$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a96787b-389c-46b2-919d-eda3b93c7241.roa File: 4a96787b-389c-46b2-919d-eda3b93c7241.roa (raw, json) Hash identifier: sx/GkOvTddZi1H2q6C3SaC4sGCtEvbDI07O7z+lUYdc= Subject key identifier: F0:D3:14:2B:8A:39:9C:90:A5:23:36:9C:0F:C0:F5:48:14:A4:C8:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1DC1A1EFC9EF992EED2AE6A0449CFF0B73CA1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a96787b-389c-46b2-919d-eda3b93c7241.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c1:a1:ef:c9:ef:99:2e:ed:2a:e6:a0:44:9c:ff:0b:73:ca:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7b8d42f8485a0863f0fad1c699c9345cfcd8c20dbebd85b98114f22c6b4edc8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6d:63:1c:03:01:78:9c:6c:86:12:03:6d:9d: ed:92:fd:9b:e5:cd:dc:e9:7c:03:ba:e0:f1:a6:e9: 8d:7f:db:a7:59:87:9c:b6:c7:d1:2a:de:51:7e:d3: 01:07:66:31:dc:d6:eb:25:09:e6:a6:a2:34:9e:57: cb:69:71:09:a4:de:e0:97:61:72:2b:06:5a:c8:c8: 68:da:12:27:72:3c:0a:4c:7d:80:2c:0f:66:23:b6: 53:bd:00:2a:a0:3e:5d:94:d9:a1:50:66:7e:97:42: 8e:db:16:5d:30:c1:24:57:0b:8b:06:36:23:70:de: 89:e9:7d:fa:d7:5d:b8:d5:75:ee:3e:71:4c:80:ad: e9:ce:32:1a:3a:de:42:a4:b9:2d:34:92:4b:76:97: 34:82:24:cc:7f:8e:de:c8:e7:1d:22:85:c5:d2:2b: 17:a8:5a:9f:70:a8:ff:85:70:f5:ec:af:e1:d2:54: f4:4b:9d:91:c6:3f:ec:53:97:9a:ac:a3:96:ca:0d: f6:a2:c7:36:96:1c:cd:3b:ce:a6:e0:66:88:0a:81: 1f:8f:69:fe:83:bb:cd:3e:e3:0e:2f:d5:09:e3:eb: 70:01:bc:62:ca:35:16:0d:bb:03:fa:24:71:ac:6c: 3a:ea:bd:9b:aa:64:fd:7f:19:bd:53:2b:64:f6:f1: a0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D3:14:2B:8A:39:9C:90:A5:23:36:9C:0F:C0:F5:48:14:A4:C8:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a96787b-389c-46b2-919d-eda3b93c7241.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.144.0/21 Signature Algorithm: sha256WithRSAEncryption c6:0a:a5:8f:c3:85:2c:14:de:47:74:c1:1a:65:5b:2b:88:7a: 06:d8:74:b1:43:86:d3:5d:f8:78:ff:83:c6:57:3d:f9:d3:1a: 23:82:93:79:88:42:dd:7e:ff:31:f4:b4:a2:43:a1:5f:21:c9: a4:9f:75:b2:e2:46:0a:c4:a7:89:16:cc:7e:df:95:90:07:92: dc:6a:7a:b3:b6:10:f4:8a:ac:48:2e:c1:8a:99:11:ce:fe:ab: d4:88:ad:c9:c7:ce:6c:f4:f9:88:3c:bb:ac:69:a3:4e:30:61: d6:f7:ee:c2:84:59:8a:38:9d:c7:2f:3a:1c:ca:26:0a:a6:7d: 33:45:30:24:d4:f5:84:c5:a0:36:e0:97:e5:08:9b:84:fb:ff: 71:a6:76:ed:ea:eb:29:3d:d0:72:5c:7a:71:d8:b8:2e:8f:d6: b6:48:fd:7a:4b:24:4b:34:c4:cb:54:b1:3d:85:86:ba:2f:1f: 7f:41:88:38:d2:30:b3:df:31:d4:ce:8e:f8:85:6c:d1:1b:13: 01:e2:57:ab:f0:0f:c4:95:51:bf:12:2e:04:45:7c:0e:eb:e1: f6:90:9b:4a:91:ff:6d:05:2b:bd:af:1d:09:4a:95:dd:f2:6e: 78:fe:be:df:0c:ac:63:10:6c:f0:ac:f2:3b:86:bd:9d:a2:48: b0:4d:5a:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITHcGh78nvmS7tKuagRJz/C3PKHjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yMzA5MjIwMDAwMDBaFw0yMzEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQDdiOGQ0MmY4NDg1YTA4NjNmMGZhZDFjNjk5YzkzNDVjZmNk OGMyMGRiZWJkODViOTgxMTRmMjJjNmI0ZWRjOGQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKJtYxwDAXicbIYSA22d7ZL9m+XN3Ol8A7rg8abpjX/bp1mH nLbH0SreUX7TAQdmMdzW6yUJ5qaiNJ5Xy2lxCaTe4JdhcisGWsjIaNoSJ3I8Ckx9 gCwPZiO2U70AKqA+XZTZoVBmfpdCjtsWXTDBJFcLiwY2I3Deiel9+tdduNV17j5x TICt6c4yGjreQqS5LTSSS3aXNIIkzH+O3sjnHSKFxdIrF6han3Co/4Vw9eyv4dJU 9EudkcY/7FOXmqyjlsoN9qLHNpYczTvOpuBmiAqBH49p/oO7zT7jDi/VCePrcAG8 Yso1Fg27A/okcaxsOuq9m6pk/X8ZvVMrZPbxoB0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTw0xQrijmckKUjNpwPwPVIFKTIojAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNGE5Njc4N2ItMzg5Yy00NmIyLTkxOWQtZWRhM2I5M2M3MjQxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2NOkDANBgkqhkiG9w0BAQsFAAOCAQEAxgqlj8OFLBTeR3TBGmVbK4h6Bth0 sUOG0134eP+Dxlc9+dMaI4KTeYhC3X7/MfS0okOhXyHJpJ91suJGCsSniRbMft+V kAeS3Gp6s7YQ9IqsSC7BipkRzv6r1IitycfObPT5iDy7rGmjTjBh1vfuwoRZijid xy86HMomCqZ9M0UwJNT1hMWgNuCX5QibhPv/caZ27errKT3Qclx6cdi4Lo/Wtkj9 ekskSzTEy1SxPYWGui8ff0GIONIws98x1M6O+IVs0RsTAeJXq/APxJVRvxIuBEV8 Duvh9pCbSpH/bQUrva8dCUqV3fJueP6+3wysYxBs8KzyO4a9naJIsE1abw== -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:59 2023 by rpki-client on console-ams.rpki-client.org