$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa File: 59f5622d-1ca3-4310-a7bb-9aeda3799734.roa (raw, json) Hash identifier: PsnJHWfuHyXoqPcrGMTkfqu51c81UAZ16i7HVpviFtI= Subject key identifier: D9:EA:88:E6:95:77:D3:4F:AE:F9:60:46:7B:04:9D:2A:FE:32:00:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 687539D08CAB8EFE2C160C689B5C5C340BCDD139 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:75:39:d0:8c:ab:8e:fe:2c:16:0c:68:9b:5c:5c:34:0b:cd:d1:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7a125189531748f436243de5dc177f7053a4b2bc38c548390a6a24a7d729ba51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c4:68:97:79:59:c9:6e:79:23:61:78:7e:05: 80:e1:4f:61:c9:13:57:68:f5:e8:2e:35:8f:99:a1: 03:a8:0d:28:c0:ae:32:5a:30:23:37:2f:85:ce:45: a5:75:25:a2:c3:03:ba:a4:33:82:8a:a6:b3:52:77: c1:81:5f:38:de:9d:83:a4:f6:13:84:cf:9c:7e:35: 6c:49:13:7b:bd:e9:b7:8f:87:bf:5b:dd:58:db:2c: f3:5d:a2:83:8b:d9:59:ba:45:ab:25:14:a8:ea:5a: 81:57:74:1c:3f:08:df:a9:d8:31:23:bc:69:bc:33: f7:1f:66:41:57:4e:bf:27:c1:d4:c6:d3:10:bf:b7: 41:f1:2e:d9:88:ad:63:5c:6e:da:fe:10:93:01:2c: f7:9d:52:a9:f4:60:6f:4f:56:82:93:35:55:6b:78: 2e:96:9b:eb:55:a2:47:9b:2c:fc:77:85:81:a9:58: 8b:2a:b2:45:0a:4d:22:f8:6a:69:cb:14:53:d9:bd: e3:d5:44:b1:71:9d:f4:49:e1:8f:c0:3d:ba:ca:eb: 99:27:4e:ca:b0:5c:47:80:d3:02:4d:33:9a:2a:a8: ab:8a:c4:e7:c7:98:65:c6:e3:ca:8f:ab:e8:43:d2: db:9c:82:11:3f:08:5a:a6:73:86:2e:19:c8:22:90: 70:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EA:88:E6:95:77:D3:4F:AE:F9:60:46:7B:04:9D:2A:FE:32:00:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:dc:26:79:95:9c:60:64:28:40:0a:d1:6e:e1:ed:f5:f1:62: 42:ea:1b:51:36:9f:f4:8b:8b:a7:71:19:ae:40:7a:49:ee:70: e3:0b:9c:41:06:46:8d:de:8d:ba:b9:23:28:7d:f8:f8:65:8b: d1:84:a8:b3:d6:f0:c8:4b:b4:28:2a:57:ad:e2:3a:5d:2b:2d: 17:34:cf:a1:37:7f:07:5d:18:09:3d:2d:68:61:f7:eb:bf:35: bb:b5:cb:20:bc:e3:04:28:45:8e:c3:97:0a:b1:0e:7f:b5:15: cf:bc:d7:0b:c4:2b:8a:fa:b3:bc:33:0f:36:ff:4a:f4:42:7a: 47:02:d5:37:af:f5:6e:25:d3:c7:7f:ff:96:58:c8:de:27:10: 94:d4:84:ff:69:ea:31:c6:a3:8f:ce:7a:fb:f7:77:dd:8e:d0: 9f:71:7e:fe:b3:9f:45:95:e5:e7:39:3f:82:75:81:d5:61:8e: 69:da:25:7c:c4:ba:93:56:a4:47:77:44:f6:a0:d4:d3:14:37: 4c:7d:03:5a:91:de:c9:a4:53:2f:eb:9c:0d:c4:fa:5b:4e:d7: 7d:39:83:5a:56:56:31:35:a5:83:84:fe:7a:a1:fc:06:1d:cc: 16:d0:06:98:ec:e6:90:e1:86:bc:22:d4:ee:a3:22:24:ef:86: 3f:f8:61:d0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaHU50Iyrjv4sFgxom1xcNAvN0TkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTEyNTE4OTUzMTc0OGY0MzYyNDNkZTVkYzE3N2Y3MDUz YTRiMmJjMzhjNTQ4MzkwYTZhMjRhN2Q3MjliYTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClxGiXeVnJbnkjYXh+BYDhT2HJE1do9eguNY+ZoQOoDSjA rjJaMCM3L4XORaV1JaLDA7qkM4KKprNSd8GBXzjenYOk9hOEz5x+NWxJE3u96beP h79b3VjbLPNdooOL2Vm6RaslFKjqWoFXdBw/CN+p2DEjvGm8M/cfZkFXTr8nwdTG 0xC/t0HxLtmIrWNcbtr+EJMBLPedUqn0YG9PVoKTNVVreC6Wm+tVokebLPx3hYGp WIsqskUKTSL4amnLFFPZvePVRLFxnfRJ4Y/APbrK65knTsqwXEeA0wJNM5oqqKuK xOfHmGXG48qPq+hD0tucghE/CFqmc4YuGcgikHBbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2eqI5pV300+u+WBGewSdKv4yACswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZjU2MjJkLTFjYTMtNDMxMC1hN2JiLTlhZWRhMzc5OTczNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvTANBgkqhkiG9w0BAQsFAAOCAQEArNwmeZWcYGQoQArRbuHt9fFiQuob UTaf9IuLp3EZrkB6Se5w4wucQQZGjd6NurkjKH34+GWL0YSos9bwyEu0KCpXreI6 XSstFzTPoTd/B10YCT0taGH36781u7XLILzjBChFjsOXCrEOf7UVz7zXC8Qrivqz vDMPNv9K9EJ6RwLVN6/1biXTx3//lljI3icQlNSE/2nqMcajj856+/d33Y7Qn3F+ /rOfRZXl5zk/gnWB1WGOadolfMS6k1akR3dE9qDU0xQ3TH0DWpHeyaRTL+ucDcT6 W07XfTmDWlZWMTWlg4T+eqH8Bh3MFtAGmOzmkOGGvCLU7qMiJO+GP/hh0A== -----END CERTIFICATE-----Generated at Fri Sep 22 17:51:33 2023 by rpki-client on console-ams.rpki-client.org