$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa File: 60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa (raw, json) Hash identifier: TXHMOUOixBgbkz4oCCDzbexfWJnn20UXFamMFIxu3Uc= Subject key identifier: 2E:EE:28:CD:6D:3D:03:FD:FA:EA:26:3D:D6:59:0F:96:AD:77:B7:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 684170D3F8972E621800AC65E7DFE5B07E16DFA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:41:70:d3:f8:97:2e:62:18:00:ac:65:e7:df:e5:b0:7e:16:df:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b700e572d5a400d78b54cb83010122871eb7595763057defc38af2932aa96bea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:80:ef:8e:0d:01:a9:13:ea:5f:91:01:8f:6b: 10:e9:8e:c8:f2:b4:44:df:fd:5b:ac:f3:c4:22:af: 8a:0e:93:13:2e:46:d5:50:f3:5f:94:38:ae:91:5a: bd:c2:8d:0c:50:ff:b4:9d:45:39:5e:54:26:62:77: 60:18:e7:11:07:bd:f0:90:9f:be:f6:f5:c3:35:d7: a0:71:e0:c8:cb:ad:d1:49:d9:31:d1:cc:f9:e9:59: ae:d3:f0:fe:22:68:ff:16:f3:d9:a3:34:54:b7:11: 30:9a:d0:1a:7e:f5:04:e7:22:c1:f9:d0:fd:2f:58: 56:4e:56:2c:84:b7:84:dc:19:12:f0:ca:32:fb:ca: 09:73:d3:91:87:80:26:04:ab:c3:a6:72:86:51:bc: cd:36:68:5d:9d:ad:bf:a1:7e:01:5d:f1:35:6d:8c: 45:69:59:b6:62:e9:0e:7e:8b:f2:34:35:3c:89:c0: 25:f8:06:14:2b:59:fb:b6:98:f5:fb:a0:85:a3:a4: 47:8e:1f:af:4e:a4:6d:76:2e:99:48:8e:4a:d4:22: cc:77:d5:71:a4:f2:7d:ca:c0:5e:cc:8a:22:28:42: db:4e:c7:fc:0f:20:7e:33:f2:49:9a:38:d0:e7:48: bc:60:f0:1a:b5:60:73:13:d3:e3:7b:05:02:ea:65: 5a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EE:28:CD:6D:3D:03:FD:FA:EA:26:3D:D6:59:0F:96:AD:77:B7:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:cd:77:84:26:50:d5:fb:7c:48:7d:55:39:b5:1a:e2:bd:83: fd:ce:ae:50:f1:5b:9a:6d:6d:71:12:6a:aa:e9:5a:0f:5c:a1: 71:e3:51:7d:fc:29:8c:1f:8f:d7:17:9a:60:b1:5e:b1:15:a2: 4d:00:61:26:90:b8:2f:6d:5e:ff:e1:36:a4:23:ac:73:9b:ab: a4:7d:31:db:ff:4c:df:e4:19:df:9a:0b:1d:47:cc:6d:fa:b9: d1:3c:2f:1a:e6:e7:43:dd:39:53:2b:bc:b1:22:32:eb:5b:ec: 40:27:d8:ac:09:5a:af:05:9c:c9:cc:df:e5:cc:87:2f:fc:13: a2:5e:30:40:b7:3a:41:16:73:f4:16:5a:c1:d4:96:cc:a9:3a: 92:4f:ea:29:e2:e4:74:ad:00:c2:34:71:71:84:cd:0d:86:87: b4:3e:ad:86:a6:39:ba:9b:e7:f5:ac:b7:c3:47:d1:50:b8:17: ec:1d:2d:80:2e:b9:59:6f:30:35:bb:67:8c:43:c7:05:ec:46: 2c:56:34:89:9d:9c:fc:8a:b0:09:cb:80:8c:cc:3b:d8:fe:27: bf:54:ce:18:07:20:21:a6:c0:70:fc:86:29:ff:45:72:6b:5a: 04:8b:8d:ea:6f:cd:c5:c9:55:e5:59:a6:59:3c:56:10:90:b0: a4:48:be:1c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaEFw0/iXLmIYAKxl59/lsH4W36IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzAwZTU3MmQ1YTQwMGQ3OGI1NGNiODMwMTAxMjI4NzFl Yjc1OTU3NjMwNTdkZWZjMzhhZjI5MzJhYTk2YmVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxgO+ODQGpE+pfkQGPaxDpjsjytETf/Vus88Qir4oOkxMu RtVQ81+UOK6RWr3CjQxQ/7SdRTleVCZid2AY5xEHvfCQn7729cM116Bx4MjLrdFJ 2THRzPnpWa7T8P4iaP8W89mjNFS3ETCa0Bp+9QTnIsH50P0vWFZOViyEt4TcGRLw yjL7yglz05GHgCYEq8OmcoZRvM02aF2drb+hfgFd8TVtjEVpWbZi6Q5+i/I0NTyJ wCX4BhQrWfu2mPX7oIWjpEeOH69OpG12LplIjkrUIsx31XGk8n3KwF7MiiIoQttO x/wPIH4z8kmaONDnSLxg8Bq1YHMT0+N7BQLqZVq7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULu4ozW09A/366iY91lkPlq13tyMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwYTZjOWFjLTEyMjEtNGE0ZC04N2U2LTIzOWEzZmUyZDFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ2zANBgkqhkiG9w0BAQsFAAOCAQEAiM13hCZQ1ft8SH1VObUa4r2D/c6u UPFbmm1tcRJqqulaD1yhceNRffwpjB+P1xeaYLFesRWiTQBhJpC4L21e/+E2pCOs c5urpH0x2/9M3+QZ35oLHUfMbfq50TwvGubnQ905Uyu8sSIy61vsQCfYrAlarwWc yczf5cyHL/wTol4wQLc6QRZz9BZawdSWzKk6kk/qKeLkdK0AwjRxcYTNDYaHtD6t hqY5upvn9ay3w0fRULgX7B0tgC65WW8wNbtnjEPHBexGLFY0iZ2c/IqwCcuAjMw7 2P4nv1TOGAcgIabAcPyGKf9FcmtaBIuN6m/NxclV5VmmWTxWEJCwpEi+HA== -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:23 2023 by rpki-client on console-ams.rpki-client.org