$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa File: 4e472895-b434-4391-8576-749405dc5ab2.roa (raw, json) Hash identifier: 5gH+uKX6V73aVRQrkWjFoIuN//oSbktr9DpIDUeExVg= Subject key identifier: 21:5B:96:EE:DA:0F:E9:32:B7:6A:3C:73:A1:A4:3B:ED:13:AA:24:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D72736A2EE2B1E48E61379F513183CE7FD2F612 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:72:73:6a:2e:e2:b1:e4:8e:61:37:9f:51:31:83:ce:7f:d2:f6:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=071c289f1bee2595f6072a5fba3a1e38fc0bd3dc64792ccf744fde651da8ff09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:56:89:91:e2:68:87:41:fa:78:9e:10:1d: 01:07:b0:f9:8f:5b:93:18:34:cd:fc:4e:6f:2c:eb: b9:f7:3b:1d:a1:bd:5b:8f:f2:54:eb:5a:61:40:5b: 20:21:f6:0d:0c:59:e1:92:40:c3:9e:dd:80:8b:59: de:f8:44:2a:f4:d4:3b:0f:ec:a9:a5:8c:83:e9:4d: c3:21:9c:d6:28:28:2a:49:40:52:b3:b8:f4:86:aa: 90:49:36:06:f7:06:42:02:0b:56:fd:c6:43:21:4d: 8a:35:44:4c:c7:6e:a6:d7:94:e9:94:33:e9:67:2b: 83:28:b5:f3:94:15:b8:0a:2b:1f:89:b5:31:0b:9f: 3a:af:c0:1f:74:de:8d:14:41:63:f8:16:df:c7:e7: 0a:b1:cf:5f:d4:07:7b:f5:66:12:de:6d:89:76:f7: 93:92:4c:fd:2a:82:72:4c:ee:5e:d0:ad:68:6e:71: 27:02:ff:dd:f0:33:31:ec:23:67:e9:ec:ff:bb:7a: 00:f2:a6:c3:6a:40:4c:7f:60:9b:ec:94:b9:16:f4: ab:3a:da:a5:1f:06:38:80:3b:89:97:88:49:e0:4b: b6:31:32:b7:30:22:db:d5:cc:13:85:41:0d:f7:97: 7d:56:f8:91:96:de:de:2c:48:48:70:e2:bf:c5:3b: f5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5B:96:EE:DA:0F:E9:32:B7:6A:3C:73:A1:A4:3B:ED:13:AA:24:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:f8:e5:9d:2e:b5:2b:12:d7:08:4d:59:18:3d:9c:0d:34:35: d7:84:24:71:d6:8e:b2:46:ef:30:74:d1:36:86:d9:64:af:d3: 45:41:6d:25:89:df:8c:f7:ee:f4:27:9d:9b:8a:be:1d:4e:f8: 3f:ed:df:51:b8:0b:23:67:37:fe:1d:ec:5d:6f:53:0d:4b:6a: 5d:4b:a2:ab:bb:07:af:10:d9:28:84:89:3f:8e:6e:7c:c5:39: 2f:e5:76:df:66:9f:4a:6d:bd:97:29:9b:f3:1b:01:e6:16:f8: 25:e9:b3:d4:b8:1f:57:14:43:e6:6e:ba:69:ec:f4:95:85:83: b6:80:42:4f:2b:eb:7f:9a:d0:52:a1:2d:54:3c:7d:22:75:99: 6b:cd:ce:79:82:d3:8c:1c:4c:7d:cb:a7:0a:55:58:eb:2b:2e: a0:68:88:10:f2:97:4a:e1:f7:56:ac:96:63:a1:c6:e0:c3:98: 39:5c:c8:59:49:cb:2d:6b:b8:49:ad:5b:8e:f7:94:65:92:3d: 8d:bb:ef:53:c0:90:4d:96:fd:28:a7:b4:57:e6:f5:bd:e3:c9: 4a:d1:07:b0:dc:87:f8:da:69:f8:b1:6f:be:ad:4f:ca:da:bd: ca:33:bf:2c:4c:43:bc:e0:e7:18:71:ce:ad:39:2e:ec:86:99: fe:ab:da:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXXJzai7iseSOYTefUTGDzn/S9hIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzFjMjg5ZjFiZWUyNTk1ZjYwNzJhNWZiYTNhMWUzOGZj MGJkM2RjNjQ3OTJjY2Y3NDRmZGU2NTFkYThmZjA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYX1aJkeJoh0H6eJ4QHQEHsPmPW5MYNM38Tm8s67n3Ox2h vVuP8lTrWmFAWyAh9g0MWeGSQMOe3YCLWd74RCr01DsP7KmljIPpTcMhnNYoKCpJ QFKzuPSGqpBJNgb3BkICC1b9xkMhTYo1REzHbqbXlOmUM+lnK4MotfOUFbgKKx+J tTELnzqvwB903o0UQWP4Ft/H5wqxz1/UB3v1ZhLebYl295OSTP0qgnJM7l7QrWhu cScC/93wMzHsI2fp7P+7egDypsNqQEx/YJvslLkW9Ks62qUfBjiAO4mXiEngS7Yx MrcwItvVzBOFQQ33l31W+JGW3t4sSEhw4r/FO/XtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIVuW7toP6TK3ajxzoaQ77ROqJDQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNDcyODk1LWI0MzQtNDM5MS04NTc2LTc0OTQwNWRjNWFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4aDANBgkqhkiG9w0BAQsFAAOCAQEAa/jlnS61KxLXCE1ZGD2cDTQ114Qk cdaOskbvMHTRNobZZK/TRUFtJYnfjPfu9Cedm4q+HU74P+3fUbgLI2c3/h3sXW9T DUtqXUuiq7sHrxDZKISJP45ufMU5L+V232afSm29lymb8xsB5hb4Jemz1LgfVxRD 5m66aez0lYWDtoBCTyvrf5rQUqEtVDx9InWZa83OeYLTjBxMfcunClVY6ysuoGiI EPKXSuH3VqyWY6HG4MOYOVzIWUnLLWu4Sa1bjveUZZI9jbvvU8CQTZb9KKe0V+b1 vePJStEHsNyH+Npp+LFvvq1Pytq9yjO/LExDvODnGHHOrTku7IaZ/qvaXw== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:42 2023 by rpki-client on console-ams.rpki-client.org