$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: qG6a93kkggV+TprTfDU0rjcqUKQ/y/lFQh94ywGIQNo= Subject key identifier: 1F:1B:C6:A0:7E:BF:3A:61:A7:9E:65:98:25:CC:67:30:AE:B9:9A:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03538D56F1D3E719049AD612158CF19473CBFC85 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:53:8d:56:f1:d3:e7:19:04:9a:d6:12:15:8c:f1:94:73:cb:fc:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=073cff5c0f4ccb8c12095ecc1cb41c91deb476baa887412af2acd3929500aa62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:51:40:f1:6e:07:3c:d9:d2:90:d1:33:fb:6d: bd:41:51:07:01:ab:7e:b8:37:98:1a:e2:10:61:78: 00:f6:41:e5:39:71:f8:5a:17:2b:72:06:93:49:96: 43:a8:68:ba:d9:03:26:60:80:9e:18:f7:8b:83:89: 0f:89:41:dd:5e:c7:7c:16:ae:b6:76:4d:d6:15:38: 06:19:55:cf:be:26:0f:ca:66:03:5a:78:71:6a:a0: b9:8a:9a:02:73:c4:50:17:39:2f:b4:42:03:f3:62: 80:99:80:68:14:8b:2b:a0:d6:1e:d9:6f:75:06:99: 18:a1:eb:0f:6b:f8:ab:6a:ca:7a:be:63:ad:82:29: 33:85:74:4a:17:37:65:36:3d:19:b3:12:3c:56:3b: 54:21:ff:2f:15:d8:ee:d1:93:f4:04:8b:5e:0f:14: b4:5d:a5:dc:ac:34:83:8a:1f:56:74:aa:dd:7d:50: 7a:70:32:49:ea:66:88:dd:26:c6:38:9b:77:79:22: ad:79:de:5b:bb:c6:68:31:8c:fc:a2:d2:81:4e:09: 82:78:8b:3b:dc:8c:c5:0f:e4:fb:9f:65:48:87:0b: d0:4d:3e:c4:e4:d3:9d:5b:86:6c:5b:04:5a:7b:b3: d1:2d:1a:9e:aa:5f:5e:01:73:bc:cc:5d:9f:2a:ed: 40:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1B:C6:A0:7E:BF:3A:61:A7:9E:65:98:25:CC:67:30:AE:B9:9A:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:c7:b9:e8:7a:d6:e1:ae:92:32:1c:09:40:63:e1:60:49:11: b9:7c:22:10:fa:59:bd:0d:4a:2b:91:53:4f:7a:af:ff:92:28: f2:95:d8:41:a6:b7:f4:64:40:24:7b:d4:56:d5:52:84:76:5f: d4:16:34:38:0c:40:20:f3:18:b1:25:c3:12:bb:a7:9a:28:31: 9e:8d:32:4a:07:a1:fd:d8:26:4d:61:46:7d:1a:97:2d:b9:99: a2:1d:d5:b1:4d:63:1d:9b:87:25:1a:c8:a0:f2:e4:e1:20:67: cf:a5:c0:3e:e4:e6:19:60:e4:7c:78:94:f7:d6:1e:60:37:30: 34:ae:2b:82:9e:88:6c:0d:bb:da:db:2f:e0:de:14:8d:f8:ed: 29:fc:49:c5:bd:70:12:2c:69:85:81:2d:4e:72:17:47:30:3e: 18:3d:76:c0:f7:85:3d:e3:59:fe:cf:f7:e4:b0:53:e5:52:76: e6:15:04:9e:da:a8:61:f6:20:5b:6a:2e:34:53:c4:30:1d:62: 1b:71:d0:b5:eb:e4:f4:47:03:7a:2f:97:5f:b3:e6:11:c2:85: 08:c9:b9:a0:15:65:d3:25:38:31:ad:87:34:a9:43:91:e0:dc: 41:5f:48:12:be:e0:f6:60:ef:c0:89:a3:56:e0:75:2b:44:e7: b9:82:2c:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA1ONVvHT5xkEmtYSFYzxlHPL/IUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzNjZmY1YzBmNGNjYjhjMTIwOTVlY2MxY2I0MWM5MWRl YjQ3NmJhYTg4NzQxMmFmMmFjZDM5Mjk1MDBhYTYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhUUDxbgc82dKQ0TP7bb1BUQcBq364N5ga4hBheAD2QeU5 cfhaFytyBpNJlkOoaLrZAyZggJ4Y94uDiQ+JQd1ex3wWrrZ2TdYVOAYZVc++Jg/K ZgNaeHFqoLmKmgJzxFAXOS+0QgPzYoCZgGgUiyug1h7Zb3UGmRih6w9r+Ktqynq+ Y62CKTOFdEoXN2U2PRmzEjxWO1Qh/y8V2O7Rk/QEi14PFLRdpdysNIOKH1Z0qt19 UHpwMknqZojdJsY4m3d5Iq153lu7xmgxjPyi0oFOCYJ4izvcjMUP5PufZUiHC9BN PsTk051bhmxbBFp7s9EtGp6qX14Bc7zMXZ8q7UDlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHxvGoH6/OmGnnmWYJcxnMK65mjowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAT8e56HrW4a6SMhwJQGPhYEkRuXwi EPpZvQ1KK5FTT3qv/5Io8pXYQaa39GRAJHvUVtVShHZf1BY0OAxAIPMYsSXDErun migxno0ySgeh/dgmTWFGfRqXLbmZoh3VsU1jHZuHJRrIoPLk4SBnz6XAPuTmGWDk fHiU99YeYDcwNK4rgp6IbA272tsv4N4UjfjtKfxJxb1wEixphYEtTnIXRzA+GD12 wPeFPeNZ/s/35LBT5VJ25hUEntqoYfYgW2ouNFPEMB1iG3HQtevk9EcDei+XX7Pm EcKFCMm5oBVl0yU4Ma2HNKlDkeDcQV9IEr7g9mDvwImjVuB1K0TnuYIsWw== -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:13 2023 by rpki-client on console-fra.rpki-client.org