$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa File: 696c1b1e-0246-458d-a96e-56b6b29e333d.roa (raw, json) Hash identifier: +yClMgcPBKcgGWbsgW4N7aHn9NvQ+Icw75vi+2FwVsM= Subject key identifier: 62:C9:83:A7:C3:2E:2B:9D:8B:98:76:D1:F0:27:1F:89:5D:E5:A5:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C40120BA307285D3B0BFAF9A6440CEAB4F7B50E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:40:12:0b:a3:07:28:5d:3b:0b:fa:f9:a6:44:0c:ea:b4:f7:b5:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0897f3f1a9175426e54fae96c78a1aac58abcec807556dfc1a4105c301eac0c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fd:c3:f9:77:b1:c9:5e:57:f5:e1:85:65:cc: 66:a6:cb:06:0c:64:30:08:2e:ba:f0:a0:7a:fa:15: 94:e8:db:72:ad:30:56:12:fc:a3:8c:c3:e5:ef:64: 95:e3:cd:62:20:48:b9:b3:fb:75:30:ec:23:66:e0: 04:5a:87:45:d2:32:b1:9e:12:56:33:33:14:92:34: 05:bf:04:ec:fa:cf:d9:43:1e:0f:96:dc:65:91:b6: e0:cb:d9:2f:b5:40:2a:58:5d:d7:e8:7a:a9:8d:74: cc:9e:66:e8:f1:bf:0c:fe:83:18:f9:a7:a9:14:d4: 5a:88:f2:f8:58:1f:ea:f9:a0:58:39:21:62:04:6c: 4d:ad:85:7a:3b:c4:f3:1e:31:e5:b3:f2:65:71:59: ab:28:fa:40:32:6d:b4:84:4d:cb:5d:c3:02:54:36: dd:57:75:37:fe:05:73:ae:d6:00:3c:d4:d5:bf:b2: 87:19:d5:a0:78:36:78:a2:40:6b:65:a1:95:fa:05: 2b:64:62:1b:33:fa:9f:38:8e:75:08:61:36:49:de: cd:23:f5:3e:f8:b6:3c:b4:b6:42:7a:67:fc:a8:07: 78:ee:c9:f1:a1:d2:11:7e:af:ce:fb:41:6a:0f:41: 28:38:ae:8e:3c:d7:6b:bb:f2:08:db:5d:92:c5:92: 4a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:C9:83:A7:C3:2E:2B:9D:8B:98:76:D1:F0:27:1F:89:5D:E5:A5:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:bc:a2:0b:45:63:21:1e:17:0a:61:44:e0:b9:b4:39:e9:da: 16:27:12:bf:37:3d:7b:05:4b:03:c9:83:ff:8d:d7:58:05:87: b7:b3:5c:a6:01:a2:9b:24:90:dc:4a:7b:ff:c0:f7:58:53:59: 28:97:fc:17:ae:3a:11:f9:98:89:0e:85:bc:30:40:cb:f4:83: 1d:53:02:3e:f1:fc:aa:b2:80:fc:20:1c:15:48:81:f4:df:5e: 86:c2:aa:77:23:f1:5c:f9:65:ef:cd:07:aa:dc:52:bd:7e:fd: 0d:42:86:5f:17:5e:42:3f:84:67:88:0d:7c:44:51:27:39:a4: 6c:be:12:27:0d:ca:4f:6f:e3:94:42:31:07:1e:14:95:a0:51: 9a:af:8a:1d:72:ff:a0:5b:88:b3:6f:6f:46:de:c9:c9:7f:d5: c9:48:9e:bb:9d:78:93:1c:6d:df:ec:d4:a3:1f:d5:1d:b2:8c: 4a:cf:b8:d9:6f:89:6b:9b:87:9b:e1:9b:7d:46:7b:c1:1b:65: 52:3f:d3:8d:2f:31:89:df:eb:fe:d5:86:b2:69:7b:86:e8:68: fd:6e:d3:ac:bd:37:17:c0:6c:c4:4d:da:06:32:a3:05:dd:35: 2b:9e:08:48:1b:44:b5:32:05:af:6a:e6:23:40:2b:48:87:9e: 5d:13:5d:78 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHEASC6MHKF07C/r5pkQM6rT3tQ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODk3ZjNmMWE5MTc1NDI2ZTU0ZmFlOTZjNzhhMWFhYzU4 YWJjZWM4MDc1NTZkZmMxYTQxMDVjMzAxZWFjMGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT/cP5d7HJXlf14YVlzGamywYMZDAILrrwoHr6FZTo23Kt MFYS/KOMw+XvZJXjzWIgSLmz+3Uw7CNm4ARah0XSMrGeElYzMxSSNAW/BOz6z9lD Hg+W3GWRtuDL2S+1QCpYXdfoeqmNdMyeZujxvwz+gxj5p6kU1FqI8vhYH+r5oFg5 IWIEbE2thXo7xPMeMeWz8mVxWaso+kAybbSETctdwwJUNt1XdTf+BXOu1gA81NW/ socZ1aB4NniiQGtloZX6BStkYhsz+p84jnUIYTZJ3s0j9T74tjy0tkJ6Z/yoB3ju yfGh0hF+r877QWoPQSg4ro4812u78gjbXZLFkkq5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYsmDp8MuK52LmHbR8CcfiV3lpUgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NmMxYjFlLTAyNDYtNDU4ZC1hOTZlLTU2YjZiMjllMzMzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQRjANBgkqhkiG9w0BAQsFAAOCAQEA0LyiC0VjIR4XCmFE4Lm0OenaFicS vzc9ewVLA8mD/43XWAWHt7NcpgGimySQ3Ep7/8D3WFNZKJf8F646EfmYiQ6FvDBA y/SDHVMCPvH8qrKA/CAcFUiB9N9ehsKqdyPxXPll780HqtxSvX79DUKGXxdeQj+E Z4gNfERRJzmkbL4SJw3KT2/jlEIxBx4UlaBRmq+KHXL/oFuIs29vRt7JyX/VyUie u514kxxt3+zUox/VHbKMSs+42W+Ja5uHm+GbfUZ7wRtlUj/TjS8xid/r/tWGsml7 huho/W7TrL03F8BsxE3aBjKjBd01K54ISBtEtTIFr2rmI0ArSIeeXRNdeA== -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:52 2023 by rpki-client on console-ams.rpki-client.org