$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa File: 68c4982b-424f-4758-ab4b-70c50ea9d85b.roa (raw, json) Hash identifier: L9YcYV7E5TjAFNZl/GLu0WMt4QEbkx4SJiYIZ+KtH5k= Subject key identifier: 23:DA:45:63:93:45:8F:7F:C3:8D:53:86:5D:72:AC:AD:7F:A4:DD:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06696088690C28D0A544165828845DB0670D2B18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 32.184.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 08:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:69:60:88:69:0c:28:d0:a5:44:16:58:28:84:5d:b0:67:0d:2b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=55d37f858c8075af53c5e7c3d3d15a62771a0ea33ad3421487912440ad639469, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:0d:7d:ac:b0:33:b0:36:3c:85:74:04:55: 62:28:17:10:9c:aa:28:7f:de:c1:69:59:e0:3d:b4: 05:8b:89:08:5c:e8:9e:31:06:b7:64:98:de:50:e2: ab:02:35:2c:28:5a:2e:61:38:a4:ca:05:58:49:c4: 96:19:90:1d:8e:9d:47:22:71:d4:28:05:bf:ba:50: 1a:ee:e4:e1:f8:8e:56:a8:ba:2a:6f:45:f3:35:50: e3:b6:5c:e0:b1:1e:a4:e4:1b:03:45:83:32:47:eb: 04:96:41:e4:fa:55:e4:1d:75:cb:db:45:5b:7c:46: ac:fc:8d:03:f1:a2:4f:bb:1e:94:4a:96:c1:f1:4f: bd:cc:5e:23:38:e2:c1:b5:f2:1e:4e:5d:8c:86:53: f6:79:b3:e4:7d:bd:ea:ba:f1:50:19:f9:2b:48:af: 9b:63:a7:36:38:a1:8d:a2:4e:71:4b:08:a5:47:24: 5a:bd:e2:f6:d9:a8:e2:12:0a:ab:26:e8:63:7c:27: c2:02:cb:13:43:48:a6:1d:8d:20:d6:9e:f5:0a:27: c3:75:18:ac:83:73:5d:23:8b:99:4b:8c:f5:f6:88: 1a:8c:bb:00:57:2e:95:16:55:ab:b7:22:a2:83:bb: 20:b9:cb:6e:12:c9:e4:85:df:aa:75:08:d1:46:16: dc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DA:45:63:93:45:8F:7F:C3:8D:53:86:5D:72:AC:AD:7F:A4:DD:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.184.0.0/13 Signature Algorithm: sha256WithRSAEncryption be:8a:0f:0e:6b:91:b4:4b:1f:06:cb:3b:d8:67:10:ba:d1:6c: b0:39:ec:b0:76:28:f3:75:61:a1:83:e5:06:28:16:50:59:db: 06:23:20:06:fc:f7:7c:20:d9:70:f9:01:4a:3b:f9:a7:3a:b9: ab:60:62:c9:91:fa:97:f7:38:82:c9:f8:37:0a:6b:81:aa:cc: c7:a8:d5:56:e8:45:87:e9:e6:41:19:9a:84:99:62:e8:59:32: 82:d8:bd:6c:0d:07:9e:07:21:d3:e1:b5:86:1c:cb:45:d3:ee: 80:76:d2:ad:39:c1:2b:82:c3:49:4c:9d:77:40:89:86:20:69: cb:6a:d4:18:19:db:9e:b5:8b:f8:01:1d:2a:4f:cc:f2:25:ea: d7:3b:41:be:c0:64:31:a8:92:9a:22:16:4b:43:94:41:60:b9: 34:19:f0:c9:55:be:ec:c2:67:0c:d9:15:52:45:9f:97:a8:94: d7:79:20:0e:ff:a5:62:e3:bf:97:f5:9e:6e:3f:32:88:dd:c5: c9:2c:f0:45:74:e4:54:8c:bd:e4:e9:01:d5:d7:55:b1:fa:cf: 94:e6:53:a3:8d:d2:29:f1:a0:6f:ac:8d:16:b1:45:36:73:a6: 49:6d:69:5f:2c:3e:d3:a3:6d:83:d4:7f:bd:ed:fb:29:72:86: 7c:9c:ff:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBmlgiGkMKNClRBZYKIRdsGcNKxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWQzN2Y4NThjODA3NWFmNTNjNWU3YzNkM2QxNWE2Mjc3 MWEwZWEzM2FkMzQyMTQ4NzkxMjQ0MGFkNjM5NDY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgBg19rLAzsDY8hXQEVWIoFxCcqih/3sFpWeA9tAWLiQhc 6J4xBrdkmN5Q4qsCNSwoWi5hOKTKBVhJxJYZkB2OnUcicdQoBb+6UBru5OH4jlao uipvRfM1UOO2XOCxHqTkGwNFgzJH6wSWQeT6VeQddcvbRVt8Rqz8jQPxok+7HpRK lsHxT73MXiM44sG18h5OXYyGU/Z5s+R9veq68VAZ+StIr5tjpzY4oY2iTnFLCKVH JFq94vbZqOISCqsm6GN8J8ICyxNDSKYdjSDWnvUKJ8N1GKyDc10ji5lLjPX2iBqM uwBXLpUWVau3IqKDuyC5y24SyeSF36p1CNFGFtw7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUI9pFY5NFj3/DjVOGXXKsrX+k3UcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YzQ5ODJiLTQyNGYtNDc1OC1hYjRiLTcwYzUwZWE5ZDg1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMguDANBgkqhkiG9w0BAQsFAAOCAQEAvooPDmuRtEsfBss72GcQutFssDns sHYo83VhoYPlBigWUFnbBiMgBvz3fCDZcPkBSjv5pzq5q2BiyZH6l/c4gsn4Nwpr garMx6jVVuhFh+nmQRmahJli6Fkygti9bA0Hngch0+G1hhzLRdPugHbSrTnBK4LD SUydd0CJhiBpy2rUGBnbnrWL+AEdKk/M8iXq1ztBvsBkMaiSmiIWS0OUQWC5NBnw yVW+7MJnDNkVUkWfl6iU13kgDv+lYuO/l/Webj8yiN3FySzwRXTkVIy95OkB1ddV sfrPlOZTo43SKfGgb6yNFrFFNnOmSW1pXyw+06Ntg9R/ve37KXKGfJz/Kg== -----END CERTIFICATE-----Generated at Mon Aug 28 20:42:19 2023 by rpki-client on console-fra.rpki-client.org