$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa File: 55df95b1-8dcd-446c-acf2-48bf57c934d1.roa (raw, json) Hash identifier: m54ubua0rpSqn9Ds/OVgIV1V7BOkRuj2Ks0bMDT6ZeE= Subject key identifier: F4:DF:A2:7B:34:61:FA:DE:BF:11:34:97:F6:1A:BC:93:22:EC:D1:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02519E58728EE3DDD3BF7C72268D0A585E493F7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:51:9e:58:72:8e:e3:dd:d3:bf:7c:72:26:8d:0a:58:5e:49:3f:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2f60659dbbebb90e63a47be63e211a34d9cdf4c982486f5cc3e53e77a9c4fdf9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:90:2a:32:dd:6a:f5:ef:71:e5:45:5c:47: 71:a5:dc:3d:38:c8:45:84:32:fa:8e:4c:80:ef:7c: 08:f1:75:b6:2f:b2:67:a2:cc:b0:33:52:c4:79:b4: 8b:58:bc:68:be:c9:60:d1:ae:ea:5e:b8:eb:21:bb: 30:ba:bd:ed:32:47:fd:a8:24:ac:fc:7f:8e:6a:ac: 7e:fc:cf:1b:1d:e2:a9:ff:38:e9:7b:a9:94:4f:df: ef:ca:30:d3:18:84:98:bd:6d:11:a7:ee:30:db:4e: 0b:e8:a6:cc:27:f0:39:3e:09:dc:65:2c:00:ef:85: 8c:91:07:b9:58:e3:b4:a8:18:96:84:37:b1:b4:ab: 7a:35:21:f1:bb:d6:ab:41:fb:ec:c2:ca:d8:bd:e9: d1:4d:e0:80:41:c7:83:fe:0d:f4:79:70:4e:ad:78: 08:79:c0:61:ba:b2:8e:8d:b0:6e:52:61:fb:07:e4: 97:d1:d6:d7:f4:bc:b3:6c:8d:26:fa:24:de:25:f0: ad:7d:45:18:2f:0c:00:dc:59:78:5f:a4:72:10:8e: 43:aa:cf:cd:7d:52:ea:a5:8a:bc:6d:54:b2:e4:63: 8f:45:ac:80:a2:11:6e:3c:0d:22:cb:b1:2a:0f:39: e1:c1:2d:92:3d:32:49:3b:88:78:29:42:2f:a0:d8: 10:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DF:A2:7B:34:61:FA:DE:BF:11:34:97:F6:1A:BC:93:22:EC:D1:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.208.0/22 Signature Algorithm: sha256WithRSAEncryption 25:3b:aa:a7:3b:35:97:83:f2:58:bd:e3:fc:b9:52:66:e1:c7: 96:c2:8b:c2:1a:c2:12:2d:dc:c7:cf:92:28:60:97:48:09:bb: 7e:eb:fe:77:5e:d6:2c:87:9c:8c:eb:d0:f7:f4:1f:a6:08:d3: 99:36:24:2b:ac:d0:fe:c8:f3:ee:d0:ff:cd:bf:f5:5a:71:99: db:fd:42:c0:fc:47:98:68:0f:c5:bd:49:e0:09:93:b3:63:f4: 21:d4:eb:c1:f8:2f:b0:bc:a8:74:e1:c8:ab:9e:88:45:6d:97: bb:6d:1b:1f:e5:68:38:e0:3d:c5:54:98:3a:9a:d1:12:3c:38: c0:6e:f0:7e:77:29:fc:2d:65:ce:57:57:19:fb:45:95:08:50: 76:b8:dc:5b:f4:2a:94:ac:5d:f4:3e:57:b2:a4:29:81:ed:fe: f5:8e:b7:22:82:a7:b1:9f:8a:9c:48:c5:33:05:73:90:df:c5: d2:dc:10:78:1c:7f:62:e3:b2:cd:1b:dc:1f:66:16:2f:2d:02: 45:e0:b5:70:98:86:e6:ee:24:8a:44:f3:91:c9:64:21:e3:ae: 76:86:bf:e7:59:48:6a:67:c5:e6:a3:c5:f9:31:86:b4:97:62: 68:01:e8:9e:5c:b5:05:2b:91:50:c5:65:5b:72:1a:20:7b:6d: b5:6f:1c:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAlGeWHKO493Tv3xyJo0KWF5JP3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjYwNjU5ZGJiZWJiOTBlNjNhNDdiZTYzZTIxMWEzNGQ5 Y2RmNGM5ODI0ODZmNWNjM2U1M2U3N2E5YzRmZGY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDdpAqMt1q9e9x5UVcR3Gl3D04yEWEMvqOTIDvfAjxdbYv smeizLAzUsR5tItYvGi+yWDRrupeuOshuzC6ve0yR/2oJKz8f45qrH78zxsd4qn/ OOl7qZRP3+/KMNMYhJi9bRGn7jDbTgvopswn8Dk+CdxlLADvhYyRB7lY47SoGJaE N7G0q3o1IfG71qtB++zCyti96dFN4IBBx4P+DfR5cE6teAh5wGG6so6NsG5SYfsH 5JfR1tf0vLNsjSb6JN4l8K19RRgvDADcWXhfpHIQjkOqz819UuqlirxtVLLkY49F rICiEW48DSLLsSoPOeHBLZI9Mkk7iHgpQi+g2BDJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9N+iezRh+t6/ETSX9hq8kyLs0dIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1ZGY5NWIxLThkY2QtNDQ2Yy1hY2YyLTQ4YmY1N2M5MzRkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTtAwDQYJKoZIhvcNAQELBQADggEBACU7qqc7NZeD8li94/y5Umbhx5bC i8IawhIt3MfPkihgl0gJu37r/nde1iyHnIzr0Pf0H6YI05k2JCus0P7I8+7Q/82/ 9Vpxmdv9QsD8R5hoD8W9SeAJk7Nj9CHU68H4L7C8qHThyKueiEVtl7ttGx/laDjg PcVUmDqa0RI8OMBu8H53KfwtZc5XVxn7RZUIUHa43Fv0KpSsXfQ+V7KkKYHt/vWO tyKCp7GfipxIxTMFc5DfxdLcEHgcf2Ljss0b3B9mFi8tAkXgtXCYhubuJIpE85HJ ZCHjrnaGv+dZSGpnxeajxfkxhrSXYmgB6J5ctQUrkVDFZVtyGiB7bbVvHK0= -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:00 2023 by rpki-client on console-fra.rpki-client.org