$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: vHiBFYdogWDuERPoPgVkz/5IjjAOsIQyqSwlyndCFMw= Subject key identifier: 1D:79:93:F5:1B:98:28:F7:73:43:41:8C:CD:1F:2E:1B:DF:8D:13:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 458A01368114004862E3BAD9E8241A52EDDEE22B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8a:01:36:81:14:00:48:62:e3:ba:d9:e8:24:1a:52:ed:de:e2:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=5ec87d3bb42c3d7a235b790cbf0e59397c86729ecfaa9fea9360382ad55168f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:f0:48:60:11:5b:fc:dd:90:50:6b:4c:c5: 28:5a:77:11:82:d3:29:10:6b:39:ce:54:d2:42:d9: ee:02:fc:b2:f7:2d:ef:83:c3:54:aa:44:37:94:d9: 8d:e1:3a:9c:80:a4:3c:56:30:4a:76:04:25:be:0b: 5f:54:54:cf:71:37:aa:91:a4:61:b1:63:c5:82:bf: 15:47:34:14:18:be:51:6e:11:54:25:aa:94:73:bb: d2:aa:8e:cb:af:c1:27:36:81:4f:93:08:8a:6d:83: c4:63:c6:a3:3c:c5:2e:55:57:93:40:a9:c2:a7:36: b5:a0:66:0b:64:d7:be:03:38:5a:49:4e:ed:21:5c: 91:a4:b3:3b:62:d1:2e:3b:ac:f4:66:16:33:69:39: 69:30:d9:39:b7:de:99:16:50:8c:09:ec:ef:2c:a9: 0c:86:3e:0f:e8:6c:ad:74:11:42:18:d5:47:71:3e: 70:ed:73:0f:2b:64:cf:b4:4e:02:56:f9:0f:18:aa: 0c:fe:42:1f:c8:28:c6:99:06:3e:68:61:8e:6f:a8: de:ed:92:7b:d2:af:6c:ab:a6:9f:eb:d7:fb:28:28: dc:3f:42:38:c1:2a:e2:62:5b:0b:11:eb:d3:4b:8d: 9e:64:32:e4:6b:59:f7:00:9c:d6:2c:58:72:2b:32: 97:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:79:93:F5:1B:98:28:F7:73:43:41:8C:CD:1F:2E:1B:DF:8D:13:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:93:0d:fb:64:e0:cf:04:b2:e9:f1:ae:95:e8:94:e5:e6:bb: ef:c9:b3:53:a5:85:8e:18:36:a7:d4:e3:ee:8a:51:51:5e:82: c9:b8:d8:cf:be:f1:7a:09:7a:1d:69:82:ab:2b:81:1d:e6:b7: 19:16:5e:00:e9:b2:7d:d4:b1:f3:96:0d:f8:5d:4c:a0:59:4b: 94:df:ec:49:c9:fa:a2:5f:69:65:a7:d2:1a:b6:c8:6e:5a:92: 35:49:52:9c:f9:5c:d5:77:97:df:9f:ea:32:5a:87:44:80:19: 3a:99:ef:b0:ed:2a:20:97:7c:3c:27:70:23:c5:23:15:a6:df: 8e:89:23:64:fb:27:06:e6:b1:ca:c6:ff:bb:26:aa:7e:99:49: 03:af:44:c3:44:7b:62:9a:db:de:a4:44:93:8b:71:eb:86:5c: 3e:23:89:fb:e5:4e:1d:71:79:ec:00:5d:1b:5f:2f:1c:64:72: 9d:20:db:36:1e:e5:c9:55:d3:8d:59:3c:58:9c:b3:a2:c0:bc: 48:e4:18:00:01:a7:17:c3:c9:42:f0:b4:c6:86:aa:18:02:6f: 55:b7:57:7d:ad:dd:38:94:a0:f8:cb:32:ca:4f:e4:d2:81:3d: 33:94:e2:7a:89:7a:c8:5f:19:34:dc:be:98:79:f8:a9:ca:9f: 9b:ae:3f:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURYoBNoEUAEhi47rZ6CQaUu3e4iswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWM4N2QzYmI0MmMzZDdhMjM1Yjc5MGNiZjBlNTkzOTdj ODY3MjllY2ZhYTlmZWE5MzYwMzgyYWQ1NTE2OGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC94vBIYBFb/N2QUGtMxShadxGC0ykQaznOVNJC2e4C/LL3 Le+Dw1SqRDeU2Y3hOpyApDxWMEp2BCW+C19UVM9xN6qRpGGxY8WCvxVHNBQYvlFu EVQlqpRzu9KqjsuvwSc2gU+TCIptg8RjxqM8xS5VV5NAqcKnNrWgZgtk174DOFpJ Tu0hXJGkszti0S47rPRmFjNpOWkw2Tm33pkWUIwJ7O8sqQyGPg/obK10EUIY1Udx PnDtcw8rZM+0TgJW+Q8Yqgz+Qh/IKMaZBj5oYY5vqN7tknvSr2yrpp/r1/soKNw/ QjjBKuJiWwsR69NLjZ5kMuRrWfcAnNYsWHIrMpe7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHXmT9RuYKPdzQ0GMzR8uG9+NE+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAPZMN+2TgzwSy6fGuleiU5ea778mz U6WFjhg2p9Tj7opRUV6CybjYz77xegl6HWmCqyuBHea3GRZeAOmyfdSx85YN+F1M oFlLlN/sScn6ol9pZafSGrbIblqSNUlSnPlc1XeX35/qMlqHRIAZOpnvsO0qIJd8 PCdwI8UjFabfjokjZPsnBuaxysb/uyaqfplJA69Ew0R7Yprb3qREk4tx64ZcPiOJ ++VOHXF57ABdG18vHGRynSDbNh7lyVXTjVk8WJyzosC8SOQYAAGnF8PJQvC0xoaq GAJvVbdXfa3dOJSg+Msyyk/k0oE9M5Tieol6yF8ZNNy+mHn4qcqfm64/Cw== -----END CERTIFICATE-----Generated at Fri Sep 22 16:49:43 2023 by rpki-client on console-ams.rpki-client.org