$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69efde29-08ee-4f8e-ac98-6477bb18db8f.roa File: 69efde29-08ee-4f8e-ac98-6477bb18db8f.roa (raw, json) Hash identifier: 3+w9XZuIfu7UH9z548P2WYWCj3tFGaSkvZ7JC1MIJao= Subject key identifier: B5:46:0F:29:9D:33:6C:49:C2:97:EE:C5:85:AA:7E:E8:93:01:60:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05A499EE663C29BC67D03F13837713E3F83FEF00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69efde29-08ee-4f8e-ac98-6477bb18db8f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 74.250.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a4:99:ee:66:3c:29:bc:67:d0:3f:13:83:77:13:e3:f8:3f:ef:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=d8753f7145a6087308e7c72987c41b87d27d3b56aa7d85e7dd3c42ff65837e3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:37:85:d6:88:38:d3:43:ce:35:b3:46:fb:85: fb:92:8d:ed:ad:5d:96:cb:ee:1b:b5:3d:8f:28:3f: f5:27:85:11:32:51:91:17:6a:7e:fc:e8:99:42:fb: b1:3c:0c:f7:03:82:ac:71:67:97:a8:3f:f2:9e:52: cd:b5:fc:3e:97:ae:16:fb:f3:2e:70:5e:4d:6b:df: aa:3d:c5:cc:0b:cc:f7:f2:b9:d8:ba:14:d2:3e:6e: 36:a4:5f:c2:fa:70:fd:f8:8a:f4:ac:e4:71:b5:78: 20:2a:1b:9f:83:9d:62:73:df:d8:39:1e:51:8e:23: 7f:8e:73:36:d2:32:7c:e7:ee:d4:e3:f9:45:12:e6: 3a:21:5a:33:ca:40:80:90:81:97:a7:c7:dd:34:42: 14:bb:d9:ea:a8:2d:a6:b1:ad:6c:ce:92:f8:61:fb: 6b:b0:93:0f:fe:7b:f1:44:35:6f:a8:05:b4:a1:51: 04:50:8c:02:55:6a:0a:19:a4:1d:f1:2d:dd:b6:cc: be:34:95:fa:c1:6d:9c:a0:20:65:b5:5a:59:78:05: 1b:3b:1f:68:24:eb:d9:6d:8a:af:10:2c:a6:e8:f6: 21:a7:3d:a1:95:bf:cd:fe:c4:47:88:03:81:64:6d: 3c:27:25:fd:68:1e:28:df:52:75:a1:63:4e:25:36: 76:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:46:0F:29:9D:33:6C:49:C2:97:EE:C5:85:AA:7E:E8:93:01:60:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69efde29-08ee-4f8e-ac98-6477bb18db8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.250.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:ff:97:dc:f7:fa:af:ea:cd:8d:2d:b2:33:75:98:93:1d:64: 67:26:d4:ae:8d:09:62:1d:14:0b:70:c6:71:00:b2:c7:db:0d: 1e:0f:c8:70:8a:97:81:1a:37:c5:3c:bf:28:90:c4:3d:10:aa: ae:1a:61:91:fe:ae:15:2c:1b:5a:7b:6c:ef:b9:ba:14:79:4e: b9:d7:78:f5:a2:f2:f0:d1:17:21:f4:0b:39:a6:f3:f4:eb:8b: 8b:ee:86:c5:03:bc:c9:98:95:3f:c1:46:63:18:5a:8c:fa:53: 9f:4c:c1:ff:ef:49:62:d8:e9:1c:80:2c:e6:48:93:2c:fd:c9: 5e:8f:64:0b:e4:fb:9b:9d:d1:f3:24:60:ad:ee:23:bb:a1:bb: 89:de:5a:87:19:de:13:01:9b:ad:fe:c8:eb:51:e4:5a:d8:c4: 6b:3c:e3:fa:9e:76:b4:7e:40:45:81:48:94:f1:ca:73:cc:77: 3e:31:3f:8a:9c:86:54:ab:f0:d2:70:3e:1e:59:95:b3:5b:bd: 57:91:ed:d3:9e:de:60:12:a8:e8:36:15:7e:ef:b4:7b:d9:76: 8e:fc:a6:a2:b5:8c:e2:b4:eb:41:00:c3:94:8f:59:f6:8c:ef: a1:b7:08:31:ed:4d:18:22:8a:3f:1a:a7:29:14:b9:39:f5:99: 53:02:c6:56 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBaSZ7mY8Kbxn0D8Tg3cT4/g/7wAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODc1M2Y3MTQ1YTYwODczMDhlN2M3Mjk4N2M0MWI4N2Qy N2QzYjU2YWE3ZDg1ZTdkZDNjNDJmZjY1ODM3ZTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVN4XWiDjTQ841s0b7hfuSje2tXZbL7hu1PY8oP/UnhREy UZEXan786JlC+7E8DPcDgqxxZ5eoP/KeUs21/D6Xrhb78y5wXk1r36o9xcwLzPfy udi6FNI+bjakX8L6cP34ivSs5HG1eCAqG5+DnWJz39g5HlGOI3+OczbSMnzn7tTj +UUS5johWjPKQICQgZenx900QhS72eqoLaaxrWzOkvhh+2uwkw/+e/FENW+oBbSh UQRQjAJVagoZpB3xLd22zL40lfrBbZygIGW1Wll4BRs7H2gk69ltiq8QLKbo9iGn PaGVv83+xEeIA4FkbTwnJf1oHijfUnWhY04lNnYLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtUYPKZ0zbEnCl+7Fhap+6JMBYPwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5ZWZkZTI5LTA4ZWUtNGY4ZS1hYzk4LTY0NzdiYjE4ZGI4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK+jANBgkqhkiG9w0BAQsFAAOCAQEAy/+X3Pf6r+rNjS2yM3WYkx1kZybU ro0JYh0UC3DGcQCyx9sNHg/IcIqXgRo3xTy/KJDEPRCqrhphkf6uFSwbWnts77m6 FHlOudd49aLy8NEXIfQLOabz9OuLi+6GxQO8yZiVP8FGYxhajPpTn0zB/+9JYtjp HIAs5kiTLP3JXo9kC+T7m53R8yRgre4ju6G7id5ahxneEwGbrf7I61HkWtjEazzj +p52tH5ARYFIlPHKc8x3PjE/ipyGVKvw0nA+HlmVs1u9V5Ht057eYBKo6DYVfu+0 e9l2jvymorWM4rTrQQDDlI9Z9ozvobcIMe1NGCKKPxqnKRS5OfWZUwLGVg== -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:13 2023 by rpki-client on console-fra.rpki-client.org