$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa File: 58a3dcd9-db11-4ca2-8105-437306c32292.roa (raw, json) Hash identifier: F5LcOhAP/lCstXOLbVp+zTRMMMUUQ5WN/aYaVmy2m3o= Subject key identifier: F2:74:3A:92:EC:FD:A0:FA:BC:81:13:66:1C:F9:22:FA:14:89:AB:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57AA73220D955D00B8E38E007D51BE880839CBCC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 208.110.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:aa:73:22:0d:95:5d:00:b8:e3:8e:00:7d:51:be:88:08:39:cb:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=16c39836ba8af7f19797a001a2b3bb31cfc918a7bfdd1e689ec40d8a2033c041, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c1:0b:78:34:89:a1:c9:bd:79:ab:0a:0b:86: 79:5a:72:2c:f4:9d:0e:ca:e0:37:1f:9b:b6:12:c1: d4:6b:70:dc:3e:dc:a4:77:0c:7f:38:5c:fa:bf:e8: cf:38:01:7f:5d:8a:46:73:56:71:69:04:47:01:1a: 93:ad:f5:e1:eb:a2:56:ec:a6:70:5b:f2:00:6f:82: 60:b5:bd:48:08:a5:c4:72:5e:e1:90:e2:91:f4:37: 95:57:f5:89:0e:2e:d5:dc:ea:4a:82:2a:1a:3b:ac: 64:98:7e:2d:1c:a2:a3:27:05:93:16:2a:e4:40:5d: 5f:a5:e9:7b:21:09:32:69:a9:f2:9e:fd:cf:5c:2f: 64:15:eb:09:58:10:a2:64:d0:65:97:9e:aa:4c:ce: 4d:87:2d:01:ca:1b:88:6a:1d:0c:69:55:1b:38:4b: 09:65:7b:03:9d:04:88:66:45:02:71:b7:9c:59:b6: 8a:bc:86:c1:21:70:38:86:d2:74:77:e2:2e:07:08: 23:c7:d0:bd:5b:a8:0b:32:a0:af:94:f5:f3:2c:cd: f0:96:13:45:16:f1:d5:b8:38:f5:75:ef:25:12:47: 85:f3:b1:9d:0e:03:4f:ca:9e:2e:0c:4a:ed:c6:5c: 18:ee:10:0c:f3:b8:26:c6:99:7a:a4:a4:68:bc:23: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:74:3A:92:EC:FD:A0:FA:BC:81:13:66:1C:F9:22:FA:14:89:AB:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.110.48.0/20 Signature Algorithm: sha256WithRSAEncryption bd:f2:96:d7:df:2d:d3:b7:89:b0:8e:ff:ab:40:30:33:3d:f5: 11:8b:8f:96:a5:c1:9b:84:e8:2a:17:f5:13:67:67:85:8f:c5: 30:9e:1c:e6:0d:a3:d2:5d:43:2c:fe:88:11:89:36:74:bc:65: 5d:30:0b:3e:38:65:12:81:91:31:b0:65:f1:90:b6:d8:56:82: 55:10:d0:69:25:46:ff:b8:90:0c:05:e2:d9:44:8d:34:d6:cf: e2:b2:d1:11:25:0d:b7:a8:0f:fb:de:0f:7c:7a:9c:32:3e:31: a4:84:36:4f:c9:cc:46:82:5f:f5:6e:71:03:14:cb:fb:63:55: d1:81:22:84:c4:7b:75:62:99:22:34:16:cc:9b:d0:cb:13:fe: 9d:a0:47:2f:f6:b6:3e:8f:bc:7c:06:bc:3a:78:b7:f4:f7:a4: 59:32:f7:7b:66:b3:a2:9f:52:96:ef:87:bb:e2:92:af:28:e7: 3e:8c:56:b4:20:1f:2f:29:13:eb:73:4c:d3:50:e5:9a:bd:12: c8:41:93:c8:ba:d7:6b:17:5c:d3:db:11:54:bd:20:31:0f:2c: d7:80:37:00:d1:9e:b8:e1:18:d4:cf:c4:f2:5b:f6:e5:37:d8: 43:b6:74:a6:34:64:45:84:65:2c:6a:3e:91:e7:6d:6d:79:a2: 07:70:de:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV6pzIg2VXQC4444AfVG+iAg5y8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNmMzOTgzNmJhOGFmN2YxOTc5N2EwMDFhMmIzYmIzMWNm YzkxOGE3YmZkZDFlNjg5ZWM0MGQ4YTIwMzNjMDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSwQt4NImhyb15qwoLhnlaciz0nQ7K4Dcfm7YSwdRrcNw+ 3KR3DH84XPq/6M84AX9dikZzVnFpBEcBGpOt9eHrolbspnBb8gBvgmC1vUgIpcRy XuGQ4pH0N5VX9YkOLtXc6kqCKho7rGSYfi0coqMnBZMWKuRAXV+l6XshCTJpqfKe /c9cL2QV6wlYEKJk0GWXnqpMzk2HLQHKG4hqHQxpVRs4SwllewOdBIhmRQJxt5xZ toq8hsEhcDiG0nR34i4HCCPH0L1bqAsyoK+U9fMszfCWE0UW8dW4OPV17yUSR4Xz sZ0OA0/Kni4MSu3GXBjuEAzzuCbGmXqkpGi8IxkZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8nQ6kuz9oPq8gRNmHPki+hSJqxIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YTNkY2Q5LWRiMTEtNGNhMi04MTA1LTQzNzMwNmMzMjI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATQbjAwDQYJKoZIhvcNAQELBQADggEBAL3yltffLdO3ibCO/6tAMDM99RGL j5alwZuE6CoX9RNnZ4WPxTCeHOYNo9JdQyz+iBGJNnS8ZV0wCz44ZRKBkTGwZfGQ tthWglUQ0GklRv+4kAwF4tlEjTTWz+Ky0RElDbeoD/veD3x6nDI+MaSENk/JzEaC X/VucQMUy/tjVdGBIoTEe3VimSI0Fsyb0MsT/p2gRy/2tj6PvHwGvDp4t/T3pFky 93tms6KfUpbvh7vikq8o5z6MVrQgHy8pE+tzTNNQ5Zq9EshBk8i612sXXNPbEVS9 IDEPLNeANwDRnrjhGNTPxPJb9uU32EO2dKY0ZEWEZSxqPpHnbW15ogdw3vg= -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:23 2023 by rpki-client on console-ams.rpki-client.org