$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66c32367-8469-414b-b22c-ee4a9a320966.roa File: 66c32367-8469-414b-b22c-ee4a9a320966.roa (raw, json) Hash identifier: 4CR3r4EZvb6l2e6FSbHKVd/RnC9n2/Gqius/zn62Hyk= Subject key identifier: 42:3F:7B:67:6D:A7:ED:F5:54:68:4B:0A:41:08:9C:45:C4:1C:12:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FE209B98D139E3B77129B7CBE76772A7787C364 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66c32367-8469-414b-b22c-ee4a9a320966.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 167.65.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:e2:09:b9:8d:13:9e:3b:77:12:9b:7c:be:76:77:2a:77:87:c3:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=8d08e3efad4b1c6a6ee04f63377a8ec0096d0343896081c2c642a7e1c0a8acc9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:86:0d:30:36:26:37:01:f7:15:1d:50:5e:8c: 20:26:48:eb:4f:bf:28:51:87:63:17:1f:35:ae:63: 3e:3a:e8:0d:3b:79:04:92:d0:72:29:ba:eb:96:e8: 76:13:eb:0c:c1:75:af:bc:36:c3:cf:55:b7:f6:03: 46:0a:ad:53:c1:50:ae:a7:63:80:0f:9d:94:63:2d: bc:1d:f7:b0:ce:d1:8b:14:5a:93:ee:3e:94:8b:46: 6a:56:64:1a:de:62:cd:07:4b:6a:18:62:22:a0:34: 12:27:2b:24:65:ff:65:a8:8d:59:4c:60:a5:e2:27: 68:39:39:fd:c6:aa:7a:1c:e6:72:ad:9d:24:ca:fc: 52:cb:58:f3:6c:85:db:1a:e8:20:98:ae:18:47:79: 30:70:e2:52:ff:ae:15:08:85:45:05:f4:44:e5:bd: ea:f3:44:65:5a:b6:84:46:bc:39:97:a8:6e:73:97: 22:41:02:e8:8f:19:66:54:9e:3a:dd:7e:dc:89:f3: 17:6d:6b:01:d9:d7:c7:6a:db:84:0a:1a:ed:f3:03: ed:24:9a:c8:49:51:31:c5:b9:0f:6d:69:db:2b:42: 70:fd:21:e1:15:4d:9e:e4:52:1a:50:b7:bd:db:c2: 91:eb:d9:50:bf:f0:7c:48:24:d2:17:59:55:2c:cc: 4c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3F:7B:67:6D:A7:ED:F5:54:68:4B:0A:41:08:9C:45:C4:1C:12:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66c32367-8469-414b-b22c-ee4a9a320966.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.65.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:80:61:6b:48:b0:cb:e9:b5:11:c1:89:b6:d2:e5:10:ef:9f: 6c:ae:5d:64:c2:85:44:4f:5b:6f:5a:c6:55:d8:11:34:80:97: 7b:d4:3f:9b:b7:67:15:e0:36:45:7d:bb:f3:bd:27:28:b7:56: a7:83:93:27:24:b5:9d:e1:f4:64:01:7f:10:d0:6e:e3:e6:45: d2:bd:35:30:10:25:27:b6:30:99:53:e4:0d:21:37:52:85:0d: e0:37:b0:8b:0c:b5:62:c1:df:ec:33:00:33:5c:ba:4c:5b:19: 99:20:ac:24:28:9b:11:6d:18:e7:a8:63:76:2e:2d:7f:33:06: c4:e5:e5:7d:9a:da:01:b1:95:43:7c:ec:ad:1d:a3:47:6e:46: a7:f1:e3:69:39:9b:62:99:68:29:65:eb:ab:57:b8:14:d6:6a: 6c:ba:2d:58:8e:cd:db:8b:ee:5d:66:eb:c0:de:bb:e8:ac:4b: 6e:46:e2:da:1d:ed:54:dd:b2:c4:b4:01:7e:b9:55:f6:51:72: c3:72:2f:ec:5d:87:87:58:9f:31:a9:9d:14:95:3d:26:aa:18: c8:a9:b0:fe:4e:75:8c:a5:80:bd:b9:f4:d1:70:c4:09:06:35: 9a:75:87:0d:50:78:64:61:b3:56:10:7a:02:3f:0a:8d:e9:a4: 04:12:34:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf+IJuY0Tnjt3Ept8vnZ3KneHw2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDA4ZTNlZmFkNGIxYzZhNmVlMDRmNjMzNzdhOGVjMDA5 NmQwMzQzODk2MDgxYzJjNjQyYTdlMWMwYThhY2M5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCthg0wNiY3AfcVHVBejCAmSOtPvyhRh2MXHzWuYz466A07 eQSS0HIpuuuW6HYT6wzBda+8NsPPVbf2A0YKrVPBUK6nY4APnZRjLbwd97DO0YsU WpPuPpSLRmpWZBreYs0HS2oYYiKgNBInKyRl/2WojVlMYKXiJ2g5Of3Gqnoc5nKt nSTK/FLLWPNshdsa6CCYrhhHeTBw4lL/rhUIhUUF9ETlverzRGVatoRGvDmXqG5z lyJBAuiPGWZUnjrdftyJ8xdtawHZ18dq24QKGu3zA+0kmshJUTHFuQ9tadsrQnD9 IeEVTZ7kUhpQt73bwpHr2VC/8HxIJNIXWVUszEx/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQj97Z22n7fVUaEsKQQicRcQcEnUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2YzMyMzY3LTg0NjktNDE0Yi1iMjJjLWVlNGE5YTMyMDk2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnQTANBgkqhkiG9w0BAQsFAAOCAQEAboBha0iwy+m1EcGJttLlEO+fbK5d ZMKFRE9bb1rGVdgRNICXe9Q/m7dnFeA2RX27870nKLdWp4OTJyS1neH0ZAF/ENBu 4+ZF0r01MBAlJ7YwmVPkDSE3UoUN4Dewiwy1YsHf7DMAM1y6TFsZmSCsJCibEW0Y 56hjdi4tfzMGxOXlfZraAbGVQ3zsrR2jR25Gp/HjaTmbYploKWXrq1e4FNZqbLot WI7N24vuXWbrwN676KxLbkbi2h3tVN2yxLQBfrlV9lFyw3Iv7F2Hh1ifMamdFJU9 JqoYyKmw/k51jKWAvbn00XDECQY1mnWHDVB4ZGGzVhB6Aj8KjemkBBI0tQ== -----END CERTIFICATE-----Generated at Fri Sep 22 16:49:43 2023 by rpki-client on console-ams.rpki-client.org