$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa File: 73a7c4f5-f96f-428a-8378-6b60470968f5.roa (raw, json) Hash identifier: lZV22l8+fgvb5bUfeZE8FJ7cv0zm014R6rApK4g8q2I= Subject key identifier: F6:1A:3B:28:4B:3E:A2:0F:99:73:1F:60:40:E0:0A:DA:DD:42:5D:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E68A10313836751319838A8DC45E2527339FE82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 166.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:68:a1:03:13:83:67:51:31:98:38:a8:dc:45:e2:52:73:39:fe:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=eb2e4deab0860a2ea0dd945e29098051a8e11eb79747595be6ecc418825127f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b9:35:9e:84:dc:e2:b0:fe:7e:6f:85:69:db: 7e:b7:cb:bf:ce:33:75:ad:e0:34:bc:c2:b8:9b:f0: 53:46:57:14:d2:51:03:35:f0:87:1d:db:bf:b7:0a: e3:89:08:02:23:41:55:77:db:5e:59:b1:67:39:4b: bc:5c:8e:18:27:24:57:c3:2d:7c:d3:93:54:b1:29: 1e:01:dd:a1:3c:f1:1a:83:01:da:01:2a:4a:b0:0f: 28:26:81:95:8b:b3:ed:85:dd:5e:6a:7f:55:93:ce: 38:bf:43:72:83:a1:1b:e0:09:3e:59:47:72:e1:50: bb:c1:18:10:b3:af:4b:92:0f:c7:6c:6b:84:4b:35: ab:03:f0:48:8a:9a:f2:b4:92:df:04:ef:69:5b:1c: ff:7a:54:e9:e7:1d:d6:d7:4f:e2:91:a2:e6:8e:8d: 62:ca:3f:0a:af:d0:9a:0c:17:25:41:8c:64:0c:0c: 99:98:bb:8b:f9:60:ce:d4:93:47:89:17:61:b7:0a: 8d:2d:af:50:8d:8a:74:e4:64:ef:eb:50:df:b6:9d: 6c:05:22:ec:b2:68:d6:da:2e:ac:3c:61:8a:b8:28: 86:8e:8e:00:fe:fe:fb:c9:e9:64:27:34:9c:39:f7: f4:cd:98:a2:36:22:7b:be:97:6b:0e:6e:9d:98:6d: d0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:1A:3B:28:4B:3E:A2:0F:99:73:1F:60:40:E0:0A:DA:DD:42:5D:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1d:16:54:9d:2b:f0:8f:cc:5b:67:a1:ef:94:59:0b:00:11:41: 50:f1:c3:5b:d9:3a:68:47:56:ab:8f:d2:5b:43:b7:07:30:7e: c1:d8:3f:9f:a8:b0:40:9e:29:e7:4e:df:29:9c:9b:8f:e1:2e: e6:5e:ec:4f:70:eb:2c:d1:d5:a4:73:0a:bf:5b:e2:d9:b2:52: 9d:7e:46:54:43:3b:1c:85:3d:e2:2e:23:b1:91:16:c6:3d:47: ec:ea:d7:04:a5:33:b7:39:be:73:5f:d1:01:87:43:83:6e:cd: 2f:d5:f9:5e:23:22:ed:96:a0:1f:53:73:48:cd:df:5f:20:81: 2f:70:f3:90:d0:3c:02:64:96:37:ab:7e:58:77:0f:1d:22:ce: e5:3c:25:23:af:cb:c0:75:79:0e:ef:a5:00:e8:41:bc:20:97: ab:01:29:39:46:f3:21:ed:9d:91:47:ec:4c:02:88:da:4d:f5: 41:60:b9:40:ac:0f:7f:d0:79:88:6a:7d:9e:30:38:32:2d:29: 9b:61:e5:07:79:35:b8:11:bf:3d:b0:e3:20:34:41:92:64:52: 2c:b3:51:98:95:c3:39:75:2f:11:70:ae:cd:bb:12:2b:1f:5d: 7e:2b:20:7a:82:e7:63:85:62:05:76:54:d4:d8:2e:9a:af:59: ca:80:c7:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPmihAxODZ1ExmDio3EXiUnM5/oIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjJlNGRlYWIwODYwYTJlYTBkZDk0NWUyOTA5ODA1MWE4 ZTExZWI3OTc0NzU5NWJlNmVjYzQxODgyNTEyN2YwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0uTWehNzisP5+b4Vp2363y7/OM3Wt4DS8wrib8FNGVxTS UQM18Icd27+3CuOJCAIjQVV3215ZsWc5S7xcjhgnJFfDLXzTk1SxKR4B3aE88RqD AdoBKkqwDygmgZWLs+2F3V5qf1WTzji/Q3KDoRvgCT5ZR3LhULvBGBCzr0uSD8ds a4RLNasD8EiKmvK0kt8E72lbHP96VOnnHdbXT+KRouaOjWLKPwqv0JoMFyVBjGQM DJmYu4v5YM7Uk0eJF2G3Co0tr1CNinTkZO/rUN+2nWwFIuyyaNbaLqw8YYq4KIaO jgD+/vvJ6WQnNJw59/TNmKI2Inu+l2sObp2YbdAvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9ho7KEs+og+Zcx9gQOAK2t1CXQ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczYTdjNGY1LWY5NmYtNDI4YS04Mzc4LTZiNjA0NzA5NjhmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmUDANBgkqhkiG9w0BAQsFAAOCAQEAHRZUnSvwj8xbZ6HvlFkLABFBUPHD W9k6aEdWq4/SW0O3BzB+wdg/n6iwQJ4p507fKZybj+Eu5l7sT3DrLNHVpHMKv1vi 2bJSnX5GVEM7HIU94i4jsZEWxj1H7OrXBKUztzm+c1/RAYdDg27NL9X5XiMi7Zag H1NzSM3fXyCBL3DzkNA8AmSWN6t+WHcPHSLO5TwlI6/LwHV5Du+lAOhBvCCXqwEp OUbzIe2dkUfsTAKI2k31QWC5QKwPf9B5iGp9njA4Mi0pm2HlB3k1uBG/PbDjIDRB kmRSLLNRmJXDOXUvEXCuzbsSKx9dfisgeoLnY4ViBXZU1Ngumq9ZyoDHnQ== -----END CERTIFICATE-----Generated at Fri Sep 22 19:21:57 2023 by rpki-client on console-ams.rpki-client.org