$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa File: 70571ce4-58f3-4cc6-b162-737a20af972d.roa (raw, json) Hash identifier: Y+LOvG4GHWjSwknsXoPkReBP6FVvYg+IIcxWmolIidA= Subject key identifier: 57:A6:ED:10:89:43:D2:5B:83:AD:ED:45:CF:42:81:A2:3E:3E:6F:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BCB90D9110E81411307F8D32B9CB0AA6BAD3E79 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 70.251.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cb:90:d9:11:0e:81:41:13:07:f8:d3:2b:9c:b0:aa:6b:ad:3e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=70e2148996cd096a4cd77cca734ac140a9b21c63b2c94350cd8194dbb1459249, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f1:91:0c:85:d3:ce:b9:2f:94:6b:ea:08:1a: 32:a4:05:78:d9:12:80:fa:e3:05:ab:8a:95:f9:0f: f5:70:03:0f:a7:46:f9:03:85:10:de:76:b2:14:14: e2:4c:f1:87:a7:27:8f:23:44:64:d6:9e:cc:31:46: c7:be:9c:cb:4d:15:f4:a9:80:c5:3b:d8:7c:71:99: f5:35:23:89:4c:26:f0:78:f9:b9:3f:8c:4b:0c:3d: 24:e9:6e:ae:92:1d:57:31:46:60:22:0a:2c:62:cb: 1f:f6:0f:f7:13:28:c3:c7:72:03:62:da:19:0d:0c: 73:6a:bd:7e:7a:9d:6e:6d:67:a4:c1:e2:c0:90:60: 2b:53:09:cb:a5:ff:1c:56:f2:f9:f5:d0:af:ac:91: 13:a8:c6:40:8a:b3:3e:b9:70:76:fb:2a:eb:50:f0: f2:36:e9:8d:28:34:89:01:dc:cc:0f:d7:59:2c:fe: 77:cb:93:6e:19:c8:a0:d9:c4:dd:c9:63:9c:79:b6: 48:38:a5:09:80:9f:e1:c5:13:71:65:5a:06:f9:a0: 6e:06:01:ee:54:9f:e5:05:5e:05:75:c1:94:ee:ea: 43:7e:50:fe:ef:1b:d3:1e:62:44:87:28:ff:1e:1c: 2c:aa:3c:9f:6b:ee:9d:4d:4c:6c:ec:61:48:7e:d8: 63:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A6:ED:10:89:43:D2:5B:83:AD:ED:45:CF:42:81:A2:3E:3E:6F:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.251.64.0/18 Signature Algorithm: sha256WithRSAEncryption 69:f6:64:7a:c8:27:af:bf:2b:c1:b9:f0:b0:a8:1d:f0:12:09: 98:28:5d:ba:52:b6:ac:2d:e2:db:aa:69:fb:3e:89:c5:04:1e: 0c:af:de:8d:25:91:f9:ce:80:8f:9d:5d:8c:8d:db:ed:7f:19: 45:94:dc:6e:ea:25:c1:db:46:5c:b8:67:6c:ea:51:93:fd:d5: 6f:9f:34:13:fe:22:86:52:13:d2:d1:64:24:a5:f1:29:9a:33: f9:07:8d:23:64:ed:72:9f:3f:18:35:e6:21:6e:cd:e3:db:4f: 5b:45:e6:49:4c:f0:13:02:09:46:c2:82:30:78:1b:e7:8a:e7: cf:49:ad:fb:fd:df:a9:fa:9c:7d:1c:93:6a:a0:52:3b:c3:8e: 1b:62:28:d2:c4:f4:47:76:d0:08:5e:4b:29:55:e0:88:22:f7: cb:6d:6f:59:ed:d3:a3:b3:46:0f:c0:3e:e4:ed:06:da:bf:9f: 7c:fb:3d:2f:0b:10:a8:c3:38:36:ba:76:82:58:6f:9c:1c:53: 32:b6:17:14:97:dc:e8:39:ed:fe:08:a0:45:d7:54:1a:a1:94: 28:2f:4e:5a:9f:3e:a9:2b:0f:e7:91:aa:cb:1c:78:85:39:52: 38:4e:42:a5:b7:e9:26:8a:da:66:b1:e4:51:a8:24:0f:9e:c8: 02:4d:27:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO8uQ2REOgUETB/jTK5ywqmutPnkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGUyMTQ4OTk2Y2QwOTZhNGNkNzdjY2E3MzRhYzE0MGE5 YjIxYzYzYjJjOTQzNTBjZDgxOTRkYmIxNDU5MjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD8ZEMhdPOuS+Ua+oIGjKkBXjZEoD64wWripX5D/VwAw+n RvkDhRDedrIUFOJM8YenJ48jRGTWnswxRse+nMtNFfSpgMU72HxxmfU1I4lMJvB4 +bk/jEsMPSTpbq6SHVcxRmAiCixiyx/2D/cTKMPHcgNi2hkNDHNqvX56nW5tZ6TB 4sCQYCtTCcul/xxW8vn10K+skROoxkCKsz65cHb7KutQ8PI26Y0oNIkB3MwP11ks /nfLk24ZyKDZxN3JY5x5tkg4pQmAn+HFE3FlWgb5oG4GAe5Un+UFXgV1wZTu6kN+ UP7vG9MeYkSHKP8eHCyqPJ9r7p1NTGzsYUh+2GNhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV6btEIlD0luDre1Fz0KBoj4+b9gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwNTcxY2U0LTU4ZjMtNGNjNi1iMTYyLTczN2EyMGFmOTcyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG+0AwDQYJKoZIhvcNAQELBQADggEBAGn2ZHrIJ6+/K8G58LCoHfASCZgo XbpStqwt4tuqafs+icUEHgyv3o0lkfnOgI+dXYyN2+1/GUWU3G7qJcHbRly4Z2zq UZP91W+fNBP+IoZSE9LRZCSl8SmaM/kHjSNk7XKfPxg15iFuzePbT1tF5klM8BMC CUbCgjB4G+eK589Jrfv936n6nH0ck2qgUjvDjhtiKNLE9Ed20AheSylV4Igi98tt b1nt06OzRg/APuTtBtq/n3z7PS8LEKjDODa6doJYb5wcUzK2FxSX3Og57f4IoEXX VBqhlCgvTlqfPqkrD+eRqssceIU5UjhOQqW36SaK2max5FGoJA+eyAJNJ9s= -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:43 2023 by rpki-client on console-ams.rpki-client.org