$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49e638f6-0362-4c37-b8e1-db367d04f229.roa File: 49e638f6-0362-4c37-b8e1-db367d04f229.roa (raw, json) Hash identifier: wafkCS4k691am2m8AiGMeKqPmnqdZolte1ropI8hVh8= Subject key identifier: 94:AB:76:DC:AC:5D:E6:E2:1E:C4:2F:80:E5:D6:43:E7:A1:9D:49:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67920F4290DA959B2F1FDB64DA9D923CC90F953E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49e638f6-0362-4c37-b8e1-db367d04f229.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 75.45.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:92:0f:42:90:da:95:9b:2f:1f:db:64:da:9d:92:3c:c9:0f:95:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=8c81cf97d8bc52572ccf4d3d2f19d34b4b2845252153ff982ce84ff3ef9a795a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7d:e5:0c:b7:39:36:4f:1b:4c:9a:89:0b:18: 09:9b:6d:86:21:43:50:98:87:93:5e:0d:cf:11:28: 02:d9:8f:ff:e9:6d:f0:20:69:8c:5f:98:63:f2:ff: fc:6b:c5:f2:a9:7f:6a:ee:f5:3f:31:1c:03:9e:e1: e0:a6:37:65:89:64:08:82:7a:c5:56:75:0b:2b:88: 38:1e:fe:6f:47:a2:b1:0f:84:b4:d9:a2:56:8a:4a: 79:85:65:6c:61:b0:18:67:9a:49:14:e7:ed:03:e4: ce:d2:3f:99:30:09:e5:76:f1:03:9d:4c:fb:e6:c0: f4:98:f0:c1:02:52:83:4e:96:10:43:41:26:e0:a6: 86:69:08:a9:a3:28:e3:b9:b3:f0:2d:6c:1d:7c:df: a0:ea:26:9f:dc:da:87:a5:5f:6a:0c:ae:00:d2:c8: d4:74:b0:e9:9e:9c:a2:e3:cb:93:1b:66:47:49:b7: 76:e6:0c:20:91:18:dd:65:20:52:85:25:5f:b2:1e: ec:bd:06:c4:4d:cc:ee:10:1c:90:8a:51:71:76:78: e2:2e:05:26:5a:83:7c:5d:5b:6a:71:7e:17:8a:5d: 6a:7d:75:91:ca:e2:5a:35:74:ec:71:01:e3:fd:8a: 57:24:d4:71:bf:33:d3:cc:27:e3:af:06:92:57:48: 41:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AB:76:DC:AC:5D:E6:E2:1E:C4:2F:80:E5:D6:43:E7:A1:9D:49:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49e638f6-0362-4c37-b8e1-db367d04f229.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.45.128.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:de:65:1c:0b:43:61:15:84:d3:b8:3a:76:10:fe:7d:36:bb: 42:9a:7e:39:9e:c6:da:4a:98:a6:b6:fa:ec:9c:25:5b:fa:36: 0a:3b:9a:e2:11:d2:1e:fa:c6:ed:12:20:fb:0a:67:1f:ff:ee: ed:56:90:a3:93:0b:88:b6:7d:99:c2:82:88:fd:16:3f:cd:6f: 3c:f0:89:34:2d:80:3a:d2:70:1c:e5:67:71:d0:15:e8:b5:35: d7:33:23:6c:41:71:ce:1e:8d:db:15:f1:35:51:d3:e2:2a:57: a9:0a:ff:0f:28:ed:0b:aa:93:13:84:55:9a:20:46:66:04:e6: 99:67:d2:5a:39:f4:a0:b7:02:53:98:60:0c:5c:09:0c:fe:36: 76:92:76:2f:1f:98:12:76:be:8a:c9:32:f3:5c:ca:3f:cd:9d: cf:96:1f:4a:e9:e5:03:d0:d1:0f:43:3a:5b:63:3b:22:8f:b4: b7:bf:0a:fc:14:e7:8a:9b:54:e8:20:b1:b9:b3:29:41:89:33: dd:d1:fc:f8:1f:d5:5a:12:35:c8:11:18:b8:9b:ed:d4:a3:48: b7:f1:35:da:e2:25:31:bd:45:93:f5:ff:07:22:bf:08:15:a4: 63:82:b1:9b:fa:ee:f7:3c:98:4c:c0:33:da:12:2c:4c:34:57: da:0b:b1:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ5IPQpDalZsvH9tk2p2SPMkPlT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzgxY2Y5N2Q4YmM1MjU3MmNjZjRkM2QyZjE5ZDM0YjRi Mjg0NTI1MjE1M2ZmOTgyY2U4NGZmM2VmOWE3OTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClfeUMtzk2TxtMmokLGAmbbYYhQ1CYh5NeDc8RKALZj//p bfAgaYxfmGPy//xrxfKpf2ru9T8xHAOe4eCmN2WJZAiCesVWdQsriDge/m9HorEP hLTZolaKSnmFZWxhsBhnmkkU5+0D5M7SP5kwCeV28QOdTPvmwPSY8MECUoNOlhBD QSbgpoZpCKmjKOO5s/AtbB1836DqJp/c2oelX2oMrgDSyNR0sOmenKLjy5MbZkdJ t3bmDCCRGN1lIFKFJV+yHuy9BsRNzO4QHJCKUXF2eOIuBSZag3xdW2pxfheKXWp9 dZHK4lo1dOxxAeP9ilck1HG/M9PMJ+OvBpJXSEEbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlKt23Kxd5uIexC+A5dZD56GdSbMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5ZTYzOGY2LTAzNjItNGMzNy1iOGUxLWRiMzY3ZDA0ZjIyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLLYAwDQYJKoZIhvcNAQELBQADggEBAA7eZRwLQ2EVhNO4OnYQ/n02u0Ka fjmextpKmKa2+uycJVv6Ngo7muIR0h76xu0SIPsKZx//7u1WkKOTC4i2fZnCgoj9 Fj/NbzzwiTQtgDrScBzlZ3HQFei1NdczI2xBcc4ejdsV8TVR0+IqV6kK/w8o7Quq kxOEVZogRmYE5pln0lo59KC3AlOYYAxcCQz+NnaSdi8fmBJ2vorJMvNcyj/Nnc+W H0rp5QPQ0Q9DOltjOyKPtLe/CvwU54qbVOggsbmzKUGJM93R/Pgf1VoSNcgRGLib 7dSjSLfxNdriJTG9RZP1/wcivwgVpGOCsZv67vc8mEzAM9oSLEw0V9oLsb8= -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:13 2023 by rpki-client on console-ams.rpki-client.org