$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa File: 61b7b9ae-b712-4a51-b302-aafa1010e46e.roa (raw, json) Hash identifier: 054n/54dMAPF81OyJ/F1dNAbxuxn+aHoq+yfxYa1dQw= Subject key identifier: 22:8F:29:71:58:15:3A:D3:EF:5C:70:41:A8:C0:AE:AF:20:46:5E:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2558C63E04B43EEFA585A21D2A2BB5D171BE8750 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 107.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:58:c6:3e:04:b4:3e:ef:a5:85:a2:1d:2a:2b:b5:d1:71:be:87:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b338a98469c0170af686557129b1a4e6ee5db57c27b1377758e2642ef65bdaa5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ba:c5:e0:34:2a:5a:37:fc:5f:2f:b5:87:63: 70:2a:5a:2b:9b:dd:d3:1f:f2:b9:8f:74:2a:d5:0b: 50:82:06:fa:a3:14:12:9f:33:fb:fc:9d:65:dd:cb: 4f:ce:b0:0c:88:57:d6:c7:d6:c5:12:d4:28:3c:9c: bf:b0:0e:c3:18:64:02:2b:de:d3:b7:7b:07:20:a2: 52:e4:4c:86:80:9a:d1:c7:a0:a6:f2:c9:98:80:9e: fc:78:16:c4:09:df:c8:dd:fc:55:48:20:0d:59:a6: 16:58:fd:e0:3a:60:07:8a:6a:df:2a:27:6b:63:a9: 3f:75:e5:bc:39:ff:34:dc:df:fc:fb:2c:8e:af:4c: b2:3c:cd:f4:e5:5a:64:e5:5e:03:2a:3c:78:87:6e: a8:42:7e:7e:01:6c:eb:55:02:07:3e:2f:20:fd:7d: 1a:00:d9:54:93:7b:3d:2f:21:72:6d:c6:27:ce:de: 83:64:56:d5:3a:bd:7e:63:08:9c:4d:91:9f:d3:b6: 3b:26:f9:9c:b8:42:23:f3:69:0b:a4:33:f1:a6:a9: 24:76:47:8a:fc:d6:38:a2:88:76:73:6c:6c:4f:41: ca:2f:1f:13:9d:54:b0:23:a4:f7:65:a7:11:e0:a5: ba:47:b9:da:f3:ca:5f:6e:59:cd:32:7c:af:b9:5d: ac:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8F:29:71:58:15:3A:D3:EF:5C:70:41:A8:C0:AE:AF:20:46:5E:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3d:99:2b:e4:71:e6:b3:f9:da:61:ab:97:89:8b:8d:cb:3a:7d: 81:2e:22:1b:82:48:bf:39:1d:70:0e:20:b5:b9:8a:9a:55:d7: 84:73:88:55:8a:28:c6:e6:c0:3d:d8:af:5d:e4:ed:2f:6b:89: 27:f3:8b:70:70:7a:67:86:75:f2:f3:4a:74:10:4d:7b:9b:7a: d5:59:10:9d:e3:4c:27:eb:5d:bb:70:1c:92:7a:2a:38:d8:6e: 46:8d:f6:bd:a5:af:37:79:66:83:5f:4f:a9:64:64:59:22:a3: 2a:c8:ea:42:6d:5a:6c:90:84:44:71:df:b8:be:da:be:aa:d4: 57:ed:49:c1:18:7f:c0:9f:0a:be:5a:96:8e:58:e9:b3:e8:2c: 9c:94:1b:d2:ee:7b:4c:67:ab:bf:05:58:d2:8b:18:60:e3:36: ae:54:90:14:e5:5e:07:f7:b4:f5:c2:9a:f0:51:24:25:6b:b6: a6:c7:84:55:cb:fc:15:a2:ca:ec:d1:dc:b8:9c:a8:78:c9:58: f7:98:df:62:2c:55:ea:e1:f4:fa:b2:94:42:3b:66:cd:cd:45: 63:89:f2:b6:7d:71:66:b3:3f:84:91:33:89:c7:ec:1e:97:e0: 3c:f3:a2:d2:cc:c9:f6:86:77:56:03:a7:41:6c:f4:c0:9c:82: c9:f8:58:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJVjGPgS0Pu+lhaIdKiu10XG+h1AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzM4YTk4NDY5YzAxNzBhZjY4NjU1NzEyOWIxYTRlNmVl NWRiNTdjMjdiMTM3Nzc1OGUyNjQyZWY2NWJkYWE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0usXgNCpaN/xfL7WHY3AqWiub3dMf8rmPdCrVC1CCBvqj FBKfM/v8nWXdy0/OsAyIV9bH1sUS1Cg8nL+wDsMYZAIr3tO3ewcgolLkTIaAmtHH oKbyyZiAnvx4FsQJ38jd/FVIIA1ZphZY/eA6YAeKat8qJ2tjqT915bw5/zTc3/z7 LI6vTLI8zfTlWmTlXgMqPHiHbqhCfn4BbOtVAgc+LyD9fRoA2VSTez0vIXJtxifO 3oNkVtU6vX5jCJxNkZ/Ttjsm+Zy4QiPzaQukM/GmqSR2R4r81jiiiHZzbGxPQcov HxOdVLAjpPdlpxHgpbpHudrzyl9uWc0yfK+5XaylAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIo8pcVgVOtPvXHBBqMCuryBGXtwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxYjdiOWFlLWI3MTItNGE1MS1iMzAyLWFhZmExMDEwZTQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFrsDANBgkqhkiG9w0BAQsFAAOCAQEAPZkr5HHms/naYauXiYuNyzp9gS4i G4JIvzkdcA4gtbmKmlXXhHOIVYooxubAPdivXeTtL2uJJ/OLcHB6Z4Z18vNKdBBN e5t61VkQneNMJ+tdu3AcknoqONhuRo32vaWvN3lmg19PqWRkWSKjKsjqQm1abJCE RHHfuL7avqrUV+1JwRh/wJ8KvlqWjljps+gsnJQb0u57TGervwVY0osYYOM2rlSQ FOVeB/e09cKa8FEkJWu2pseEVcv8FaLK7NHcuJyoeMlY95jfYixV6uH0+rKUQjtm zc1FY4nytn1xZrM/hJEzicfsHpfgPPOi0szJ9oZ3VgOnQWz0wJyCyfhYTA== -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:18 2023 by rpki-client on console-fra.rpki-client.org