$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78823995-1ea3-458b-919e-48e1b3b2cfc4.roa File: 78823995-1ea3-458b-919e-48e1b3b2cfc4.roa (raw, json) Hash identifier: zxCyJqCH00gqwg7qYMw1B/aonA2BW6SbajNaKO2xjBY= Subject key identifier: FD:2E:20:20:7D:F7:8D:1F:96:F0:B9:13:47:74:DC:B2:AF:9A:37:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 536E967D1E105A87237529227DD83D07667DCBC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78823995-1ea3-458b-919e-48e1b3b2cfc4.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 129.30.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6e:96:7d:1e:10:5a:87:23:75:29:22:7d:d8:3d:07:66:7d:cb:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1e9c0943c0c7362981f8f0b500e8aa4a35c0b56575271842c8fe809da6c29b03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:56:73:c0:08:f8:e1:02:83:b4:b4:37:37:86: 41:ca:7b:bd:92:c5:a4:0c:7d:5d:8c:5b:ef:24:91: 6b:30:8c:19:7a:74:29:b9:94:7b:41:bb:1c:83:be: dd:06:8e:a9:5b:03:a6:83:75:49:69:72:1c:dd:3b: 31:a7:d2:76:20:c8:a4:8d:25:38:2c:9b:12:1f:63: c2:6e:fc:8c:08:33:ae:19:a6:f4:27:7d:1a:68:da: fb:67:c1:6f:30:45:e2:eb:48:1b:e9:67:af:dd:20: 6e:97:ea:c4:ed:11:3e:80:59:32:58:3c:2f:16:f8: a0:a7:83:aa:39:ce:84:46:4f:e6:61:d9:ca:9b:b9: dc:e2:d4:29:d5:13:85:bf:43:01:a2:58:da:bb:ff: 52:71:f9:70:3c:f6:22:c0:87:2e:64:4a:a6:c5:e6: b4:80:96:e7:be:51:e0:d2:9a:ca:9f:ec:05:ab:fb: f5:80:28:b3:19:36:d8:2a:de:ef:ee:71:2f:ae:a2: f8:a9:36:01:a1:7a:ad:94:37:1f:dc:51:bf:fb:c3: 3d:0e:e2:26:68:78:63:0b:9e:db:70:7b:85:58:e6: 3d:f9:18:19:a4:0e:18:5b:4f:49:05:6c:ef:64:2f: 31:18:47:88:8e:96:c4:83:9a:bc:63:78:57:4e:29: 57:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2E:20:20:7D:F7:8D:1F:96:F0:B9:13:47:74:DC:B2:AF:9A:37:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78823995-1ea3-458b-919e-48e1b3b2cfc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.30.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:75:0a:c6:54:e6:21:18:c0:9d:49:b3:2f:9f:dc:b1:d2:96: e4:59:ee:bf:a8:6e:ae:fa:2f:49:ac:32:ee:89:6c:66:8b:62: d2:e9:70:6c:e5:84:d6:b1:54:ec:62:d9:ff:5c:0a:37:5d:20: b9:44:e7:6f:05:5c:a7:b7:f0:85:13:6d:9e:70:bf:45:ee:62: 33:15:a8:9d:a2:3f:3c:44:99:fe:dc:12:10:fa:11:29:9c:70: bf:4c:7a:7d:39:01:78:ce:70:af:91:05:ca:f1:85:a3:4d:32: d7:ef:85:86:79:05:ca:d4:b1:d4:18:6b:a7:64:29:8f:44:7b: cf:0c:6a:9b:c3:8d:22:22:fd:2b:ea:f6:98:36:d9:de:dc:40: f9:e5:9c:5e:6b:ff:8a:16:d3:3a:da:b6:bb:bc:17:72:a1:5d: 76:29:57:28:0c:81:2a:cf:eb:e6:5e:92:de:b6:3f:6d:c5:28: f0:7a:03:a9:b1:cf:e0:a0:be:14:61:c6:46:4b:36:29:92:a6: c1:b9:ea:ba:88:7b:73:d4:bf:5c:56:12:59:0a:fa:ec:ac:5d: 7a:21:21:c8:1b:18:dd:b3:38:a5:38:ac:35:62:cb:c5:90:15: 5e:09:0c:92:c2:c8:93:60:4d:2e:db:7f:6c:4b:c6:18:5e:81: ab:d4:9e:05 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUU26WfR4QWocjdSkifdg9B2Z9y8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTljMDk0M2MwYzczNjI5ODFmOGYwYjUwMGU4YWE0YTM1 YzBiNTY1NzUyNzE4NDJjOGZlODA5ZGE2YzI5YjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpVnPACPjhAoO0tDc3hkHKe72SxaQMfV2MW+8kkWswjBl6 dCm5lHtBuxyDvt0GjqlbA6aDdUlpchzdOzGn0nYgyKSNJTgsmxIfY8Ju/IwIM64Z pvQnfRpo2vtnwW8wReLrSBvpZ6/dIG6X6sTtET6AWTJYPC8W+KCng6o5zoRGT+Zh 2cqbudzi1CnVE4W/QwGiWNq7/1Jx+XA89iLAhy5kSqbF5rSAlue+UeDSmsqf7AWr +/WAKLMZNtgq3u/ucS+uovipNgGheq2UNx/cUb/7wz0O4iZoeGMLnttwe4VY5j35 GBmkDhhbT0kFbO9kLzEYR4iOlsSDmrxjeFdOKVdBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/S4gIH33jR+W8LkTR3Tcsq+aN/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ODIzOTk1LTFlYTMtNDU4Yi05MTllLTQ4ZTFiM2IyY2ZjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCBHjANBgkqhkiG9w0BAQsFAAOCAQEAeXUKxlTmIRjAnUmzL5/csdKW5Fnu v6hurvovSawy7olsZoti0ulwbOWE1rFU7GLZ/1wKN10guUTnbwVcp7fwhRNtnnC/ Re5iMxWonaI/PESZ/twSEPoRKZxwv0x6fTkBeM5wr5EFyvGFo00y1++FhnkFytSx 1Bhrp2Qpj0R7zwxqm8ONIiL9K+r2mDbZ3txA+eWcXmv/ihbTOtq2u7wXcqFddilX KAyBKs/r5l6S3rY/bcUo8HoDqbHP4KC+FGHGRks2KZKmwbnquoh7c9S/XFYSWQr6 7KxdeiEhyBsY3bM4pTisNWLLxZAVXgkMksLIk2BNLtt/bEvGGF6Bq9SeBQ== -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:19 2023 by rpki-client on console-fra.rpki-client.org