$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa File: 4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa (raw, json) Hash identifier: AyZXs2fn5FYwsFaN9AZGS5KHgOdAakVzuCxPOQUn4y4= Subject key identifier: 66:C7:6C:FD:4C:9B:C2:52:5A:F9:C8:0D:4B:E7:4A:0E:7E:24:66:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05DC07E48BF4B065FC3F396C73321319ED4AFC52 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 151.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 04:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:dc:07:e4:8b:f4:b0:65:fc:3f:39:6c:73:32:13:19:ed:4a:fc:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=a44158e623b76cec1464b055e177c095092e5c87d0792cf06d100add80464748, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ea:ae:a5:ad:bb:7c:ae:dd:63:99:57:2b:5b: 08:3c:bf:c7:05:b5:2a:a6:80:d3:06:98:6e:73:3c: dd:40:13:c0:0a:92:3f:52:a3:6e:f8:07:28:7c:4d: ce:c7:39:cc:ed:e4:23:67:b3:d6:06:30:5f:ec:85: 94:1c:a0:b2:73:d9:3d:5e:6e:c5:73:76:24:09:ac: 97:da:e3:dd:4c:ca:b9:ae:43:eb:43:68:55:b8:10: 9e:1b:38:95:b9:3b:9d:ed:91:cc:96:86:45:d1:8b: 11:e3:9a:26:c1:a8:72:84:51:89:f0:ed:c6:58:7f: 17:00:b5:f3:3c:b2:f6:52:a8:e8:91:c4:67:ce:87: 1e:25:bd:73:06:7e:6e:01:b6:a2:a9:bc:55:3d:80: 38:1d:cb:64:f9:e5:6e:8c:bb:66:26:e4:05:9b:e5: fe:12:9f:04:ad:e1:63:43:d7:a7:d9:aa:3d:49:ca: 55:d0:d8:13:bf:6e:50:e3:83:7e:95:81:52:ea:32: 0c:7c:a8:65:8d:09:3f:f9:66:ba:8e:64:1f:bf:28: f2:dc:7b:e3:95:05:e9:9d:91:85:51:de:fa:e6:61: 7c:8c:be:18:5e:18:85:26:65:de:2e:c3:95:8e:85: 82:da:04:b1:f4:68:89:08:72:a4:2f:e9:01:c1:80: 0d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C7:6C:FD:4C:9B:C2:52:5A:F9:C8:0D:4B:E7:4A:0E:7E:24:66:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:0f:2d:64:a0:bb:d5:20:91:ad:70:32:ea:e8:e2:fc:7f:df: 17:9d:60:80:01:27:6b:2d:08:d6:0a:60:5b:6b:65:35:0a:15: 93:64:4b:0f:4f:f2:08:69:2d:06:09:cd:9e:be:4d:5a:3c:37: 96:d6:3a:75:a2:3f:f2:60:f3:ba:2a:e9:1a:0d:be:07:9c:a4: 41:3f:aa:e9:ea:c7:f6:56:95:85:77:5a:e9:0a:9d:c5:f9:1e: f6:1c:6a:4e:ce:00:38:63:27:b2:89:54:eb:14:aa:c4:a0:19: 3f:56:e1:7a:fa:d5:b7:31:29:86:f7:96:fe:fe:6d:35:61:c1: da:f5:c9:ef:61:6c:6b:03:27:90:ae:23:bd:15:23:4a:9b:d1: d3:bc:6e:ac:13:26:c6:67:50:57:cf:4f:d9:77:dc:ef:6e:b5: e8:bb:dc:bf:2c:d3:65:52:6c:dc:b9:cc:68:41:26:cd:da:14: 8a:ef:e2:63:44:8f:1e:19:ab:fd:2f:1f:32:52:83:1a:43:c3: bf:c9:a2:6c:11:b4:e8:1f:22:10:58:cc:47:e8:6a:5b:e8:66: b7:f5:af:4a:81:63:48:a6:fc:da:0b:3d:67:20:d1:a9:0e:b4: 62:6e:ee:ed:4d:42:be:09:5d:a6:2a:c9:55:7e:6c:f6:06:f5: 75:aa:4f:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBdwH5Iv0sGX8PzlsczITGe1K/FIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDQxNThlNjIzYjc2Y2VjMTQ2NGIwNTVlMTc3YzA5NTA5 MmU1Yzg3ZDA3OTJjZjA2ZDEwMGFkZDgwNDY0NzQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf6q6lrbt8rt1jmVcrWwg8v8cFtSqmgNMGmG5zPN1AE8AK kj9So274Byh8Tc7HOczt5CNns9YGMF/shZQcoLJz2T1ebsVzdiQJrJfa491Myrmu Q+tDaFW4EJ4bOJW5O53tkcyWhkXRixHjmibBqHKEUYnw7cZYfxcAtfM8svZSqOiR xGfOhx4lvXMGfm4BtqKpvFU9gDgdy2T55W6Mu2Ym5AWb5f4SnwSt4WND16fZqj1J ylXQ2BO/blDjg36VgVLqMgx8qGWNCT/5ZrqOZB+/KPLce+OVBemdkYVR3vrmYXyM vhheGIUmZd4uw5WOhYLaBLH0aIkIcqQv6QHBgA1ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZsds/UybwlJa+cgNS+dKDn4kZmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNmE3YjI4LTBhYTgtNDY3Yi1hYjZhLTI5Zjk4Y2ZkNTJjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXljANBgkqhkiG9w0BAQsFAAOCAQEAvQ8tZKC71SCRrXAy6uji/H/fF51g gAEnay0I1gpgW2tlNQoVk2RLD0/yCGktBgnNnr5NWjw3ltY6daI/8mDzuirpGg2+ B5ykQT+q6erH9laVhXda6Qqdxfke9hxqTs4AOGMnsolU6xSqxKAZP1bhevrVtzEp hveW/v5tNWHB2vXJ72FsawMnkK4jvRUjSpvR07xurBMmxmdQV89P2Xfc72616Lvc vyzTZVJs3LnMaEEmzdoUiu/iY0SPHhmr/S8fMlKDGkPDv8mibBG06B8iEFjMR+hq W+hmt/WvSoFjSKb82gs9ZyDRqQ60Ym7u7U1CvgldpirJVX5s9gb1dapP6g== -----END CERTIFICATE-----Generated at Mon Aug 28 16:35:56 2023 by rpki-client on console-fra.rpki-client.org