$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51c7afd7-8071-4553-b552-00d83dbc5e05.roa File: 51c7afd7-8071-4553-b552-00d83dbc5e05.roa (raw, json) Hash identifier: SQN20GFN1OHQ39xkfnfcP2wFAKaw1biWO8st1fAFa/4= Subject key identifier: 0C:AE:2B:C6:AE:A8:A6:5D:E6:83:E6:B0:69:2C:80:1C:7E:4C:E8:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B70B9DD923A99109D6B742B3B92FF05E701C791 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51c7afd7-8071-4553-b552-00d83dbc5e05.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:70:b9:dd:92:3a:99:10:9d:6b:74:2b:3b:92:ff:05:e7:01:c7:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=9f306eada307db3e23c7d55c3dbc40cd72e337291c396ec1780f53609b029fea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:89:9a:30:fc:24:11:dc:77:1a:c3:a3:78: 3b:04:74:f2:9c:27:82:56:e3:c1:83:b0:ad:d0:10: f0:a9:4b:04:ef:81:4e:ba:03:c9:47:2f:0b:f8:3d: f8:75:27:6e:01:10:95:10:31:e8:5e:b1:2c:3d:99: 21:49:70:3d:fb:5b:2e:e4:6c:fe:e9:8a:a6:f1:3f: e0:36:65:cf:79:aa:85:ad:47:7b:cc:b4:ad:b3:75: bc:c8:09:86:75:39:a5:fe:6e:56:bc:af:2b:d4:7f: c0:63:55:18:dc:38:a4:66:01:bd:96:d5:36:5c:c1: c3:86:c7:97:2a:0f:59:98:4d:a0:c5:6c:46:70:06: c5:57:b3:7a:7a:00:5b:bc:c5:2b:ac:6f:df:5f:53: 86:91:0a:f8:17:80:93:e4:27:0e:0e:e2:f3:06:81: 8e:2a:1b:90:9f:e8:47:13:22:bc:2b:19:c8:b9:be: 03:de:42:22:8c:08:9c:16:41:ea:02:37:ac:08:d5: 2a:0b:18:28:c3:ac:c0:86:d7:46:6b:c2:4c:8a:5c: f2:76:ab:f8:88:31:a0:ed:73:ac:89:b8:eb:f8:36: 89:bb:68:9f:30:e4:27:83:bf:03:df:f9:7f:64:01: 61:e8:2c:8a:aa:96:8b:1f:b6:2f:65:f2:ef:61:df: b2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:AE:2B:C6:AE:A8:A6:5D:E6:83:E6:B0:69:2C:80:1C:7E:4C:E8:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51c7afd7-8071-4553-b552-00d83dbc5e05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.10.0/23 Signature Algorithm: sha256WithRSAEncryption d1:a0:8c:5e:ec:a3:98:a3:4c:df:bb:43:f1:e9:27:07:81:ed: 39:c5:90:8a:99:37:79:66:ba:78:51:63:43:69:08:05:20:ed: 14:0f:28:dc:f8:60:d7:82:80:7c:a9:00:be:da:1b:4e:a4:0c: 7d:93:61:1d:6c:c5:4e:c4:5f:f7:f9:32:cf:24:60:64:bb:bf: 54:9b:38:ba:dd:fc:2b:90:f2:19:72:7e:a4:ee:d9:09:2b:ce: 8f:00:41:3f:5f:51:da:f3:96:90:a6:b6:c4:b5:04:93:e7:9c: 83:18:df:25:0b:22:5d:ea:a9:28:e5:40:a9:a9:60:59:19:fb: 9d:f8:5e:d7:62:b9:1a:d2:74:d1:04:4a:76:5f:b6:47:00:8e: 53:87:dd:4e:1c:f9:a2:d5:5e:9c:24:ec:4a:a0:3e:ce:e7:a4: 8a:8d:20:49:76:c3:85:92:e0:e6:e6:64:d7:4a:eb:8e:24:00: 5b:37:95:a0:7b:15:a2:6f:22:27:68:66:4a:56:ae:9a:01:4c: 44:98:4c:a0:e6:a2:f9:f8:58:c1:5d:a7:66:59:50:e9:0b:1b: 14:3f:6d:38:b3:aa:13:af:32:26:0d:62:f3:63:7f:67:4e:d2: f3:f9:f3:d6:9e:d0:a6:1e:92:9e:7c:1f:cb:99:33:75:ad:cd: 09:8b:7b:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW3C53ZI6mRCda3QrO5L/BecBx5EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjMwNmVhZGEzMDdkYjNlMjNjN2Q1NWMzZGJjNDBjZDcy ZTMzNzI5MWMzOTZlYzE3ODBmNTM2MDliMDI5ZmVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWwomaMPwkEdx3GsOjeDsEdPKcJ4JW48GDsK3QEPCpSwTv gU66A8lHLwv4Pfh1J24BEJUQMehesSw9mSFJcD37Wy7kbP7piqbxP+A2Zc95qoWt R3vMtK2zdbzICYZ1OaX+bla8ryvUf8BjVRjcOKRmAb2W1TZcwcOGx5cqD1mYTaDF bEZwBsVXs3p6AFu8xSusb99fU4aRCvgXgJPkJw4O4vMGgY4qG5Cf6EcTIrwrGci5 vgPeQiKMCJwWQeoCN6wI1SoLGCjDrMCG10ZrwkyKXPJ2q/iIMaDtc6yJuOv4Nom7 aJ8w5CeDvwPf+X9kAWHoLIqqlosfti9l8u9h37LbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDK4rxq6opl3mg+awaSyAHH5M6M4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxYzdhZmQ3LTgwNzEtNDU1My1iNTUyLTAwZDgzZGJjNWUwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQDAowDQYJKoZIhvcNAQELBQADggEBANGgjF7so5ijTN+7Q/HpJweB7TnF kIqZN3lmunhRY0NpCAUg7RQPKNz4YNeCgHypAL7aG06kDH2TYR1sxU7EX/f5Ms8k YGS7v1SbOLrd/CuQ8hlyfqTu2Qkrzo8AQT9fUdrzlpCmtsS1BJPnnIMY3yULIl3q qSjlQKmpYFkZ+534XtdiuRrSdNEESnZftkcAjlOH3U4c+aLVXpwk7EqgPs7npIqN IEl2w4WS4ObmZNdK644kAFs3laB7FaJvIidoZkpWrpoBTESYTKDmovn4WMFdp2ZZ UOkLGxQ/bTizqhOvMiYNYvNjf2dO0vP589ae0KYekp58H8uZM3WtzQmLe2I= -----END CERTIFICATE-----Generated at Mon Aug 28 23:46:42 2023 by rpki-client on console-ams.rpki-client.org