$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa File: 5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa (raw, json) Hash identifier: JlfJyPaIdqdkERQIrew6fQNdZ5O/8TkXVWzRyOw3tX4= Subject key identifier: 47:E1:55:BB:93:3A:64:04:AB:3F:06:96:3F:7A:A0:68:B0:E0:13:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52F34C34AC5F5B4329CF7A361E125C2B2F62591F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:f3:4c:34:ac:5f:5b:43:29:cf:7a:36:1e:12:5c:2b:2f:62:59:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=535d1edb70eea310ca122947689aac753702a5fd21f16ce1f94556482c21455f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ad:13:a9:4b:f3:cb:c1:75:c4:ed:f5:81:28: bc:28:af:0a:e4:2a:74:ec:c9:bc:2a:81:17:b3:ad: 1f:09:35:a3:fc:d6:28:0e:35:fb:c0:11:66:de:3e: a2:31:2c:5e:d1:85:4b:da:33:8e:cd:ea:fb:f7:75: c4:c3:2b:09:ba:66:78:70:f5:0e:19:d6:e7:9f:c8: d2:a2:3e:09:e9:cb:cf:fa:f1:2b:6d:b3:2a:b2:7a: d9:29:f7:e3:e2:f0:d2:82:94:ef:87:3b:10:ed:a9: 22:65:99:e9:80:b6:98:24:44:f9:fd:59:5a:96:dc: 9b:5f:4a:68:61:92:c1:ca:a1:5f:10:02:f4:9c:57: ca:c3:e3:c4:01:71:2c:0f:71:7c:e9:ed:46:f1:f3: 5f:59:6e:a9:68:26:37:72:63:57:94:01:5c:f4:60: 1e:06:ff:f1:9f:08:93:ef:5c:c3:f0:98:a0:f4:fb: 33:ed:75:67:76:39:11:41:69:94:c0:a5:06:8f:ac: 5d:18:3c:fb:19:72:02:c9:99:0a:58:fc:ad:92:9c: 45:46:ab:37:9d:fc:99:87:37:33:40:21:ce:1c:77: 3b:ce:ec:ed:54:bd:12:33:5d:13:de:bc:32:66:e2: 49:43:d8:0f:c4:8d:d1:9d:77:98:15:81:68:c6:c6: f2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E1:55:BB:93:3A:64:04:AB:3F:06:96:3F:7A:A0:68:B0:E0:13:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.249.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ca:36:55:37:c9:58:61:7d:6b:be:7f:8e:96:dd:a2:5a:de: 88:bf:77:f5:db:ea:76:82:2a:26:7f:2a:66:fa:f9:d5:0e:44: a7:1f:90:c4:5d:02:9d:b3:a0:eb:67:24:4b:bd:59:36:77:e7: e9:8d:b4:c7:03:53:dc:03:a2:52:ad:2c:46:f7:d8:88:90:97: 81:1a:da:8d:c7:72:e1:54:6e:cf:95:ce:78:c5:0a:a6:ae:a8: ca:0c:38:45:62:b8:87:e6:8f:39:7a:b8:2a:d2:cc:c0:81:c5: 9f:32:10:d8:0a:e2:12:f9:7e:93:87:c3:3e:8e:bf:d9:2d:a9: b3:ba:7b:d2:59:74:b4:8a:5f:64:de:96:c2:40:03:7d:da:f4: a9:84:72:b1:9a:7a:03:19:7c:50:63:e1:b5:fe:59:c1:99:fc: 9e:13:1d:47:83:5b:7c:27:1f:d2:f4:4b:4e:df:3f:08:b2:91: 0d:0b:51:dc:35:2a:f4:00:d5:60:d7:b8:12:d3:66:ee:9b:6c: 00:ac:38:fb:63:21:a1:63:b4:94:fe:8a:23:c1:12:bb:80:f5: 5b:49:f5:e2:65:e9:c4:4b:25:2c:61:88:0c:71:40:65:35:e3: 3e:78:c1:95:97:24:9c:e0:2c:86:d7:33:0f:61:dd:b9:4d:71: b2:10:99:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUvNMNKxfW0Mpz3o2HhJcKy9iWR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzVkMWVkYjcwZWVhMzEwY2ExMjI5NDc2ODlhYWM3NTM3 MDJhNWZkMjFmMTZjZTFmOTQ1NTY0ODJjMjE0NTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9rROpS/PLwXXE7fWBKLworwrkKnTsybwqgRezrR8JNaP8 1igONfvAEWbePqIxLF7RhUvaM47N6vv3dcTDKwm6Znhw9Q4Z1uefyNKiPgnpy8/6 8Sttsyqyetkp9+Pi8NKClO+HOxDtqSJlmemAtpgkRPn9WVqW3JtfSmhhksHKoV8Q AvScV8rD48QBcSwPcXzp7Ubx819ZbqloJjdyY1eUAVz0YB4G//GfCJPvXMPwmKD0 +zPtdWd2ORFBaZTApQaPrF0YPPsZcgLJmQpY/K2SnEVGqzed/JmHNzNAIc4cdzvO 7O1UvRIzXRPevDJm4klD2A/EjdGdd5gVgWjGxvLlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR+FVu5M6ZASrPwaWP3qgaLDgE5QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViZGIyMDI1LTcxODEtNDM5Zi04YmQ4LWQxMDkxYzFmOGQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfkwDQYJKoZIhvcNAQELBQADggEBADrKNlU3yVhhfWu+f46W3aJa3oi/ d/Xb6naCKiZ/Kmb6+dUORKcfkMRdAp2zoOtnJEu9WTZ35+mNtMcDU9wDolKtLEb3 2IiQl4Ea2o3HcuFUbs+VznjFCqauqMoMOEViuIfmjzl6uCrSzMCBxZ8yENgK4hL5 fpOHwz6Ov9ktqbO6e9JZdLSKX2TelsJAA33a9KmEcrGaegMZfFBj4bX+WcGZ/J4T HUeDW3wnH9L0S07fPwiykQ0LUdw1KvQA1WDXuBLTZu6bbACsOPtjIaFjtJT+iiPB EruA9VtJ9eJl6cRLJSxhiAxxQGU14z54wZWXJJzgLIbXMw9h3blNcbIQmR0= -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:53 2023 by rpki-client on console-fra.rpki-client.org