$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61c5552e-f911-4049-840d-5f76ab2a6dd0.roa File: 61c5552e-f911-4049-840d-5f76ab2a6dd0.roa (raw, json) Hash identifier: l6xJNwv5dw8LAWSp9rJTbck9vx2iAm9u3dGD98xS2Ho= Subject key identifier: C3:8D:A8:69:4F:E6:1D:D5:43:EA:0F:6D:3C:77:9D:6D:15:16:98:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 617408EF61F8744EAD24ACFEAD6FD180FFFEF62C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61c5552e-f911-4049-840d-5f76ab2a6dd0.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 149.187.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:74:08:ef:61:f8:74:4e:ad:24:ac:fe:ad:6f:d1:80:ff:fe:f6:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=baaf7ec7d1904e9335bd718a634cc122e706d168f6f23fafaba6bfac67a4d7a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:38:8f:f4:8e:97:84:91:e8:86:1c:df:bc:22: 7b:53:97:07:85:6a:d0:f4:83:c0:86:66:cf:62:ae: a4:8d:b0:60:0f:57:15:8a:70:32:39:12:ed:b1:21: f6:b5:ba:63:33:9e:fc:18:7e:4f:d4:b3:4f:f2:54: dd:94:96:ba:2f:82:72:c1:81:a8:85:f7:81:11:c5: d7:30:8a:76:8c:55:23:49:63:31:ff:19:31:70:60: de:6f:0a:0a:5a:84:95:37:52:af:95:03:92:70:76: 6f:63:7d:29:81:53:af:d8:08:84:93:f3:b9:64:4f: 9c:2e:a0:08:21:f1:6e:ae:fe:50:f8:fa:06:d6:b0: 10:19:25:28:9d:b8:5b:d8:e7:1c:07:d9:6e:71:87: 07:00:59:48:4a:46:ae:f1:54:61:a2:ea:df:b9:76: 7d:93:90:dc:45:f9:36:23:65:10:77:33:ad:af:af: a2:1d:56:b1:b9:8d:2c:cc:fa:90:d0:5b:4a:33:14: bb:03:2e:bc:88:d4:fb:be:53:7e:bb:2e:c8:64:a8: 4c:e4:40:f1:a5:04:f1:a5:8f:b8:98:73:7d:9b:83: 23:65:fb:3f:26:90:8b:f2:f6:49:d3:ae:6d:47:0a: 4e:c4:6c:37:35:e2:ca:95:3a:1b:7d:24:cf:ca:df: 19:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8D:A8:69:4F:E6:1D:D5:43:EA:0F:6D:3C:77:9D:6D:15:16:98:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61c5552e-f911-4049-840d-5f76ab2a6dd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.187.128.0/17 Signature Algorithm: sha256WithRSAEncryption 43:e9:0e:5e:66:7c:7e:1c:9c:5f:e3:a4:d3:18:ec:a9:54:6f: b4:d3:aa:4f:ed:11:c3:64:b3:5c:db:41:1b:06:d5:33:06:ca: c1:a5:fb:cd:2a:5c:e8:9d:72:21:76:94:12:0d:77:cd:7c:f7: cb:49:bb:1c:7a:5b:2d:ad:ef:3d:43:a7:88:e0:63:31:fa:a6: 83:d8:1f:3c:99:32:a7:b8:69:e7:b7:e1:d0:62:e3:f9:31:6a: 99:d9:70:bd:0a:cf:85:27:97:91:34:03:47:97:f1:d5:f9:7e: 46:87:ec:64:aa:a0:30:34:9e:47:e1:bb:d3:d1:a8:2d:7f:31: 18:e7:ae:9e:75:53:d8:cf:15:67:3c:18:39:58:04:f8:ac:e0: f5:27:af:05:4e:14:d5:44:62:bd:0c:db:ce:e4:e9:ea:28:43: a1:13:ec:5c:73:89:0e:f0:84:06:8c:31:ed:15:c0:1c:54:d9: 3f:7a:59:72:92:e8:52:51:c4:ce:85:49:61:27:df:7e:35:9d: 2c:d4:fb:63:10:70:7a:ea:63:2c:31:1f:e5:d3:2c:5c:a6:14: e5:f0:33:a2:b1:d4:c0:3b:34:b7:4f:28:05:5a:7d:1b:47:a7: 06:f8:cd:db:92:c7:0c:e3:92:07:10:a5:a4:e7:99:fb:af:fc: f0:56:00:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYXQI72H4dE6tJKz+rW/RgP/+9iwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWFmN2VjN2QxOTA0ZTkzMzViZDcxOGE2MzRjYzEyMmU3 MDZkMTY4ZjZmMjNmYWZhYmE2YmZhYzY3YTRkN2E4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkOI/0jpeEkeiGHN+8IntTlweFatD0g8CGZs9irqSNsGAP VxWKcDI5Eu2xIfa1umMznvwYfk/Us0/yVN2UlrovgnLBgaiF94ERxdcwinaMVSNJ YzH/GTFwYN5vCgpahJU3Uq+VA5Jwdm9jfSmBU6/YCIST87lkT5wuoAgh8W6u/lD4 +gbWsBAZJSiduFvY5xwH2W5xhwcAWUhKRq7xVGGi6t+5dn2TkNxF+TYjZRB3M62v r6IdVrG5jSzM+pDQW0ozFLsDLryI1Pu+U367LshkqEzkQPGlBPGlj7iYc32bgyNl +z8mkIvy9knTrm1HCk7EbDc14sqVOht9JM/K3xkpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw42oaU/mHdVD6g9tPHedbRUWmJ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxYzU1NTJlLWY5MTEtNDA0OS04NDBkLTVmNzZhYjJhNmRkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeVu4AwDQYJKoZIhvcNAQELBQADggEBAEPpDl5mfH4cnF/jpNMY7KlUb7TT qk/tEcNks1zbQRsG1TMGysGl+80qXOidciF2lBINd81898tJuxx6Wy2t7z1Dp4jg YzH6poPYHzyZMqe4aee34dBi4/kxapnZcL0Kz4Unl5E0A0eX8dX5fkaH7GSqoDA0 nkfhu9PRqC1/MRjnrp51U9jPFWc8GDlYBPis4PUnrwVOFNVEYr0M287k6eooQ6ET 7FxziQ7whAaMMe0VwBxU2T96WXKS6FJRxM6FSWEn3341nSzU+2MQcHrqYywxH+XT LFymFOXwM6Kx1MA7NLdPKAVafRtHpwb4zduSxwzjkgcQpaTnmfuv/PBWALU= -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:52 2023 by rpki-client on console-fra.rpki-client.org