$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa File: 5adf633d-95e5-488d-80ff-102a50794cfd.roa (raw, json) Hash identifier: 3sl7jKIm+aL6CbTlHrGO279//lStGPrj0uIG4fCAZ20= Subject key identifier: 00:0B:6C:4B:29:7D:C5:B2:30:0C:D4:78:5E:B3:09:40:74:C4:17:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 090C7DD6D4981F9F2109388E24AAE234590C4403 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 198.99.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:0c:7d:d6:d4:98:1f:9f:21:09:38:8e:24:aa:e2:34:59:0c:44:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c91118400fea6300bd910b2e150d69ff8d2222cd92b609284e5fb55dad1451c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e8:ba:0f:9c:ab:26:76:ea:c4:f2:5b:6d:66: b4:b6:db:af:08:30:26:ba:16:39:14:d6:ca:e5:f4: 67:dc:9a:ae:df:91:11:00:7c:17:7b:56:34:c5:68: 51:94:3c:12:23:d5:65:7e:44:e8:83:20:0a:2c:1f: 88:9e:ae:79:2f:9c:7c:07:66:ca:f9:58:07:e5:03: 91:84:37:18:31:b5:f3:4e:1f:ac:29:98:3a:4c:14: aa:50:5c:4e:f8:43:9e:cc:49:54:5b:9e:32:c8:b6: 9f:4e:87:16:b8:fa:6f:9d:22:50:d9:48:5c:61:f2: f1:a4:43:7b:41:23:f0:44:07:bc:a2:a6:8b:6f:e1: 8e:c3:43:87:f0:94:ad:4a:ae:d4:5c:47:31:50:8e: f1:5e:13:fb:25:af:52:26:88:b4:ea:39:87:7d:77: 0d:1f:22:61:2d:45:e7:c5:7d:b4:5d:16:76:f2:b2: ff:6d:8e:5a:76:e2:13:2c:f3:48:e6:db:86:92:e4: f9:4d:da:f9:0b:75:e9:56:6d:b8:86:b9:0b:af:e9: c1:69:c4:42:b6:a2:a4:5b:03:50:e9:a0:1a:1b:b1: 45:90:ac:19:39:42:18:12:d9:a4:9c:ec:11:ff:32: df:fa:49:48:2a:04:20:a2:c7:4b:e0:95:2b:fb:bf: da:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0B:6C:4B:29:7D:C5:B2:30:0C:D4:78:5E:B3:09:40:74:C4:17:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.99.3.0/24 Signature Algorithm: sha256WithRSAEncryption 78:c7:09:d9:ce:ad:3f:5d:19:54:d3:54:1b:7e:d2:7a:4f:c6: 30:53:a2:f2:5d:b0:70:21:91:62:fe:59:4c:aa:d2:fc:ab:39: d9:84:02:b1:ea:ad:9d:04:45:02:3b:29:d1:6c:b8:e9:5a:ce: 86:11:4f:42:b4:30:df:0c:92:d1:d6:b3:e3:a6:6f:55:71:15: f6:92:5d:c6:88:6a:4e:a9:a5:e0:69:05:d5:a2:9d:ae:e4:08: dc:de:46:42:14:fd:9e:ef:7d:4c:15:14:2a:5c:92:80:11:a4: 34:0f:2d:da:59:5a:98:24:4d:25:87:47:f2:41:88:12:4d:4a: 91:c1:a7:45:88:35:b3:84:1f:b4:49:f2:86:9d:e1:2e:e3:3d: b9:ca:d0:a4:e5:00:0f:b0:f2:04:b0:30:d8:82:41:43:5b:89: 8f:7e:9e:7f:6f:af:d8:8d:af:5a:ae:06:50:fe:bd:30:f8:10: 84:8f:e7:15:77:c4:4f:39:0d:07:6b:07:7a:5d:0d:f6:80:c8: 34:4e:66:9c:04:a9:d2:d4:2a:ee:f1:84:06:a6:2e:14:e6:bc: bd:da:3a:17:0c:bc:d0:ba:ad:cf:c0:b0:da:3f:1c:f2:62:46: 3e:62:3e:7f:c7:74:0b:6e:2c:ad:e9:0d:ea:1c:cc:60:c2:c4: 7a:31:b8:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCQx91tSYH58hCTiOJKriNFkMRAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTExMTg0MDBmZWE2MzAwYmQ5MTBiMmUxNTBkNjlmZjhk MjIyMmNkOTJiNjA5Mjg0ZTVmYjU1ZGFkMTQ1MWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc6LoPnKsmdurE8lttZrS2268IMCa6FjkU1srl9Gfcmq7f kREAfBd7VjTFaFGUPBIj1WV+ROiDIAosH4iernkvnHwHZsr5WAflA5GENxgxtfNO H6wpmDpMFKpQXE74Q57MSVRbnjLItp9Ohxa4+m+dIlDZSFxh8vGkQ3tBI/BEB7yi potv4Y7DQ4fwlK1KrtRcRzFQjvFeE/slr1ImiLTqOYd9dw0fImEtRefFfbRdFnby sv9tjlp24hMs80jm24aS5PlN2vkLdelWbbiGuQuv6cFpxEK2oqRbA1DpoBobsUWQ rBk5QhgS2aSc7BH/Mt/6SUgqBCCix0vglSv7v9qNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAAtsSyl9xbIwDNR4XrMJQHTEF5wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZGY2MzNkLTk1ZTUtNDg4ZC04MGZmLTEwMmE1MDc5NGNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGYwMwDQYJKoZIhvcNAQELBQADggEBAHjHCdnOrT9dGVTTVBt+0npPxjBT ovJdsHAhkWL+WUyq0vyrOdmEArHqrZ0ERQI7KdFsuOlazoYRT0K0MN8MktHWs+Om b1VxFfaSXcaIak6ppeBpBdWina7kCNzeRkIU/Z7vfUwVFCpckoARpDQPLdpZWpgk TSWHR/JBiBJNSpHBp0WINbOEH7RJ8oad4S7jPbnK0KTlAA+w8gSwMNiCQUNbiY9+ nn9vr9iNr1quBlD+vTD4EISP5xV3xE85DQdrB3pdDfaAyDROZpwEqdLUKu7xhAam LhTmvL3aOhcMvNC6rc/AsNo/HPJiRj5iPn/HdAtuLK3pDeoczGDCxHoxuGM= -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:23 2023 by rpki-client on console-ams.rpki-client.org