$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa File: 52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa (raw, json) Hash identifier: EpOpoX3KaThuRg3k84Dcc612r24kwidZb/Csecy1+iY= Subject key identifier: 5F:39:19:51:DD:A7:9A:B7:14:F9:9B:45:61:A8:1F:CE:4F:9D:72:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FBE2DDBDFF17F2707CB26D978C56D6C0C012893 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:be:2d:db:df:f1:7f:27:07:cb:26:d9:78:c5:6d:6c:0c:01:28:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=d9db95e38adbc2f1ac227150163a0420b9ec69b9e5bc9ca8e2397c9233e3a223, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dd:d3:05:18:7c:57:cd:36:ac:1e:30:a1:0f: ee:61:65:7a:b2:bc:2f:34:a1:af:8f:8a:c9:6f:bb: 3d:72:6e:8c:7b:91:68:d6:71:96:5b:9e:83:e0:39: 0d:66:fe:0e:d0:9b:ac:76:e2:ce:1b:47:29:2b:4b: 4b:d7:19:dc:dd:68:64:e1:51:7b:86:c4:aa:ca:53: 62:2c:84:ab:f4:62:98:82:83:ec:e3:30:47:28:75: 7b:ba:d5:eb:1e:4e:de:c8:c3:75:6a:56:ab:4f:78: 6a:cd:98:48:8b:27:7e:3d:2d:22:0b:7b:42:9d:02: f1:c6:59:b7:99:8b:47:67:59:20:cf:ca:d5:62:10: 6b:0f:e7:1a:23:4a:9d:ce:1c:ef:e8:96:88:12:94: 54:11:d9:4b:df:4d:07:f1:99:b4:53:69:29:ad:9e: 36:c3:f9:d7:7a:0b:74:8a:ab:9a:79:a9:04:bc:eb: 7f:93:03:13:52:a0:5c:33:77:69:91:50:41:be:eb: 32:91:b6:3b:19:a4:46:02:d6:ca:27:b8:5b:8f:f5: 56:fe:6a:a9:be:3d:8a:d2:05:ec:b6:26:12:e3:52: 21:4c:3f:70:0e:92:6c:4f:74:14:c0:7a:78:c9:72: 53:f5:4c:4b:60:67:80:0e:88:74:7c:f4:f9:1b:7b: 6f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:39:19:51:DD:A7:9A:B7:14:F9:9B:45:61:A8:1F:CE:4F:9D:72:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 74:21:8d:bd:c2:aa:89:2b:c4:cf:49:c8:95:84:a6:fb:de:3c: 22:22:02:54:b6:4f:9f:eb:ed:f4:7e:4e:cd:2b:38:6c:88:8e: 1c:e0:91:9b:4c:5e:dd:e1:22:16:51:f8:c3:47:5f:59:38:24: f2:0e:bf:6c:d7:d5:71:9b:7e:5a:dc:8a:a8:43:77:51:63:f0: ea:ce:bd:3b:72:d1:17:c6:14:25:52:b7:9d:3a:e8:32:4f:36: f9:96:d6:6f:4d:2a:06:41:1e:03:0e:58:cd:8e:c7:de:13:dc: bc:03:29:75:72:b1:82:e8:17:96:b9:fe:34:fe:1a:7a:c1:b1: 2c:b0:88:c9:33:44:6a:04:a2:fa:b9:af:86:e9:55:cb:f5:91: 99:7b:e1:6c:53:74:3b:7c:56:f5:ee:b6:a2:69:59:8b:a9:11: 89:7a:48:57:ac:5e:22:62:12:0e:63:9f:33:25:45:28:ab:1d: 28:6f:b3:40:5e:e6:89:cf:91:ec:9d:1a:08:77:4f:b5:5f:da: e8:9b:c0:9b:b2:cd:af:d9:bb:ed:3e:d9:07:2c:74:03:40:1d: 6c:74:ba:c8:4a:cc:22:b2:12:cd:e4:8b:93:ad:7e:3c:87:b5: 1a:c6:5e:92:21:c8:68:6b:07:bc:46:19:56:9a:bc:ef:c1:bf: 94:1a:c5:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT74t29/xfycHyybZeMVtbAwBKJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWRiOTVlMzhhZGJjMmYxYWMyMjcxNTAxNjNhMDQyMGI5 ZWM2OWI5ZTViYzljYThlMjM5N2M5MjMzZTNhMjIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC43dMFGHxXzTasHjChD+5hZXqyvC80oa+Pislvuz1ybox7 kWjWcZZbnoPgOQ1m/g7Qm6x24s4bRykrS0vXGdzdaGThUXuGxKrKU2IshKv0YpiC g+zjMEcodXu61eseTt7Iw3VqVqtPeGrNmEiLJ349LSILe0KdAvHGWbeZi0dnWSDP ytViEGsP5xojSp3OHO/ologSlFQR2UvfTQfxmbRTaSmtnjbD+dd6C3SKq5p5qQS8 63+TAxNSoFwzd2mRUEG+6zKRtjsZpEYC1sonuFuP9Vb+aqm+PYrSBey2JhLjUiFM P3AOkmxPdBTAenjJclP1TEtgZ4AOiHR89Pkbe29HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXzkZUd2nmrcU+ZtFYagfzk+dctkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyNjAzYzA1LTg2ZTgtNGFjMC05NGY0LTgxNWI3ZmM2ZmNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFjANBgkqhkiG9w0BAQsFAAOCAQEAdCGNvcKqiSvEz0nIlYSm+948IiIC VLZPn+vt9H5OzSs4bIiOHOCRm0xe3eEiFlH4w0dfWTgk8g6/bNfVcZt+WtyKqEN3 UWPw6s69O3LRF8YUJVK3nTroMk82+ZbWb00qBkEeAw5YzY7H3hPcvAMpdXKxgugX lrn+NP4aesGxLLCIyTNEagSi+rmvhulVy/WRmXvhbFN0O3xW9e62omlZi6kRiXpI V6xeImISDmOfMyVFKKsdKG+zQF7mic+R7J0aCHdPtV/a6JvAm7LNr9m77T7ZByx0 A0AdbHS6yErMIrISzeSLk61+PIe1GsZekiHIaGsHvEYZVpq878G/lBrFgg== -----END CERTIFICATE-----Generated at Fri Sep 22 20:57:02 2023 by rpki-client on console-ams.rpki-client.org