$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49fc0f24-3d8c-4663-b68c-1a84cda6d77a.roa File: 49fc0f24-3d8c-4663-b68c-1a84cda6d77a.roa (raw, json) Hash identifier: da8vkP5RfOidGgLvWpf5UHJnmsFDTRaSFf9ID0o6cwo= Subject key identifier: E0:5B:CC:08:98:B6:55:B9:3F:2E:20:7D:E4:22:81:3F:C0:C9:7B:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EEEC286BAA0A6C23097A0B3DDAC636D972ADE73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49fc0f24-3d8c-4663-b68c-1a84cda6d77a.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ee:c2:86:ba:a0:a6:c2:30:97:a0:b3:dd:ac:63:6d:97:2a:de:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=6484c34c7970ae3a1e846648e842fc3ddafe054e62356d5008c7345dab153f50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:84:b5:32:80:ce:9a:b3:68:86:5d:c1:02:55: b3:60:84:ad:48:5e:46:0f:43:fc:b2:2e:ae:9d:d0: 92:00:0a:a4:3c:da:f5:91:c5:aa:dd:d1:fc:f2:71: 6e:fc:ba:e3:09:9a:9a:a7:6c:4f:70:5f:f2:f3:72: bf:b0:6c:ec:df:da:2b:95:cc:12:1e:5f:22:4b:f7: c4:69:0a:9e:89:8e:63:b8:d7:92:c3:0e:40:c0:3d: 6e:6c:8b:c3:50:06:1b:f0:43:3c:92:fb:4d:0c:ee: 88:5e:c0:2a:b2:ce:97:5a:74:c4:34:f4:6a:03:52: 11:d6:c4:d0:c3:ff:75:c4:e3:a4:24:da:2f:f1:2e: 03:87:c5:fe:4a:b6:84:f8:5a:7b:64:16:cd:57:0e: 01:c8:f1:a9:b1:4e:82:6b:4f:7c:77:55:7b:a8:9c: 9d:88:93:d4:00:ab:ad:6f:cf:e5:f1:d5:cf:fa:9e: ee:e6:dd:51:51:d7:35:ee:15:28:30:17:bd:6c:d7: b2:13:76:68:ff:ae:68:40:a1:da:68:70:7f:6b:24: 95:e6:39:90:23:c6:00:48:be:7d:ce:8c:1b:39:c4: f5:af:75:3c:5e:6f:a3:19:95:83:ca:30:bf:a1:58: d1:6e:9e:8b:1d:02:e0:0a:11:e9:19:ae:c5:56:29: 61:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5B:CC:08:98:B6:55:B9:3F:2E:20:7D:E4:22:81:3F:C0:C9:7B:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49fc0f24-3d8c-4663-b68c-1a84cda6d77a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.188.0/23 Signature Algorithm: sha256WithRSAEncryption 24:9e:0a:49:c2:52:15:a0:d0:d4:c2:4b:b8:80:3d:39:6f:a1: 6f:ca:82:64:f7:fe:4c:91:11:dc:10:e8:01:63:e8:68:20:ef: 31:f1:00:96:b2:0c:71:26:7c:54:dd:15:d4:66:ef:5d:62:09: b0:2b:ba:43:d6:3a:a3:d2:ed:14:86:bc:a0:86:6c:cc:18:cc: ad:32:c9:55:4f:1d:3f:a8:bc:3d:99:b2:4e:30:26:ec:7f:d7: 4c:28:e9:d1:17:e7:6d:e6:bc:ca:2d:6e:93:e0:00:20:12:cc: bf:9b:9c:50:37:fe:84:88:5e:4e:ac:a8:d0:f7:a6:34:b5:77: 84:16:ee:18:41:82:c1:3c:24:08:fb:88:31:e0:d1:ad:1a:f4: df:41:6f:ae:e8:17:de:ca:51:8f:0f:ea:07:18:3c:c9:3a:de: af:53:20:5f:d1:b6:3b:51:d2:5d:69:1a:1a:0c:e5:c8:a0:31: af:2a:21:37:8b:98:cb:a7:e3:5a:4d:89:4f:3e:98:29:b2:1d: 11:20:b1:1c:f3:71:5f:1b:85:a3:49:36:8b:0a:77:56:a0:6e: f5:e5:38:12:5f:43:e3:45:95:10:a1:8b:b9:3e:22:68:8c:97: b8:39:32:2e:1b:05:be:c5:37:42:4d:60:bb:bd:7e:9e:84:f6: 42:c8:ed:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbu7ChrqgpsIwl6Cz3axjbZcq3nMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDg0YzM0Yzc5NzBhZTNhMWU4NDY2NDhlODQyZmMzZGRh ZmUwNTRlNjIzNTZkNTAwOGM3MzQ1ZGFiMTUzZjUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCghLUygM6as2iGXcECVbNghK1IXkYPQ/yyLq6d0JIACqQ8 2vWRxard0fzycW78uuMJmpqnbE9wX/Lzcr+wbOzf2iuVzBIeXyJL98RpCp6JjmO4 15LDDkDAPW5si8NQBhvwQzyS+00M7ohewCqyzpdadMQ09GoDUhHWxNDD/3XE46Qk 2i/xLgOHxf5KtoT4WntkFs1XDgHI8amxToJrT3x3VXuonJ2Ik9QAq61vz+Xx1c/6 nu7m3VFR1zXuFSgwF71s17ITdmj/rmhAodpocH9rJJXmOZAjxgBIvn3OjBs5xPWv dTxeb6MZlYPKML+hWNFunosdAuAKEekZrsVWKWExAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4FvMCJi2Vbk/LiB95CKBP8DJe4gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5ZmMwZjI0LTNkOGMtNDY2My1iNjhjLTFhODRjZGE2ZDc3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl7wwDQYJKoZIhvcNAQELBQADggEBACSeCknCUhWg0NTCS7iAPTlvoW/K gmT3/kyREdwQ6AFj6Ggg7zHxAJayDHEmfFTdFdRm711iCbArukPWOqPS7RSGvKCG bMwYzK0yyVVPHT+ovD2Zsk4wJux/10wo6dEX523mvMotbpPgACASzL+bnFA3/oSI Xk6sqND3pjS1d4QW7hhBgsE8JAj7iDHg0a0a9N9Bb67oF97KUY8P6gcYPMk63q9T IF/RtjtR0l1pGhoM5cigMa8qITeLmMun41pNiU8+mCmyHREgsRzzcV8bhaNJNosK d1agbvXlOBJfQ+NFlRChi7k+ImiMl7g5Mi4bBb7FN0JNYLu9fp6E9kLI7b8= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:18 2023 by rpki-client on console-fra.rpki-client.org