$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa File: 7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa (raw, json) Hash identifier: yotIBERFjFa+c3YG/1FRs9JW7dDMqCH4+mcwDkyrXO4= Subject key identifier: D8:86:58:31:2B:9D:D7:22:E0:8E:45:CF:32:77:E2:AC:05:6F:82:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51542CA2B89C329952B687BBCF57487EDE057E81 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:54:2c:a2:b8:9c:32:99:52:b6:87:bb:cf:57:48:7e:de:05:7e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=827360576c93f42b7aad8b4a5ae12fbb9e3a15b2bf1a430325d8bff24a85b22b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e0:12:78:99:ac:c3:fa:49:34:38:71:cb:73: f7:96:02:c0:7d:d5:7c:3f:d6:1b:c9:ab:72:24:81: f8:c1:ee:1c:29:32:2e:30:89:99:e9:57:ec:97:27: 88:c7:11:30:f3:73:ef:c3:bb:e9:cb:3f:d7:75:aa: 5f:95:04:9d:8b:aa:ce:04:9f:43:64:dc:fd:a4:49: b2:c6:f3:6e:05:50:04:cd:3e:78:87:c1:f4:44:21: f0:10:4d:e4:4b:b0:2e:0d:e7:1a:d4:d7:df:f6:e6: b6:54:b0:05:04:76:04:2e:b8:8b:b0:b6:89:2a:95: 2b:81:ea:ba:80:85:4c:93:c7:89:76:5b:4f:8b:77: 92:93:7f:6c:77:9a:ba:4b:f0:11:6e:92:b8:7b:52: b6:f4:48:55:5b:64:50:a6:3f:28:99:84:20:df:af: 49:9e:46:e6:90:da:8b:a2:14:a3:f8:08:06:27:99: 8b:0d:a7:38:58:1d:5d:20:29:6f:97:bc:55:a6:93: d6:ba:d8:ca:cb:4e:f8:d2:0d:2e:b9:d9:f0:0e:ed: 6a:e2:81:15:1e:85:cb:08:a4:b6:0e:22:da:fa:69: 24:34:d4:63:e7:3d:42:3e:5f:c7:3d:7f:61:4a:28: 73:26:23:3d:62:db:e6:8e:2f:98:ef:26:f9:57:1e: e5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:86:58:31:2B:9D:D7:22:E0:8E:45:CF:32:77:E2:AC:05:6F:82:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.192.0/18 Signature Algorithm: sha256WithRSAEncryption 89:6f:d4:d8:7b:12:ab:0d:2c:96:5e:da:30:0e:4c:f3:e2:2c: 77:be:18:f5:e8:22:cc:0d:e4:29:74:1a:d9:bb:65:56:f5:25: be:1b:97:9a:44:42:4c:8b:6b:04:54:6e:1d:ec:43:19:0a:29: f5:c9:c3:3a:8c:27:31:48:6d:12:2e:2b:c6:64:19:2b:f4:8a: 8d:2c:ba:a6:38:70:22:98:02:e7:71:ab:89:37:a2:83:37:f0: e3:42:70:31:39:dc:e2:b5:d6:7c:bb:0e:fc:9e:a0:ce:04:a8: 9e:e1:e9:58:79:ca:25:73:42:68:63:66:c3:c7:52:c8:ef:c6: c4:46:45:c8:bd:76:1a:1d:a0:94:18:d9:66:56:13:10:38:51: 2e:b1:d9:f0:9c:55:ce:36:97:e4:f9:f1:0a:9f:ba:35:e8:6e: 54:dc:af:0e:c2:e6:f9:70:9d:9c:b5:a9:cf:b7:4b:61:86:32: dd:f1:be:6b:86:8f:2d:00:59:33:b4:1d:6d:e0:73:90:6b:fe: 2d:03:84:ae:4b:ad:b4:b3:19:b6:5a:83:ad:e3:9e:f9:3e:5f: 02:0b:4f:4d:8c:d1:92:d0:63:ce:3a:f1:ee:82:92:87:66:6d: 09:8d:42:79:60:1d:aa:28:6c:71:5e:cf:d5:4c:e6:09:47:29: 05:38:1d:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUVQsoricMplStoe7z1dIft4FfoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjczNjA1NzZjOTNmNDJiN2FhZDhiNGE1YWUxMmZiYjll M2ExNWIyYmYxYTQzMDMyNWQ4YmZmMjRhODViMjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX4BJ4mazD+kk0OHHLc/eWAsB91Xw/1hvJq3IkgfjB7hwp Mi4wiZnpV+yXJ4jHETDzc+/Du+nLP9d1ql+VBJ2Lqs4En0Nk3P2kSbLG824FUATN PniHwfREIfAQTeRLsC4N5xrU19/25rZUsAUEdgQuuIuwtokqlSuB6rqAhUyTx4l2 W0+Ld5KTf2x3mrpL8BFukrh7Urb0SFVbZFCmPyiZhCDfr0meRuaQ2ouiFKP4CAYn mYsNpzhYHV0gKW+XvFWmk9a62MrLTvjSDS652fAO7WrigRUehcsIpLYOItr6aSQ0 1GPnPUI+X8c9f2FKKHMmIz1i2+aOL5jvJvlXHuXxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2IZYMSud1yLgjkXPMnfirAVvgtQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2MDhiMmU4LWQ1ZjctNGJkMC1hMTc1LWM3MGEzMmU5Nzk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG4MAwDQYJKoZIhvcNAQELBQADggEBAIlv1Nh7EqsNLJZe2jAOTPPiLHe+ GPXoIswN5Cl0Gtm7ZVb1Jb4bl5pEQkyLawRUbh3sQxkKKfXJwzqMJzFIbRIuK8Zk GSv0io0suqY4cCKYAudxq4k3ooM38ONCcDE53OK11ny7DvyeoM4EqJ7h6Vh5yiVz QmhjZsPHUsjvxsRGRci9dhodoJQY2WZWExA4US6x2fCcVc42l+T58QqfujXoblTc rw7C5vlwnZy1qc+3S2GGMt3xvmuGjy0AWTO0HW3gc5Br/i0DhK5LrbSzGbZag63j nvk+XwILT02M0ZLQY8468e6CkodmbQmNQnlgHaoobHFez9VM5glHKQU4HcA= -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:46 2023 by rpki-client on console-fra.rpki-client.org