$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa File: 5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa (raw, json) Hash identifier: I2QkCpp5prS5wlwd2h/3SeoG0Bd3iEhIRZnqGqJJQBc= Subject key identifier: D1:70:9E:27:82:9F:51:85:07:42:02:FA:63:55:65:40:FE:91:C7:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A3E4E013EA7580E42C5117E03D0BF4253CFD33C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:3e:4e:01:3e:a7:58:0e:42:c5:11:7e:03:d0:bf:42:53:cf:d3:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=51e839660071205b98fd114cc2ceb5cee3510d80be17ee5484470b0ac798f817, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:19:1e:41:20:fd:af:9f:30:1e:71:63:c4: f4:d7:62:e8:bf:9d:99:f6:50:cd:81:a2:a8:d0:46: 45:4c:99:e0:fc:4d:47:ea:8b:1f:fd:06:d0:63:17: 3e:ff:0b:2c:6d:5b:6a:9f:52:8e:71:8b:52:dc:96: 48:e1:2a:75:6d:96:d1:00:26:75:ae:99:9c:43:41: 5d:49:e4:12:c3:e1:04:b6:42:1a:7b:ee:53:60:ae: b8:37:c4:9d:da:f1:5f:4b:ae:a4:94:e3:33:48:ef: 48:89:6b:5e:20:7e:10:51:56:c3:4b:3e:cc:f4:14: f7:89:bf:34:31:a7:62:f9:ec:87:53:49:5e:a2:2d: ef:94:3f:47:c2:e3:19:60:38:ca:1e:27:40:27:74: 12:bf:61:9b:55:02:cc:70:4e:9b:b0:9d:c2:ea:fb: 49:a8:ff:5a:ed:d3:f1:aa:39:52:96:b7:7d:6f:16: c0:50:fc:16:0f:6e:ef:30:72:1f:ae:71:9f:0f:ff: 79:35:78:83:d7:b3:ba:0c:ee:10:ca:c2:0e:aa:56: f8:4e:2a:c5:b3:8f:46:ac:a6:88:82:cb:90:4c:22: 69:a8:15:92:23:fd:a4:c5:1b:70:cf:0e:e7:4a:60: 1d:ea:41:54:e6:f9:ca:90:d8:9f:25:bc:d8:90:3a: e1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:70:9E:27:82:9F:51:85:07:42:02:FA:63:55:65:40:FE:91:C7:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.71.0/24 Signature Algorithm: sha256WithRSAEncryption ce:4f:1b:aa:0a:3a:b5:1f:e6:f1:41:7e:04:c7:69:4c:1d:c5: 4b:a4:82:93:25:80:c9:e4:da:aa:2d:2c:50:a0:01:20:f8:ae: d8:1b:73:75:37:a8:eb:2e:69:a8:63:a7:41:c1:74:7f:dc:74: 7c:2c:fb:6e:3c:46:93:28:21:d7:3b:b9:64:44:56:ba:64:94: a4:9e:27:e7:8f:eb:31:21:33:2a:ea:98:bd:83:9b:dd:f9:04: f5:b8:54:5b:0e:20:ec:03:59:83:d8:5a:55:b6:e9:35:b4:16: 14:f7:d2:a1:84:ef:94:e7:02:c6:f0:7c:ee:c2:05:5a:8d:c6: 9f:42:22:87:a8:c4:ec:02:9c:c6:cd:b1:00:6d:09:9d:5c:38: ac:91:81:98:63:eb:c4:03:e2:20:f8:e6:c9:2b:2c:a3:ee:1d: 59:0f:43:99:3d:2c:9c:06:a8:3f:0d:cc:c7:ea:ec:ec:de:30: e3:ce:62:b2:74:4e:e9:52:38:56:b2:82:cf:52:07:6c:91:ff: 4e:2d:17:06:9c:b6:41:9c:fc:4d:66:5b:d5:1a:de:04:86:02: b3:f8:22:d0:c3:ec:75:f1:8c:a4:7a:e3:1f:90:c9:30:e6:23: fb:c9:81:2f:d6:fe:27:ea:e4:9f:60:01:dc:d8:0c:a5:79:68: c6:0e:2f:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCj5OAT6nWA5CxRF+A9C/QlPP0zwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWU4Mzk2NjAwNzEyMDViOThmZDExNGNjMmNlYjVjZWUz NTEwZDgwYmUxN2VlNTQ4NDQ3MGIwYWM3OThmODE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/5xkeQSD9r58wHnFjxPTXYui/nZn2UM2BoqjQRkVMmeD8 TUfqix/9BtBjFz7/CyxtW2qfUo5xi1LclkjhKnVtltEAJnWumZxDQV1J5BLD4QS2 Qhp77lNgrrg3xJ3a8V9LrqSU4zNI70iJa14gfhBRVsNLPsz0FPeJvzQxp2L57IdT SV6iLe+UP0fC4xlgOMoeJ0AndBK/YZtVAsxwTpuwncLq+0mo/1rt0/GqOVKWt31v FsBQ/BYPbu8wch+ucZ8P/3k1eIPXs7oM7hDKwg6qVvhOKsWzj0aspoiCy5BMImmo FZIj/aTFG3DPDudKYB3qQVTm+cqQ2J8lvNiQOuFDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0XCeJ4KfUYUHQgL6Y1VlQP6Rx70wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlMGEyMTI5LTlkYzktNGY3Yi1iMzUwLTRlNDEwMjhlNTUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EcwDQYJKoZIhvcNAQELBQADggEBAM5PG6oKOrUf5vFBfgTHaUwdxUuk gpMlgMnk2qotLFCgASD4rtgbc3U3qOsuaahjp0HBdH/cdHws+248RpMoIdc7uWRE VrpklKSeJ+eP6zEhMyrqmL2Dm935BPW4VFsOIOwDWYPYWlW26TW0FhT30qGE75Tn AsbwfO7CBVqNxp9CIoeoxOwCnMbNsQBtCZ1cOKyRgZhj68QD4iD45skrLKPuHVkP Q5k9LJwGqD8NzMfq7OzeMOPOYrJ0TulSOFaygs9SB2yR/04tFwactkGc/E1mW9Ua 3gSGArP4ItDD7HXxjKR64x+QyTDmI/vJgS/W/ifq5J9gAdzYDKV5aMYOL14= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:18 2023 by rpki-client on console-fra.rpki-client.org