:de:bc:95:49:b3:a3:7f: 8a:b1:65:b9:32:36:29:6d:1b:6d:e4:e3:45:89:37: 0b:8c:b6:cc:33:b1:f2:36:12:a3:41:36:73:60:be: 6d:18:24:6c:8f:0b:04:b6:f3:16:93:33:a0:98:50: be:2e:bd:f6:92:f6:28:28:96:ec:d0:69:79:58:18: 8c:fb:13:d1:57:f8:fe:a1:25:58:72:f0:8a:fe:09: 03:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:9F:81:E2:BE:48:82:D0:45:81:4D:53:15:9D:33:9D:D4:E4:FE:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d8aa8e-8cfa-475d-b0f4-d4eefbae1433.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:5b:8e:84:61:5e:5c:f9:1c:65:62:ae:fc:df:f0:60:41:41: 49:9f:2b:a2:1a:e9:9b:00:d9:4a:32:cd:57:53:77:f5:eb:0c: a2:dd:79:ee:85:96:93:d7:66:dc:a6:07:4d:58:3b:cf:17:77: 69:12:68:25:0e:21:c5:2a:99:90:4b:f7:a0:ae:b2:b8:91:3f: 10:22:23:54:28:c7:d2:f4:ef:88:59:ef:6f:36:4d:fd:99:c9: 9b:2a:a2:bd:1c:c1:64:d0:ac:e4:7f:62:a2:88:7f:89:96:89: 78:0a:60:68:46:21:7f:0a:0b:f0:92:4a:31:ce:e7:78:f1:52: 21:6f:f1:a2:95:67:98:82:e3:5f:8e:a0:c2:98:02:de:4b:0c: 6f:b9:4a:ba:37:e7:5f:21:73:80:5d:92:ab:c5:a8:59:a7:2e: 74:13:69:24:c1:86:0b:e9:f0:f8:d5:67:a3:9e:92:ea:08:19: 44:55:7b:b0:23:e8:b4:49:88:9d:05:59:aa:36:b6:76:c6:db: fd:92:f4:a0:c3:25:ee:5d:c0:8c:b9:a5:a9:97:f6:12:bd:72: 3b:df:27:44:4c:f3:aa:00:ed:1f:d0:df:ba:f4:41:11:20:0a: dd:6c:84:eb:34:d5:5a:81:5e:dc:4e:6d:0b:d1:0b:d5:fb:b6: d0:74:cd:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcmXvoJP0+omd23g+tq9S6K8ZE04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTFmMjJkMjFhNzhjMzczMzVlYmRlNGNlODMyMThkYmU5 MzZmMTgyMjkwNWYxN2VmYTY3NWMwOGI2NTE1ZTY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnl8IN5RuEhAKifPEJTTxjujYPvWScP/akGuEzq0cu9jhY deEw9ulGLdNZpF01cybjyseI40rKxKCGUZKF+IGYZzBuQ4JwRJy+INkswqrdEIBf DoHfbwEANR8ltly8XRzYYYz3bWGzj4wH370ujbRhLY+k64okUYLHEdPNKgMq2lrE kVOYhTMFSFyYwjnxMEAvEYflxLakcq4w1ywLEP1Gq78GH2JL2A8ceLWJ3ryVSbOj f4qxZbkyNiltG23k40WJNwuMtswzsfI2EqNBNnNgvm0YJGyPCwS28xaTM6CYUL4u vfaS9igoluzQaXlYGIz7E9FX+P6hJVhy8Ir+CQMhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFp+B4r5IgtBFgU1TFZ0zndTk/mowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2ZDhhYThlLThjZmEtNDc1ZC1iMGY0LWQ0ZWVmYmFlMTQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCK8DANBgkqhkiG9w0BAQsFAAOCAQEAjFuOhGFeXPkcZWKu/N/wYEFBSZ8r ohrpmwDZSjLNV1N39esMot157oWWk9dm3KYHTVg7zxd3aRJoJQ4hxSqZkEv3oK6y uJE/ECIjVCjH0vTviFnvbzZN/ZnJmyqivRzBZNCs5H9iooh/iZaJeApgaEYhfwoL 8JJKMc7nePFSIW/xopVnmILjX46gwpgC3ksMb7lKujfnXyFzgF2Sq8WoWacudBNp JMGGC+nw+NVno56S6ggZRFV7sCPotEmInQVZqja2dsbb/ZL0oMMl7l3AjLmlqZf2 Er1yO98nREzzqgDtH9DfuvRBESAK3WyE6zTVWoFe3E5tC9EL1fu20HTNpA== -----END CERTIFICATE-----Generated at Fri Sep 22 15:34:20 2023 by rpki-client on console-fra.rpki-client.org