$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a8fb86d-7839-4e6e-a522-2a3aa127735b.roa File: 4a8fb86d-7839-4e6e-a522-2a3aa127735b.roa (raw, json) Hash identifier: MgY6sPC070uaoXJoq9IAH/cA4J5LMPQbdSrIUEVbP7c= Subject key identifier: 44:8E:44:AF:AB:8C:05:01:92:A8:BB:67:50:9E:A5:D3:EC:D3:5B:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ABE91C4CF8C6068665E8FA1CFD8737366AF5A43 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a8fb86d-7839-4e6e-a522-2a3aa127735b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.165.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:be:91:c4:cf:8c:60:68:66:5e:8f:a1:cf:d8:73:73:66:af:5a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=45fefdbe337aff138758a8fa0a2ef811ad245f79fa0d4539ecd66296213a750f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:33:ab:68:32:05:8d:d1:47:df:05:24:be:5f: b3:16:f8:98:ec:45:90:5a:c7:4e:c1:9e:e8:83:92: 4b:b3:e5:1c:f0:30:2b:26:1c:b0:cf:74:8f:f6:1c: 9a:35:e2:30:0a:b8:c9:01:5f:14:27:e4:ed:ab:e5: ee:65:88:ac:00:ee:31:61:bc:a6:d5:64:7b:d8:9a: e3:a6:22:e4:ab:fd:34:c6:5e:4d:09:f1:a2:3e:9c: 8a:4c:97:c9:8f:32:9f:b0:d1:e7:7d:2a:92:f6:9b: 98:8e:a6:db:f0:94:3d:06:a0:63:d2:35:32:86:1e: 3d:01:79:b2:c7:bc:a5:66:73:86:2c:5a:97:de:94: 75:44:d1:1e:68:ab:de:d3:94:13:e5:b8:40:6d:65: b4:79:4b:13:52:b3:9c:bd:71:2d:43:27:92:4b:40: ec:c5:cf:23:6d:cd:74:8f:69:63:77:0e:b8:ba:5e: 12:3b:7f:9a:4d:c9:25:b3:72:fc:0c:fb:a4:6e:72: 7f:42:6e:39:f6:cd:24:e8:35:7f:3e:9d:3d:65:60: cf:50:34:ea:79:84:9a:2b:76:0f:36:68:c2:de:ad: 4e:a2:6b:6e:f5:ed:77:fa:47:07:ab:70:5e:d3:0d: 07:f9:0b:8d:20:9c:20:29:1f:0c:d9:33:41:14:c0: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:8E:44:AF:AB:8C:05:01:92:A8:BB:67:50:9E:A5:D3:EC:D3:5B:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a8fb86d-7839-4e6e-a522-2a3aa127735b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.165.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:8f:44:da:37:de:30:f4:50:4b:5a:7b:01:4e:b2:59:c2:34: 0b:fd:99:1e:1b:9a:e3:c4:c1:f5:4b:79:31:51:49:4a:83:fc: 4d:e9:b4:25:3f:29:97:5f:d6:28:d6:b3:c9:d3:8c:91:6b:19: 93:da:b5:a8:c7:33:b6:4a:70:0d:ab:3c:22:0d:35:b5:a8:a8: c7:a4:27:41:56:41:2a:78:34:94:fd:38:a6:10:98:20:09:06: 1e:23:c4:89:8e:ce:d0:f8:98:de:8d:9a:1f:45:33:e3:2e:c7: 61:9f:f2:fe:db:3b:c2:56:a5:44:64:c4:9c:e9:48:14:a8:ac: ac:34:a0:ef:96:f1:6b:c8:7a:16:9e:c3:a4:1e:42:0b:bf:00: 76:3e:ab:6e:48:77:7b:88:28:6f:dc:7e:36:14:d5:b7:94:20: e8:f7:be:3b:0c:14:01:98:33:61:be:00:7f:bd:8a:22:4b:d7: f1:40:eb:aa:3e:6d:13:32:54:01:80:3d:91:46:0c:b4:07:c4: 4d:a9:41:d4:d0:b6:42:c8:7c:38:6b:ea:2f:21:b4:a8:40:02: 01:de:31:11:be:79:1a:8e:aa:c2:53:0b:0e:68:21:76:92:1f: 27:65:af:3c:8b:dc:d9:7f:c4:35:da:1e:17:ae:74:79:97:05: e8:9d:f8:d2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUar6RxM+MYGhmXo+hz9hzc2avWkMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWZlZmRiZTMzN2FmZjEzODc1OGE4ZmEwYTJlZjgxMWFk MjQ1Zjc5ZmEwZDQ1MzllY2Q2NjI5NjIxM2E3NTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTM6toMgWN0UffBSS+X7MW+JjsRZBax07BnuiDkkuz5Rzw MCsmHLDPdI/2HJo14jAKuMkBXxQn5O2r5e5liKwA7jFhvKbVZHvYmuOmIuSr/TTG Xk0J8aI+nIpMl8mPMp+w0ed9KpL2m5iOptvwlD0GoGPSNTKGHj0BebLHvKVmc4Ys WpfelHVE0R5oq97TlBPluEBtZbR5SxNSs5y9cS1DJ5JLQOzFzyNtzXSPaWN3Dri6 XhI7f5pNySWzcvwM+6Rucn9Cbjn2zSToNX8+nT1lYM9QNOp5hJordg82aMLerU6i a2717Xf6RwercF7TDQf5C40gnCApHwzZM0EUwFFdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURI5Er6uMBQGSqLtnUJ6l0+zTW60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhOGZiODZkLTc4MzktNGU2ZS1hNTIyLTJhM2FhMTI3NzM1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopTANBgkqhkiG9w0BAQsFAAOCAQEAJo9E2jfeMPRQS1p7AU6yWcI0C/2Z Hhua48TB9Ut5MVFJSoP8Tem0JT8pl1/WKNazydOMkWsZk9q1qMcztkpwDas8Ig01 taiox6QnQVZBKng0lP04phCYIAkGHiPEiY7O0PiY3o2aH0Uz4y7HYZ/y/ts7wlal RGTEnOlIFKisrDSg75bxa8h6Fp7DpB5CC78Adj6rbkh3e4gob9x+NhTVt5Qg6Pe+ OwwUAZgzYb4Af72KIkvX8UDrqj5tEzJUAYA9kUYMtAfETalB1NC2Qsh8OGvqLyG0 qEACAd4xEb55Go6qwlMLDmghdpIfJ2WvPIvc2X/ENdoeF650eZcF6J340g== -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:52 2023 by rpki-client on console-ams.rpki-client.org