$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa File: 528b6591-3aae-49d5-aecd-8320249f6d0e.roa (raw, json) Hash identifier: 9/TMREAkTCY/GIcsQCIhiicrTk8y7Q4Uf1mbc/8/Yc0= Subject key identifier: 08:2D:4B:3D:1A:07:4D:1A:D9:5A:1E:17:DE:5D:2B:D0:45:C7:42:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 398ED9FED81A8C25BA65DAB4E2B9A775DFC0F028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.17.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8e:d9:fe:d8:1a:8c:25:ba:65:da:b4:e2:b9:a7:75:df:c0:f0:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=03fa4e7f94837ba238456e0397e278df9e694e8a93382f2f1b5ac997f20a8349, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:80:d5:45:2b:a8:17:f8:f7:6e:b9:cb:98:d5: ad:67:ab:8a:20:6c:94:dc:ca:89:05:e8:bb:f8:19: db:44:3e:07:08:da:85:c8:59:24:98:be:0f:7b:75: a1:89:ec:36:a5:90:7e:58:c5:c9:35:a9:f2:f2:c9: 65:b4:57:91:82:08:03:88:4e:b5:00:1d:2d:40:6d: f9:75:dc:c0:49:0a:96:b6:d1:71:cf:b1:d0:ac:04: e5:53:50:a9:83:9b:6e:b2:82:fc:a6:62:ce:05:81: 68:db:41:bb:74:b3:b1:b7:f5:f0:05:06:2a:c1:76: 64:1c:63:26:c6:ad:46:f3:c2:47:65:7b:e3:a9:a3: c1:5c:60:04:11:66:d4:05:4a:7a:ed:c5:c5:59:eb: f0:1b:d6:1b:7d:63:21:f9:44:48:5e:cd:c0:18:7a: 90:ea:06:87:13:e8:21:7b:1c:5e:40:5e:a4:ef:41: 1e:be:66:3e:37:8f:53:35:23:59:62:2b:05:8d:37: 5a:de:cb:3e:8a:5f:0b:88:fd:05:af:7a:a1:e1:01: 99:6d:71:b6:04:6d:17:a5:06:81:e1:d9:54:95:49: 19:cc:d3:8f:cc:b4:f5:87:b4:01:57:18:ec:d5:a8: 2c:4e:42:3b:54:5e:e3:b1:72:a3:bb:64:fd:b8:95: 6b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2D:4B:3D:1A:07:4D:1A:D9:5A:1E:17:DE:5D:2B:D0:45:C7:42:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/528b6591-3aae-49d5-aecd-8320249f6d0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.17.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:38:2f:48:ee:98:95:94:f8:d5:80:5a:d6:16:03:9a:33:51: 7e:47:85:55:61:ba:bb:80:22:20:c8:a1:5e:ed:44:dd:bf:01: ec:33:a0:ba:c0:32:7a:b9:21:1c:d3:1a:69:bd:49:06:2c:b1: 8c:0a:1b:6e:6e:4a:a5:ee:1e:54:a7:91:8f:c5:c1:3c:bc:a4: 11:0a:45:aa:72:00:bd:9e:8a:55:61:1d:83:b5:0c:a4:3e:e5: 29:c4:32:f4:ce:da:6c:fd:82:37:b1:44:58:b7:c8:8d:91:8a: a6:6f:b8:8a:1b:21:b3:6c:1f:59:ac:1a:9d:7c:24:cb:55:55: e7:df:6b:a2:09:f6:0a:ba:b5:40:3a:27:99:72:94:d9:5a:74: be:ed:df:da:9c:36:a4:1e:5d:b9:01:80:75:19:cb:af:c0:b0: 0d:e6:62:95:30:c4:99:d1:7b:9c:10:74:2c:45:ae:9f:cd:37: 40:48:34:bf:25:e6:cf:1a:bd:6e:6e:1a:64:39:c1:6c:81:c9: 63:63:f9:2e:ff:ec:b4:2d:f1:3b:b9:1f:6e:ff:db:d3:41:7c: 08:00:5e:8a:92:73:d8:e1:3c:d9:92:c1:d9:a4:2b:32:87:d5: f3:a1:bf:7a:21:da:e9:1b:3f:20:22:de:11:eb:11:cd:92:bf: f6:a2:af:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOY7Z/tgajCW6Zdq04rmndd/A8CgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2ZhNGU3Zjk0ODM3YmEyMzg0NTZlMDM5N2UyNzhkZjll Njk0ZThhOTMzODJmMmYxYjVhYzk5N2YyMGE4MzQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDugNVFK6gX+PduucuY1a1nq4ogbJTcyokF6Lv4GdtEPgcI 2oXIWSSYvg97daGJ7DalkH5Yxck1qfLyyWW0V5GCCAOITrUAHS1Abfl13MBJCpa2 0XHPsdCsBOVTUKmDm26ygvymYs4FgWjbQbt0s7G39fAFBirBdmQcYybGrUbzwkdl e+Opo8FcYAQRZtQFSnrtxcVZ6/Ab1ht9YyH5REhezcAYepDqBocT6CF7HF5AXqTv QR6+Zj43j1M1I1liKwWNN1reyz6KXwuI/QWveqHhAZltcbYEbRelBoHh2VSVSRnM 04/MtPWHtAFXGOzVqCxOQjtUXuOxcqO7ZP24lWvPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCC1LPRoHTRrZWh4X3l0r0EXHQjAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyOGI2NTkxLTNhYWUtNDlkNS1hZWNkLTgzMjAyNDlmNmQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQETANBgkqhkiG9w0BAQsFAAOCAQEArjgvSO6YlZT41YBa1hYDmjNRfkeF VWG6u4AiIMihXu1E3b8B7DOgusAyerkhHNMaab1JBiyxjAobbm5Kpe4eVKeRj8XB PLykEQpFqnIAvZ6KVWEdg7UMpD7lKcQy9M7abP2CN7FEWLfIjZGKpm+4ihshs2wf WawanXwky1VV599rogn2Crq1QDonmXKU2Vp0vu3f2pw2pB5duQGAdRnLr8CwDeZi lTDEmdF7nBB0LEWun803QEg0vyXmzxq9bm4aZDnBbIHJY2P5Lv/stC3xO7kfbv/b 00F8CABeipJz2OE82ZLB2aQrMofV86G/eiHa6Rs/ICLeEesRzZK/9qKvog== -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:59 2023 by rpki-client on console-ams.rpki-client.org