$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b6c6596-e683-48b2-971c-a1b65eced38d.roa File: 6b6c6596-e683-48b2-971c-a1b65eced38d.roa (raw, json) Hash identifier: HJsSBcXMuoqfnaO7WVIjDcI/qd4nz4evrcDH2DRjOPA= Subject key identifier: C0:B3:00:3C:CF:83:56:1E:16:5B:2C:BB:15:E2:79:14:29:16:DA:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E6FD8753C80CB01D4EE9DC8EC851B55029BB340 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b6c6596-e683-48b2-971c-a1b65eced38d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:6f:d8:75:3c:80:cb:01:d4:ee:9d:c8:ec:85:1b:55:02:9b:b3:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b7d6c4b1ac8f1c13cb2b94a98789c97438300361128771cbe1b3fe2eec29759d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:47:ce:b2:e6:4a:ac:e5:a1:45:17:7e:db: 25:16:c1:d8:c7:7c:97:5a:5e:9e:91:00:02:d4:d6: d5:f6:8c:d7:76:19:d9:8a:3a:c0:09:44:73:80:2e: bc:26:91:78:c8:f3:53:d2:a4:33:bf:c7:fa:d8:7c: 68:da:a8:3f:3c:83:91:1d:11:11:96:ec:7d:d2:2d: ec:e1:37:8d:1f:7a:59:26:d7:90:bf:69:c8:7c:f0: 79:cf:01:1c:09:f0:f9:07:a7:9b:27:7a:18:a2:b0: 9d:9f:4c:e5:d0:26:1e:4a:fe:62:78:51:a6:b2:5f: 3a:be:fa:66:c8:34:22:7e:d6:9f:b1:3f:e1:e8:06: ec:15:9c:ba:9e:0f:51:c3:00:ae:84:1b:77:26:b4: d3:07:71:12:a9:43:54:ca:05:d8:83:5f:b7:a2:6e: 76:95:dd:4c:a7:89:2b:eb:74:df:6d:9b:35:30:fd: 38:33:ef:17:eb:79:13:b3:87:30:2d:18:4f:76:f5: ee:ec:1e:91:2a:52:c1:c7:ca:dd:c9:ce:85:f8:ce: 2d:45:ef:7c:cc:a0:7f:1d:38:69:14:26:39:d6:cf: 3b:7f:ce:e0:53:be:6e:6a:67:7c:4d:70:fa:74:68: 01:7a:77:d5:f4:49:65:1d:31:dc:a2:11:47:8d:01: 6c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B3:00:3C:CF:83:56:1E:16:5B:2C:BB:15:E2:79:14:29:16:DA:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b6c6596-e683-48b2-971c-a1b65eced38d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:2c:cf:01:f1:b0:17:e5:d5:26:d3:c0:5e:65:b6:bd:8c:e8: c7:08:22:60:ff:73:29:ce:7d:63:36:c3:4c:31:52:2a:97:c6: 92:d5:6d:27:28:a8:68:54:00:ac:9a:0d:ce:a6:1b:34:86:f2: 51:68:a3:e2:65:3b:11:36:f7:e7:bf:20:e9:65:45:ea:f1:46: 2e:75:b4:ac:0e:a2:12:18:37:99:5e:73:3e:8c:ff:a1:d7:e5: d4:39:3c:a0:61:96:d8:c0:56:e4:10:a4:b7:16:93:0b:74:64: d7:f2:8c:a0:b5:85:e3:42:a3:38:35:63:bf:b9:d5:28:90:d6: 62:36:66:0f:11:2c:34:80:4b:e5:4f:6d:76:b8:30:e3:2d:79: 9c:43:1b:8d:ab:a6:1b:62:9f:43:3b:39:72:f8:3b:5b:53:1f: db:ad:29:b4:83:e9:1b:6e:01:11:61:8e:66:f7:fc:cb:2c:cd: c0:a0:97:ec:73:e0:90:e8:1b:74:44:fd:59:ba:72:00:81:2d: 2f:a7:cd:81:19:76:74:ed:b0:37:fb:76:95:73:0a:a7:3b:83: 30:87:be:0f:27:73:d5:b4:70:7a:ef:b6:99:64:01:51:05:24: dd:04:40:13:df:bf:40:11:a5:20:37:61:e5:fe:7d:d3:23:64: aa:66:56:f1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULm/YdTyAywHU7p3I7IUbVQKbs0AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2Q2YzRiMWFjOGYxYzEzY2IyYjk0YTk4Nzg5Yzk3NDM4 MzAwMzYxMTI4NzcxY2JlMWIzZmUyZWVjMjk3NTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2IkfOsuZKrOWhRRd+2yUWwdjHfJdaXp6RAALU1tX2jNd2 GdmKOsAJRHOALrwmkXjI81PSpDO/x/rYfGjaqD88g5EdERGW7H3SLezhN40felkm 15C/ach88HnPARwJ8PkHp5snehiisJ2fTOXQJh5K/mJ4UaayXzq++mbINCJ+1p+x P+HoBuwVnLqeD1HDAK6EG3cmtNMHcRKpQ1TKBdiDX7eibnaV3UyniSvrdN9tmzUw /Tgz7xfreROzhzAtGE929e7sHpEqUsHHyt3JzoX4zi1F73zMoH8dOGkUJjnWzzt/ zuBTvm5qZ3xNcPp0aAF6d9X0SWUdMdyiEUeNAWxVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwLMAPM+DVh4WWyy7FeJ5FCkW2oYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiNmM2NTk2LWU2ODMtNDhiMi05NzFjLWExYjY1ZWNlZDM4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fzANBgkqhkiG9w0BAQsFAAOCAQEASSzPAfGwF+XVJtPAXmW2vYzoxwgi YP9zKc59YzbDTDFSKpfGktVtJyioaFQArJoNzqYbNIbyUWij4mU7ETb3578g6WVF 6vFGLnW0rA6iEhg3mV5zPoz/odfl1Dk8oGGW2MBW5BCktxaTC3Rk1/KMoLWF40Kj ODVjv7nVKJDWYjZmDxEsNIBL5U9tdrgw4y15nEMbjaumG2KfQzs5cvg7W1Mf260p tIPpG24BEWGOZvf8yyzNwKCX7HPgkOgbdET9WbpyAIEtL6fNgRl2dO2wN/t2lXMK pzuDMIe+Dydz1bRweu+2mWQBUQUk3QRAE9+/QBGlIDdh5f590yNkqmZW8Q== -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:06 2023 by rpki-client on console-fra.rpki-client.org