$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/636511bb-6fd0-43d6-9afa-224b33dead35.roa File: 636511bb-6fd0-43d6-9afa-224b33dead35.roa (raw, json) Hash identifier: ArnOahVQPvi0+bGaBviOY1juog8vLvAganzKNloz9Qw= Subject key identifier: 67:4E:0C:A1:FF:78:C0:0B:66:F1:EE:AC:23:33:6C:AF:30:A0:BA:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F85A3AD7FA268E3B4B7D742F0F07C6DBD6459A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/636511bb-6fd0-43d6-9afa-224b33dead35.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:85:a3:ad:7f:a2:68:e3:b4:b7:d7:42:f0:f0:7c:6d:bd:64:59:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=44160ce0ed4d9cba8d0d044255df9c3ee83c57a3c85a000f9aeb7f5d979327c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:09:76:61:43:7b:e9:2c:ab:31:a4:c7:ee:15: 82:37:72:a5:2d:ce:90:e6:90:32:35:01:c3:2e:cf: 5d:04:43:2f:1b:23:a7:d8:51:ac:5d:82:50:bb:65: 73:53:c4:0d:51:25:1b:38:1f:d2:f5:ff:db:40:0b: 7a:74:78:6a:5b:42:ce:f2:65:b5:fe:d9:af:10:ab: 28:50:5a:d8:ab:e7:7f:3d:96:48:ad:37:97:c1:12: 77:d7:c6:b6:be:4a:4b:eb:11:ba:95:9b:cc:0b:8d: e8:28:59:d5:c5:06:2e:c5:e6:c3:6c:bc:6e:03:4d: 07:88:97:00:cb:09:0e:7c:fa:2a:b8:0d:c9:71:ed: 14:37:03:23:31:8c:7c:3e:70:b8:37:33:d5:84:cc: e5:ef:28:9a:4e:3c:b3:28:35:6a:82:92:eb:cc:e0: 23:45:0c:e1:0c:64:a2:47:b7:5c:40:f8:87:cd:66: 0d:68:01:10:2d:58:d4:37:ce:a2:93:87:80:8b:5d: f8:6b:3d:46:38:a3:dc:d6:df:b6:f4:30:bb:f3:80: 06:0c:38:f2:e4:eb:7b:ab:88:9d:7c:a1:6e:c3:18: a0:14:1c:2d:2f:0b:a7:2c:7d:05:2b:3c:28:92:92: 9f:10:d4:10:2c:e6:d5:a8:e8:cd:f5:40:75:3d:a8: d0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4E:0C:A1:FF:78:C0:0B:66:F1:EE:AC:23:33:6C:AF:30:A0:BA:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/636511bb-6fd0-43d6-9afa-224b33dead35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9b:2a:9e:b2:7c:10:80:37:af:c5:b4:40:83:25:a5:37:67:c9: 79:cb:b0:29:27:96:6e:33:34:94:b2:ee:83:93:2b:62:1b:11: 05:b0:11:f4:85:ef:4f:3c:7f:f7:c1:9a:fd:0a:24:0c:5f:3a: 6e:5b:12:4c:a2:e9:23:5b:01:70:71:2f:00:d8:b3:d7:83:d3: 76:69:66:08:e5:74:32:84:7d:f2:62:98:7e:6f:ad:e1:b3:6e: 7c:c8:56:9f:15:38:26:c2:75:2f:9a:19:c7:62:07:cb:51:7d: e1:2c:c1:b4:33:4e:ea:40:eb:1a:76:10:87:70:ca:11:50:f2: f5:29:4b:33:a8:6e:da:29:36:bc:92:39:5e:bf:25:48:54:42: 5d:4c:1b:78:de:ea:09:c8:76:ae:11:83:36:34:57:21:42:94: 52:5d:b5:60:8b:5b:6e:b6:42:3d:34:42:ad:9a:48:fe:d4:89: 72:fc:17:59:c8:65:62:66:a6:5a:19:18:28:17:d4:4b:d0:b7: e1:5e:be:6f:91:df:a5:14:9e:8b:09:4c:57:9a:ad:d3:13:f3: ae:b7:4c:b0:d9:09:7f:5c:a6:95:c4:02:72:ca:c3:74:89:eb: fb:33:fb:7c:44:64:93:3d:0f:e4:73:2f:d3:24:86:3c:cb:6b: 98:9f:42:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb4WjrX+iaOO0t9dC8PB8bb1kWaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDE2MGNlMGVkNGQ5Y2JhOGQwZDA0NDI1NWRmOWMzZWU4 M2M1N2EzYzg1YTAwMGY5YWViN2Y1ZDk3OTMyN2M0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWCXZhQ3vpLKsxpMfuFYI3cqUtzpDmkDI1AcMuz10EQy8b I6fYUaxdglC7ZXNTxA1RJRs4H9L1/9tAC3p0eGpbQs7yZbX+2a8QqyhQWtir5389 lkitN5fBEnfXxra+SkvrEbqVm8wLjegoWdXFBi7F5sNsvG4DTQeIlwDLCQ58+iq4 Dclx7RQ3AyMxjHw+cLg3M9WEzOXvKJpOPLMoNWqCkuvM4CNFDOEMZKJHt1xA+IfN Zg1oARAtWNQ3zqKTh4CLXfhrPUY4o9zW37b0MLvzgAYMOPLk63uriJ18oW7DGKAU HC0vC6csfQUrPCiSkp8Q1BAs5tWo6M31QHU9qNCPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ04Mof94wAtm8e6sIzNsrzCgurUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzNjUxMWJiLTZmZDAtNDNkNi05YWZhLTIyNGIzM2RlYWQzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjTYAwDQYJKoZIhvcNAQELBQADggEBAJsqnrJ8EIA3r8W0QIMlpTdnyXnL sCknlm4zNJSy7oOTK2IbEQWwEfSF7088f/fBmv0KJAxfOm5bEkyi6SNbAXBxLwDY s9eD03ZpZgjldDKEffJimH5vreGzbnzIVp8VOCbCdS+aGcdiB8tRfeEswbQzTupA 6xp2EIdwyhFQ8vUpSzOobtopNrySOV6/JUhUQl1MG3je6gnIdq4RgzY0VyFClFJd tWCLW262Qj00Qq2aSP7UiXL8F1nIZWJmploZGCgX1EvQt+Fevm+R36UUnosJTFea rdMT8663TLDZCX9cppXEAnLKw3SJ6/sz+3xEZJM9D+RzL9MkhjzLa5ifQjU= -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:06 2023 by rpki-client on console-fra.rpki-client.org