$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/599afbf9-4286-4e36-99c4-38c16a22ffa3.roa File: 599afbf9-4286-4e36-99c4-38c16a22ffa3.roa (raw, json) Hash identifier: 8TPHXDwv11NqSOlnqjPqUd1sObTbvAvfQb483bwvcSQ= Subject key identifier: 08:FD:26:02:52:A4:B4:19:9A:6B:A6:49:BF:3B:EF:D9:B2:24:FF:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1EC91967D96EB91585EDD8933EC628921325D595 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/599afbf9-4286-4e36-99c4-38c16a22ffa3.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.68.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c9:19:67:d9:6e:b9:15:85:ed:d8:93:3e:c6:28:92:13:25:d5:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=efac7c2f1aae2bc77bec6e07b5b1f0154da7f9447fdb6e162892617d87363499, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:d0:63:0d:d4:0b:79:91:dd:71:a1:87:aa: cf:33:7b:b8:ab:0e:a6:23:da:2e:01:86:41:ae:7f: 6b:05:d3:0e:93:19:a1:40:15:e0:ac:be:f7:11:de: 29:1e:d3:9f:ff:8f:60:5b:fd:1e:b8:f7:79:69:ab: 22:3a:e3:6d:01:ef:b8:7a:9e:22:15:51:55:5f:62: cc:6c:79:ea:fc:5d:3f:11:7f:8e:ee:37:1c:ee:ef: 7c:81:c1:46:64:2a:7e:26:a7:a7:d6:d6:e7:10:9c: 91:70:d9:dc:05:c0:4d:ac:c4:24:6d:1a:dd:2c:39: 65:a1:3a:74:d2:71:c4:c9:44:e9:a8:89:9a:99:71: d6:df:0f:4c:54:7f:6f:38:69:63:45:ac:19:d9:ac: 27:b0:75:dd:e7:ee:bc:04:45:40:32:60:16:41:80: e4:3c:e6:0a:21:1b:b0:96:17:c5:53:0d:a8:4f:23: ea:22:40:a0:5b:c9:d0:c1:61:db:1e:e4:4c:18:ae: 05:fc:66:13:86:1b:11:f0:0d:bc:65:07:15:8e:57: ae:64:3a:2b:be:5c:3b:c5:7a:ba:2f:1f:86:03:2b: ea:99:41:e3:b6:e5:d4:ac:d5:6b:90:45:3e:79:bf: b2:0b:ae:c5:fd:9d:7b:f9:77:48:ea:81:e2:e5:24: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FD:26:02:52:A4:B4:19:9A:6B:A6:49:BF:3B:EF:D9:B2:24:FF:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/599afbf9-4286-4e36-99c4-38c16a22ffa3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:e0:47:9d:e5:3b:0d:c1:15:07:4f:f6:2a:75:5b:56:c8:ba: d1:96:ca:a4:f6:fa:3d:9c:93:4b:1b:cf:0c:bd:f3:17:c5:cf: c2:d4:d2:9b:06:ef:b4:86:22:f8:72:fd:23:17:f8:c2:ce:87: 21:f0:31:19:60:32:0b:1d:12:76:1d:ce:54:53:f0:b3:08:ce: e0:53:5e:ee:cc:ad:9d:7f:2b:d7:89:47:81:15:38:b8:6e:ef: b1:0f:42:61:da:e0:d5:9b:35:b7:44:0e:fd:c3:68:2a:32:50: 5c:a9:24:2f:a8:a4:e6:26:e2:4e:68:7a:cb:4f:31:61:3e:7f: 94:c3:41:7b:bf:38:a3:52:93:eb:0a:5d:ab:ab:0e:c2:aa:0f: ca:d3:b7:96:80:e3:e4:a5:c1:c7:59:0b:b0:8a:d5:d3:5d:4d: 3d:20:a9:5b:29:75:8c:b4:e4:19:ae:a5:e7:0f:d2:63:82:a2: d8:a2:24:ae:5f:1b:55:9a:3f:5b:69:30:76:e7:11:bf:b9:b3: 43:6d:70:c2:6f:06:90:b5:f5:c7:32:06:79:9f:d9:5e:50:87: 10:69:f5:dd:3a:04:38:96:73:96:49:9d:9b:77:0c:98:fb:91: e0:36:10:38:03:46:9b:99:ad:be:3f:c4:03:2a:d2:00:14:5e: 42:44:96:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHskZZ9luuRWF7diTPsYokhMl1ZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmFjN2MyZjFhYWUyYmM3N2JlYzZlMDdiNWIxZjAxNTRk YTdmOTQ0N2ZkYjZlMTYyODkyNjE3ZDg3MzYzNDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2l9BjDdQLeZHdcaGHqs8ze7irDqYj2i4BhkGuf2sF0w6T GaFAFeCsvvcR3ike05//j2Bb/R6493lpqyI6420B77h6niIVUVVfYsxseer8XT8R f47uNxzu73yBwUZkKn4mp6fW1ucQnJFw2dwFwE2sxCRtGt0sOWWhOnTSccTJROmo iZqZcdbfD0xUf284aWNFrBnZrCewdd3n7rwERUAyYBZBgOQ85gohG7CWF8VTDahP I+oiQKBbydDBYdse5EwYrgX8ZhOGGxHwDbxlBxWOV65kOiu+XDvFerovH4YDK+qZ QeO25dSs1WuQRT55v7ILrsX9nXv5d0jqgeLlJANbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCP0mAlKktBmaa6ZJvzvv2bIk//IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OWFmYmY5LTQyODYtNGUzNi05OWM0LTM4YzE2YTIyZmZhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4RDANBgkqhkiG9w0BAQsFAAOCAQEAOeBHneU7DcEVB0/2KnVbVsi60ZbK pPb6PZyTSxvPDL3zF8XPwtTSmwbvtIYi+HL9Ixf4ws6HIfAxGWAyCx0Sdh3OVFPw swjO4FNe7sytnX8r14lHgRU4uG7vsQ9CYdrg1Zs1t0QO/cNoKjJQXKkkL6ik5ibi Tmh6y08xYT5/lMNBe784o1KT6wpdq6sOwqoPytO3loDj5KXBx1kLsIrV011NPSCp Wyl1jLTkGa6l5w/SY4Ki2KIkrl8bVZo/W2kwducRv7mzQ21wwm8GkLX1xzIGeZ/Z XlCHEGn13ToEOJZzlkmdm3cMmPuR4DYQOANGm5mtvj/EAyrSABReQkSWsg== -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:59 2023 by rpki-client on console-ams.rpki-client.org