$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa File: 557ead45-b1a7-4106-be3c-6b610ae5759c.roa (raw, json) Hash identifier: 4uWAlwtREJGo66Fi++H2KiUl6dqOdtYVLku8E6AgJWQ= Subject key identifier: 6F:9B:54:24:DD:6D:55:69:C4:03:5A:3E:87:E5:07:E2:0B:CD:DD:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11EA2CA2AABCFB973B39C7154416191020EB0FC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 98.131.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ea:2c:a2:aa:bc:fb:97:3b:39:c7:15:44:16:19:10:20:eb:0f:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=5de0beff57e0aa3d530083203930931398a999884c62175276ccf7dcfd18b39b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:23:6b:a4:ce:7a:b2:9b:05:fe:45:31:b7: ca:2d:65:b8:4a:f5:3c:33:41:0d:c7:0c:a8:c5:58: e2:77:4d:17:bd:d2:93:46:0b:f5:0d:e6:b8:9b:24: 47:67:ac:f9:9b:60:ca:da:a8:7e:64:93:ea:2a:47: f0:d0:a3:21:d7:4d:63:97:db:74:11:c4:db:86:d9: d4:be:83:69:47:5f:35:21:09:54:b5:00:8d:2e:1b: 95:ac:e0:97:df:af:5a:43:e8:ea:cb:cc:3e:a0:30: 11:a2:7c:e2:e0:8b:3d:07:20:a2:3b:7a:c2:fc:38: a2:ae:3c:35:f4:23:52:bf:36:0d:c1:88:b0:1c:c9: ef:f9:f1:b9:46:08:55:af:ef:87:d1:3c:d6:0a:94: cf:9e:bc:86:60:29:3d:93:fa:03:9f:16:93:38:8f: 9f:31:25:e6:b4:2f:6b:97:22:84:16:cd:61:76:39: e4:e0:79:b0:c9:28:bd:fc:aa:dd:1f:e1:95:4a:db: c2:2c:3e:60:a2:b4:8e:4d:c9:73:4f:8e:06:92:68: 84:2c:f7:f8:98:6f:8b:a7:47:7e:4b:f5:34:b6:69: 5b:1c:d1:be:7b:cd:3d:12:66:d4:d4:38:54:a6:e8: 54:4a:f0:26:b5:dc:78:97:a8:20:df:f6:c3:77:b0: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9B:54:24:DD:6D:55:69:C4:03:5A:3E:87:E5:07:E2:0B:CD:DD:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 70:1d:72:c9:9b:7c:06:4f:bb:2f:65:52:66:64:b3:6c:37:21: d1:3e:33:41:69:00:55:41:6a:05:43:31:ae:a1:fd:19:68:9d: e8:6a:3f:14:e1:4b:dd:4f:b2:71:9f:d3:03:e3:96:45:b8:14: 75:bc:5b:72:51:81:c0:c1:a2:66:86:47:bc:7f:f9:0f:c9:5e: 4a:36:7f:37:3d:72:6f:d2:5b:12:97:a0:38:36:4b:10:3c:03: 77:7d:aa:2f:ad:83:b4:92:d6:32:3c:74:40:91:c6:fd:06:19: ef:31:e2:3d:56:29:ac:1a:10:bf:bd:ac:90:2c:49:df:ad:48: ee:94:93:63:93:b8:56:28:e1:45:c6:f3:c5:c5:fe:62:41:60: 6f:d2:6a:e9:c1:bb:b7:0b:c1:79:13:7b:d3:15:94:f4:a2:11: f0:4b:86:9f:7b:95:c5:7b:ce:00:41:6a:4a:f7:2b:73:36:26: a7:47:e8:9d:dd:77:c2:08:10:c0:ce:00:53:5b:ce:b1:bb:59: 6d:aa:60:6a:ef:09:f1:10:42:b0:a3:bd:68:ea:c4:cf:26:bb: 6e:a6:9e:f4:57:60:0a:38:43:95:ee:ca:7b:23:12:75:64:72: 38:da:e4:34:60:0a:da:96:a4:93:ee:95:63:80:48:e5:a7:10: 6a:8d:85:ec -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEeosoqq8+5c7OccVRBYZECDrD8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGUwYmVmZjU3ZTBhYTNkNTMwMDgzMjAzOTMwOTMxMzk4 YTk5OTg4NGM2MjE3NTI3NmNjZjdkY2ZkMThiMzliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9RSNrpM56spsF/kUxt8otZbhK9TwzQQ3HDKjFWOJ3TRe9 0pNGC/UN5ribJEdnrPmbYMraqH5kk+oqR/DQoyHXTWOX23QRxNuG2dS+g2lHXzUh CVS1AI0uG5Ws4Jffr1pD6OrLzD6gMBGifOLgiz0HIKI7esL8OKKuPDX0I1K/Ng3B iLAcye/58blGCFWv74fRPNYKlM+evIZgKT2T+gOfFpM4j58xJea0L2uXIoQWzWF2 OeTgebDJKL38qt0f4ZVK28IsPmCitI5NyXNPjgaSaIQs9/iYb4unR35L9TS2aVsc 0b57zT0SZtTUOFSm6FRK8Ca13HiXqCDf9sN3sHfvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUb5tUJN1tVWnEA1o+h+UH4gvN3WwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1N2VhZDQ1LWIxYTctNDEwNi1iZTNjLTZiNjEwYWU1NzU5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigzANBgkqhkiG9w0BAQsFAAOCAQEAcB1yyZt8Bk+7L2VSZmSzbDch0T4z QWkAVUFqBUMxrqH9GWid6Go/FOFL3U+ycZ/TA+OWRbgUdbxbclGBwMGiZoZHvH/5 D8leSjZ/Nz1yb9JbEpegODZLEDwDd32qL62DtJLWMjx0QJHG/QYZ7zHiPVYprBoQ v72skCxJ361I7pSTY5O4VijhRcbzxcX+YkFgb9Jq6cG7twvBeRN70xWU9KIR8EuG n3uVxXvOAEFqSvcrczYmp0fond13wggQwM4AU1vOsbtZbapgau8J8RBCsKO9aOrE zya7bqae9FdgCjhDle7KeyMSdWRyONrkNGAK2pakk+6VY4BI5acQao2F7A== -----END CERTIFICATE-----Generated at Fri Sep 22 16:18:48 2023 by rpki-client on console-ams.rpki-client.org