$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa File: 5753e2d3-4442-467a-b1d8-3c38c62f910c.roa (raw, json) Hash identifier: QF070ybPfQSPm5eo10Xr2gUMhrOdAWCb4myMcRPZcHA= Subject key identifier: 50:75:A8:F5:FB:D7:28:40:22:BF:5E:D1:06:B7:2D:30:0D:C6:D0:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AFB67360396521C324E241332E55547AA548DBE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fb:67:36:03:96:52:1c:32:4e:24:13:32:e5:55:47:aa:54:8d:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=8a966b42e825e291bcedd1f1274f58146a6ed8abc24842fcd32983929346e630, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:24:65:33:fb:46:49:a1:ca:e5:36:4f:74:54: 32:06:84:db:68:b0:0f:74:73:7b:13:ae:e1:a0:42: 09:98:03:a8:d7:ae:9d:c8:44:e9:d8:b8:d8:6a:ca: e9:80:af:bb:2e:3d:e2:c3:cc:3c:26:07:8b:29:5d: 5b:35:1f:68:27:18:d0:da:4d:0d:96:ae:e8:60:c3: 55:b5:10:a5:3a:83:bf:5c:c6:14:47:d4:2b:c1:db: 95:1a:cc:c0:09:70:3a:a0:f0:4b:8f:04:56:18:eb: d3:71:a1:67:37:ba:ae:c6:24:46:95:00:40:06:b4: f4:82:b2:04:9c:be:ad:2c:2e:8f:72:cb:57:a1:2f: 38:75:e2:97:1c:e4:b4:e0:94:fe:8b:ef:dd:39:dd: 30:73:79:ee:9b:50:3a:e5:4b:0c:87:9e:b2:92:81: 6a:d0:09:be:46:cb:ed:d5:4d:84:23:1f:9f:3e:ba: 3f:46:e2:66:69:bf:ad:60:7f:8b:3a:c2:d8:b0:3d: b9:a1:b8:03:11:64:dc:15:c0:2c:5e:fd:61:28:42: 19:d9:28:e1:ce:41:06:4d:08:d9:35:b5:22:29:ca: 5d:27:41:c6:c0:56:92:2a:0f:c0:7c:57:49:6c:25: ac:3c:c9:7c:1f:5a:f1:bf:1e:44:5f:e5:88:9d:a8: 65:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:75:A8:F5:FB:D7:28:40:22:BF:5E:D1:06:B7:2D:30:0D:C6:D0:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 7d:a9:56:55:87:a1:e5:30:bb:8a:15:1d:56:8b:6b:b3:50:3e: 2c:3f:6c:04:5f:25:f9:83:af:db:32:cf:b9:21:db:b8:a6:61: 23:20:fc:f4:9d:22:57:8a:64:fb:2b:67:1c:d4:07:85:62:0a: 14:58:22:ba:cb:32:f5:9a:46:84:69:65:fc:e3:34:b9:cb:7a: 76:8c:dd:fd:3c:de:d3:ef:70:f1:93:ad:5a:e9:d1:68:67:75: 46:37:03:06:5e:ce:9a:fc:83:12:4c:fa:27:97:91:2b:e8:13: 8c:62:66:f8:81:ce:2d:3f:7e:4b:b5:d4:63:f0:ad:95:6e:2b: 47:7f:46:2b:a8:3c:ea:d3:07:69:ec:60:3e:34:a7:a1:b7:0c: cb:27:c3:06:0f:61:4f:31:b6:70:b3:12:45:65:a5:73:01:29: d9:6d:a5:69:49:cc:bc:c1:2f:55:42:7d:8a:5d:82:07:7a:b5: 03:47:71:df:6c:29:2f:6c:c6:2d:4b:b1:b2:b2:07:5a:b9:04: c7:26:6a:36:f7:ed:00:5a:71:9c:0a:6c:de:86:a5:67:ba:a7: 78:75:02:9d:8a:21:26:b2:d0:bd:03:9d:f2:a8:e6:af:ad:26: b0:2d:49:d6:9d:9b:dc:4a:d0:7b:37:c3:fc:3a:8f:49:7f:56: 76:5c:36:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOvtnNgOWUhwyTiQTMuVVR6pUjb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTk2NmI0MmU4MjVlMjkxYmNlZGQxZjEyNzRmNTgxNDZh NmVkOGFiYzI0ODQyZmNkMzI5ODM5MjkzNDZlNjMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZJGUz+0ZJocrlNk90VDIGhNtosA90c3sTruGgQgmYA6jX rp3IROnYuNhqyumAr7suPeLDzDwmB4spXVs1H2gnGNDaTQ2Wruhgw1W1EKU6g79c xhRH1CvB25UazMAJcDqg8EuPBFYY69NxoWc3uq7GJEaVAEAGtPSCsgScvq0sLo9y y1ehLzh14pcc5LTglP6L79053TBzee6bUDrlSwyHnrKSgWrQCb5Gy+3VTYQjH58+ uj9G4mZpv61gf4s6wtiwPbmhuAMRZNwVwCxe/WEoQhnZKOHOQQZNCNk1tSIpyl0n QcbAVpIqD8B8V0lsJaw8yXwfWvG/HkRf5YidqGX7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUHWo9fvXKEAiv17RBrctMA3G0JAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTNlMmQzLTQ0NDItNDY3YS1iMWQ4LTNjMzhjNjJmOTEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5MAwDQYJKoZIhvcNAQELBQADggEBAH2pVlWHoeUwu4oVHVaLa7NQPiw/ bARfJfmDr9syz7kh27imYSMg/PSdIleKZPsrZxzUB4ViChRYIrrLMvWaRoRpZfzj NLnLenaM3f083tPvcPGTrVrp0WhndUY3AwZezpr8gxJM+ieXkSvoE4xiZviBzi0/ fku11GPwrZVuK0d/RiuoPOrTB2nsYD40p6G3DMsnwwYPYU8xtnCzEkVlpXMBKdlt pWlJzLzBL1VCfYpdggd6tQNHcd9sKS9sxi1LsbKyB1q5BMcmajb37QBacZwKbN6G pWe6p3h1Ap2KISay0L0DnfKo5q+tJrAtSdadm9xK0Hs3w/w6j0l/VnZcNm0= -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:52 2023 by rpki-client on console-fra.rpki-client.org