$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655eb118-9f64-44b3-9207-2b6891960d1c.roa File: 655eb118-9f64-44b3-9207-2b6891960d1c.roa (raw, json) Hash identifier: fY0epZ4CcGICsoUusNWbvsDbY8iYdtHSPKD7Wwdtbx4= Subject key identifier: DD:68:AA:C2:9A:C1:83:4D:2A:7A:9E:80:54:78:36:F1:30:B2:11:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A8429539EBA6F2910340BE89475749E269A2B5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655eb118-9f64-44b3-9207-2b6891960d1c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 44.192.0.0/10 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:84:29:53:9e:ba:6f:29:10:34:0b:e8:94:75:74:9e:26:9a:2b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=adb170e085407eb1ab1cb5e071ee3a6f9bca837b75038df33e0db204f836b4d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:83:65:ac:df:1d:76:1b:ae:8f:0e:a4:86:99: 7d:85:91:90:c5:a3:49:b9:97:f2:7c:27:a4:f0:35: 95:ee:ad:95:b4:81:39:f8:bf:80:f2:92:e6:42:0c: 30:44:87:0e:d5:63:df:ba:4d:7c:04:61:c8:fc:ad: d8:1d:72:78:96:66:2c:73:8d:33:0e:9d:e5:c8:c0: 36:59:69:0d:cf:b7:d0:b4:84:71:67:21:a7:d1:b9: 67:bc:d7:50:5f:97:74:9a:9c:e1:d1:f7:67:f0:ec: 6c:b9:24:02:22:e2:ac:b6:90:04:3a:e9:5c:02:f3: 90:f6:6c:e5:27:b9:bd:ec:a9:19:51:34:eb:5e:b3: f1:96:75:ad:e8:2f:46:7f:f0:d7:f9:59:93:fa:cc: 21:2b:4e:62:45:a1:ee:87:68:40:81:5c:b5:4d:59: fd:ea:d5:9c:ea:bf:68:8f:bd:5e:3d:74:39:af:5e: 80:ce:40:ac:7c:d7:c1:be:2b:5a:26:93:8c:ac:c1: 53:ed:52:f4:19:b8:03:47:87:40:0f:79:4b:33:8a: 43:ca:ac:9c:fb:d4:c5:74:22:65:f3:a7:65:96:93: 9f:4e:89:dc:be:08:95:7c:e4:01:1c:bc:4d:d1:04: 43:2a:f1:51:06:4b:3c:22:1b:9f:1a:ee:5c:b1:0a: 67:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:68:AA:C2:9A:C1:83:4D:2A:7A:9E:80:54:78:36:F1:30:B2:11:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655eb118-9f64-44b3-9207-2b6891960d1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/10 Signature Algorithm: sha256WithRSAEncryption 8a:7b:77:10:b2:55:e6:f8:8c:2a:a5:2d:db:f1:18:48:bf:d7: f2:9f:d2:25:4c:81:94:0c:85:b3:d5:e5:b4:21:ec:e7:c2:3c: 02:b5:14:51:fb:f3:b9:4e:61:57:9a:3c:0b:65:ad:d5:63:a2: 46:19:e7:16:c6:f1:88:c3:df:1d:d7:93:ba:a9:db:e7:83:c1: 91:55:b1:af:91:ba:03:59:dc:dd:19:e8:35:51:e5:31:33:9b: 38:99:67:f6:94:ff:b2:2a:47:64:86:5e:20:7a:02:7d:14:83: 77:95:cb:97:23:f5:42:5c:14:6d:b6:35:7e:84:f0:60:d4:1f: 8e:98:8d:46:f4:dc:13:cd:bf:aa:ab:32:62:73:17:02:af:d6: f6:c7:4a:98:0c:06:78:4f:e4:2c:b9:eb:07:a2:4e:98:03:72: 59:f4:0a:b0:93:5e:86:b3:df:91:76:00:02:25:32:45:8b:81: 89:3d:d9:1e:16:64:13:e5:3d:4d:73:c5:89:b7:d2:d9:b4:8e: 41:b7:95:8a:d2:72:bb:f6:62:ff:38:a5:2e:ce:68:b6:4d:5e: 5e:dc:24:cf:6d:a6:b6:ed:d4:8f:af:9c:75:91:6f:34:e5:38: 7c:3b:b7:ba:2f:28:26:5c:dd:0f:73:3a:53:d4:1a:99:dd:b2: e9:c7:4f:bd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGoQpU566bykQNAvolHV0niaaK10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGIxNzBlMDg1NDA3ZWIxYWIxY2I1ZTA3MWVlM2E2Zjli Y2E4MzdiNzUwMzhkZjMzZTBkYjIwNGY4MzZiNGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUg2Ws3x12G66PDqSGmX2FkZDFo0m5l/J8J6TwNZXurZW0 gTn4v4DykuZCDDBEhw7VY9+6TXwEYcj8rdgdcniWZixzjTMOneXIwDZZaQ3Pt9C0 hHFnIafRuWe811Bfl3SanOHR92fw7Gy5JAIi4qy2kAQ66VwC85D2bOUnub3sqRlR NOtes/GWda3oL0Z/8Nf5WZP6zCErTmJFoe6HaECBXLVNWf3q1Zzqv2iPvV49dDmv XoDOQKx818G+K1omk4yswVPtUvQZuANHh0APeUszikPKrJz71MV0ImXzp2WWk59O idy+CJV85AEcvE3RBEMq8VEGSzwiG58a7lyxCmdfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3WiqwprBg00qep6AVHg28TCyEY4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1NWViMTE4LTlmNjQtNDRiMy05MjA3LTJiNjg5MTk2MGQxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwYswDANBgkqhkiG9w0BAQsFAAOCAQEAint3ELJV5viMKqUt2/EYSL/X8p/S JUyBlAyFs9XltCHs58I8ArUUUfvzuU5hV5o8C2Wt1WOiRhnnFsbxiMPfHdeTuqnb 54PBkVWxr5G6A1nc3RnoNVHlMTObOJln9pT/sipHZIZeIHoCfRSDd5XLlyP1QlwU bbY1foTwYNQfjpiNRvTcE82/qqsyYnMXAq/W9sdKmAwGeE/kLLnrB6JOmANyWfQK sJNehrPfkXYAAiUyRYuBiT3ZHhZkE+U9TXPFibfS2bSOQbeVitJyu/Zi/zilLs5o tk1eXtwkz22mtu3Uj6+cdZFvNOU4fDu3ui8oJlzdD3M6U9Qamd2y6cdPvQ== -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:45 2023 by rpki-client on console-fra.rpki-client.org