$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa File: 482e401f-8bd4-49bd-aa37-5a143d94fa53.roa (raw, json) Hash identifier: /oHWYiaIeNt64xcvVXe2x2zbXPg1PTc8E2MTvf9J0lw= Subject key identifier: 8B:A2:43:7A:FB:8A:9C:91:B0:3B:AF:1B:6B:13:56:BE:0B:95:BB:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B4CB9695968AC324A59D091B6CED284D8BBD4D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:4c:b9:69:59:68:ac:32:4a:59:d0:91:b6:ce:d2:84:d8:bb:d4:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=5a9eec512c981f03d408eee011aab8a28472ba2792e0e18c0bd6649742170c5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:24:28:cd:2c:bf:74:58:42:39:56:a8:44:48: bc:40:e9:08:2a:d2:1b:41:69:6a:92:29:69:0b:53: 9d:4f:c8:b5:a5:ef:18:42:23:6d:e8:c9:1b:c5:e7: 48:c5:49:37:77:0f:34:2b:36:44:2c:ab:a5:da:d1: 0b:61:50:db:a7:47:7f:ba:ba:05:0a:b8:90:af:f0: d7:d1:84:69:11:5a:bd:52:14:94:2d:11:b1:34:0f: fa:31:25:d5:3d:15:5c:a6:0f:94:5a:3e:51:e6:98: 36:0d:e2:86:87:d7:a7:d3:7d:b0:57:71:bd:60:b8: 8f:b9:5a:87:54:b4:32:8d:15:9e:e9:04:57:33:fd: dc:c7:8e:99:60:5a:c2:79:ee:fb:8e:2a:ee:25:ce: bc:20:f7:6f:f4:e6:f4:79:2c:69:50:45:1a:48:06: 2d:5a:dc:ac:3b:91:7e:41:56:9c:6d:b3:14:43:25: 95:0e:1d:82:98:f2:77:0f:b7:76:ac:f7:96:56:09: 1e:98:58:2c:0c:f0:38:3c:ab:e4:d3:23:43:fe:d1: 91:0e:ac:65:36:3b:53:e6:8f:4f:15:ac:e3:ef:06: 65:81:04:c7:9b:88:22:78:a9:a9:f5:bb:92:5f:d8: 11:56:b3:0e:32:48:8c:94:45:0f:5a:00:96:3f:a0: 6a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A2:43:7A:FB:8A:9C:91:B0:3B:AF:1B:6B:13:56:BE:0B:95:BB:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.108.0/24 Signature Algorithm: sha256WithRSAEncryption 13:d9:3c:dd:3c:c4:d9:8c:9e:2e:fd:9c:1f:67:88:72:d3:b3: 5d:71:69:30:6f:1a:60:5e:1b:30:48:82:8e:b7:ab:2c:9e:0a: f5:f9:cf:03:e8:6b:7a:56:3a:29:2c:f9:fc:5f:f1:a8:ec:b0: e3:ac:43:c8:e5:68:03:a7:5d:f7:1f:9e:04:c4:4b:8f:e4:7e: 3f:d3:92:02:ea:37:4e:e8:b3:2b:3b:c3:33:f9:5e:57:a6:01: bb:d3:52:23:d2:f9:4c:56:6e:a5:1b:2b:42:bb:2f:54:d2:d2: 69:12:87:9c:13:88:49:88:3b:5d:b9:10:1a:40:db:56:2b:38: 3f:6f:84:4b:ea:c0:89:e9:64:64:58:96:39:61:07:33:6b:16: e5:10:bf:1d:56:37:d9:69:7d:1d:b8:d3:fc:7b:c7:88:0e:3b: 15:b1:3b:f9:88:de:7b:03:95:54:32:ff:cf:28:16:89:3a:b0: b6:b2:39:2b:22:aa:13:60:a7:e0:7a:6d:82:25:67:05:95:df: 7f:14:68:d9:73:26:dd:92:ae:d3:08:61:d7:fa:5c:15:66:17: 57:d3:d7:58:0b:3e:43:cc:8a:96:4e:ff:da:c1:cb:b1:59:0e: d1:f3:15:93:85:df:c9:19:f3:dc:b5:93:68:08:6f:2c:2f:88: 0c:6f:92:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK0y5aVlorDJKWdCRts7ShNi71NEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTllZWM1MTJjOTgxZjAzZDQwOGVlZTAxMWFhYjhhMjg0 NzJiYTI3OTJlMGUxOGMwYmQ2NjQ5NzQyMTcwYzVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrJCjNLL90WEI5VqhESLxA6Qgq0htBaWqSKWkLU51PyLWl 7xhCI23oyRvF50jFSTd3DzQrNkQsq6Xa0QthUNunR3+6ugUKuJCv8NfRhGkRWr1S FJQtEbE0D/oxJdU9FVymD5RaPlHmmDYN4oaH16fTfbBXcb1guI+5WodUtDKNFZ7p BFcz/dzHjplgWsJ57vuOKu4lzrwg92/05vR5LGlQRRpIBi1a3Kw7kX5BVpxtsxRD JZUOHYKY8ncPt3as95ZWCR6YWCwM8Dg8q+TTI0P+0ZEOrGU2O1Pmj08VrOPvBmWB BMebiCJ4qan1u5Jf2BFWsw4ySIyURQ9aAJY/oGplAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi6JDevuKnJGwO68baxNWvguVuycwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4MmU0MDFmLThiZDQtNDliZC1hYTM3LTVhMTQzZDk0ZmE1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GwwDQYJKoZIhvcNAQELBQADggEBABPZPN08xNmMni79nB9niHLTs11x aTBvGmBeGzBIgo63qyyeCvX5zwPoa3pWOiks+fxf8ajssOOsQ8jlaAOnXfcfngTE S4/kfj/TkgLqN07osys7wzP5XlemAbvTUiPS+UxWbqUbK0K7L1TS0mkSh5wTiEmI O125EBpA21YrOD9vhEvqwInpZGRYljlhBzNrFuUQvx1WN9lpfR240/x7x4gOOxWx O/mI3nsDlVQy/88oFok6sLayOSsiqhNgp+B6bYIlZwWV338UaNlzJt2SrtMIYdf6 XBVmF1fT11gLPkPMipZO/9rBy7FZDtHzFZOF38kZ89y1k2gIbywviAxvklA= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:18 2023 by rpki-client on console-fra.rpki-client.org