$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa File: 6b0118f9-aa06-473f-9164-82651f7287ff.roa (raw, json) Hash identifier: 9BU7zilkE4wR68G98l6yaLNCjHZE+6pzl9OPwo2DTqI= Subject key identifier: 03:F3:35:46:CF:AD:3E:11:84:E6:52:42:50:B7:19:0A:38:94:ED:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 203B36879A816F29F13E0B6CA273AFA5ACBD92E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 128.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 07:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3b:36:87:9a:81:6f:29:f1:3e:0b:6c:a2:73:af:a5:ac:bd:92:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=af0d9108b48f06cd115b90febc899c1c3375a5e9d9ea0ddc22a9d8f6900e5cc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:40:d4:d3:b3:37:50:03:11:16:e7:3b:05:b5: 53:72:f6:f7:ae:e6:0a:9a:c1:73:31:d0:be:36:70: e0:7c:85:cf:44:52:bd:95:a4:a8:26:0a:1b:7f:80: bc:54:d0:af:da:4d:fa:08:bb:27:ab:ee:25:2b:92: 0e:10:cb:79:49:21:c9:95:de:7e:7a:a7:cf:f2:15: 91:6d:87:32:a3:85:4e:22:a0:7f:ca:e6:d3:2e:6c: 62:f6:57:81:c4:ea:49:b6:99:b9:07:9a:72:53:2a: b7:71:83:28:fc:33:ee:e7:a2:87:52:f6:4f:ed:22: bd:06:69:b4:6b:96:85:38:f2:00:cd:ca:4a:b4:fe: 20:ce:74:a5:21:d3:9c:8a:07:35:cc:9c:60:02:33: 9a:bb:77:f5:fe:7d:6f:fe:4a:f6:e5:de:e4:ff:fb: ba:c4:a5:fd:dd:a4:6e:3e:85:f6:26:f5:ff:3f:ee: 94:f2:fa:be:aa:30:57:14:a5:1d:5a:97:26:b9:0d: 76:c4:ba:0d:5d:06:48:cd:81:f4:fa:46:d3:a2:55: 99:9e:a5:35:81:3a:3c:fb:7d:15:16:27:36:f9:2b: f7:8b:b6:5c:2a:c4:8d:49:cf:e2:90:98:f8:ae:dd: bd:2f:55:c5:3a:c0:37:8e:20:e9:71:08:2a:37:56: ab:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F3:35:46:CF:AD:3E:11:84:E6:52:42:50:B7:19:0A:38:94:ED:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption 47:f2:57:bc:ca:eb:48:a4:92:54:4e:f3:61:2e:aa:ab:b9:bb: ae:d6:15:8d:e1:fa:8d:0b:7c:d9:8e:85:66:09:1f:d9:f3:10: 3c:5f:7a:d4:8c:86:1d:c3:5b:39:bf:02:fd:56:3c:f1:f3:cc: 81:68:c4:df:05:a0:cf:13:83:39:ae:a1:08:2c:cf:68:98:e6: 20:46:8a:67:c3:17:71:64:2b:60:28:1a:98:6e:a6:46:e4:85: 64:65:59:48:78:45:b9:ed:3c:47:17:64:92:d9:f3:1a:9c:2f: da:e8:7c:fb:4d:e3:57:0e:1e:fe:c3:4e:d9:be:3d:4f:5a:ba: a4:0a:ac:01:31:be:8b:54:f8:c1:62:fc:56:5c:df:29:3b:e3: d4:7e:f0:f2:a9:f4:98:a2:99:87:a5:ab:da:df:60:b6:af:83: 3e:49:d8:f2:8e:34:60:31:c6:2b:b6:79:41:5f:2f:a7:63:43: a1:6e:cf:16:2a:3e:90:3a:5b:d1:41:ba:3b:77:ac:64:67:63: 7e:51:5f:a5:14:50:32:cb:9f:31:18:88:ee:68:27:26:7e:ed: e0:a6:c5:f4:76:a1:16:8c:0d:fd:0c:cb:24:5a:4b:f5:bc:c4: aa:b4:19:d9:29:15:5a:bc:f9:d3:2c:ae:fa:5a:93:60:4d:cf: 6e:d9:0e:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIDs2h5qBbynxPgtsonOvpay9kuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjBkOTEwOGI0OGYwNmNkMTE1YjkwZmViYzg5OWMxYzMz NzVhNWU5ZDllYTBkZGMyMmE5ZDhmNjkwMGU1Y2M0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiQNTTszdQAxEW5zsFtVNy9veu5gqawXMx0L42cOB8hc9E Ur2VpKgmCht/gLxU0K/aTfoIuyer7iUrkg4Qy3lJIcmV3n56p8/yFZFthzKjhU4i oH/K5tMubGL2V4HE6km2mbkHmnJTKrdxgyj8M+7noodS9k/tIr0GabRrloU48gDN ykq0/iDOdKUh05yKBzXMnGACM5q7d/X+fW/+Svbl3uT/+7rEpf3dpG4+hfYm9f8/ 7pTy+r6qMFcUpR1alya5DXbEug1dBkjNgfT6RtOiVZmepTWBOjz7fRUWJzb5K/eL tlwqxI1Jz+KQmPiu3b0vVcU6wDeOIOlxCCo3VqsxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUA/M1Rs+tPhGE5lJCULcZCjiU7dgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiMDExOGY5LWFhMDYtNDczZi05MTY0LTgyNjUxZjcyODdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCA1DANBgkqhkiG9w0BAQsFAAOCAQEAR/JXvMrrSKSSVE7zYS6qq7m7rtYV jeH6jQt82Y6FZgkf2fMQPF961IyGHcNbOb8C/VY88fPMgWjE3wWgzxODOa6hCCzP aJjmIEaKZ8MXcWQrYCgamG6mRuSFZGVZSHhFue08RxdkktnzGpwv2uh8+03jVw4e /sNO2b49T1q6pAqsATG+i1T4wWL8VlzfKTvj1H7w8qn0mKKZh6Wr2t9gtq+DPknY 8o40YDHGK7Z5QV8vp2NDoW7PFio+kDpb0UG6O3esZGdjflFfpRRQMsufMRiI7mgn Jn7t4KbF9HahFowN/QzLJFpL9bzEqrQZ2SkVWrz50yyu+lqTYE3PbtkOBg== -----END CERTIFICATE-----Generated at Mon Aug 28 19:28:02 2023 by rpki-client on console-fra.rpki-client.org