$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa File: 7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa (raw, json) Hash identifier: MDlg+rWjKAKhIkEQHZ7vKIXnCXTPGuwxIyAubUCrp+g= Subject key identifier: 98:C6:19:86:7E:1B:6E:D2:DC:CF:7F:7E:61:59:B6:BA:FB:9A:6E:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BDD6D516785FA6FD8A531C209E987B9960BED6E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 128.167.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:dd:6d:51:67:85:fa:6f:d8:a5:31:c2:09:e9:87:b9:96:0b:ed:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1c67610bae7307303f96ac273f1416b5ffd01544a464e1e897b8405e134b54b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cc:62:25:f5:29:01:de:83:cb:94:b5:d1:fe: a9:73:7a:50:7f:de:9e:cc:89:3a:33:5b:40:cd:99: 2f:1a:a5:b1:a2:29:f4:a4:7c:96:81:30:66:da:64: ef:3a:f6:b6:6a:30:b0:ec:63:dc:d9:95:53:5f:28: 78:34:20:ea:c2:d9:3a:3b:32:cd:2c:bb:f2:3d:5f: 7b:1b:b5:b1:63:c9:32:41:eb:8a:c4:e6:94:8b:5e: 33:55:22:e3:74:e6:88:b4:8a:1b:6e:d0:e3:4f:72: 19:65:8d:9a:ea:51:34:5a:a4:f9:a4:76:c1:17:03: a0:19:65:7e:6e:1a:a8:4c:1d:4a:64:e6:18:4e:e3: 24:bb:5e:70:47:52:10:4d:38:0d:ab:31:10:41:eb: d2:0e:d3:bd:80:9a:49:f3:bc:5c:94:54:10:49:c0: 36:5c:00:e4:bc:d6:3b:95:60:e9:7e:67:9d:51:0c: 77:9f:45:6d:2b:2a:fb:58:a7:90:7c:22:af:fc:10: 1c:3d:7e:0a:51:fd:67:5d:9e:20:ed:06:41:70:fc: bf:d9:99:78:89:5a:8c:7e:62:6e:4e:d4:84:62:eb: 79:81:b1:7d:80:9a:77:75:18:86:a4:cf:e4:0f:1e: 0d:5e:8f:3c:41:2f:da:8f:f9:da:cb:73:eb:ec:eb: 91:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C6:19:86:7E:1B:6E:D2:DC:CF:7F:7E:61:59:B6:BA:FB:9A:6E:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b743625-8ab8-4d1f-a5ee-b2657bad3209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:3c:ec:d8:4b:92:c3:2f:05:f9:de:0f:58:f6:79:ef:ae:1f: 59:4b:34:6d:53:a5:b7:56:92:ce:96:f5:9d:2e:a0:81:33:d8: fd:b1:48:e1:5c:0d:95:a0:11:eb:ac:ac:7a:7c:16:1c:3b:de: fb:cb:99:4d:ea:5a:0a:26:69:8d:a5:f4:4c:ee:f7:ed:f2:94: 58:c3:f8:2a:a3:cb:c3:4d:f4:6a:dc:55:9d:72:e8:e8:6a:81: 98:5a:bc:03:ec:ab:89:9d:21:d3:72:17:bb:1a:89:5c:61:f4: 24:25:dd:83:81:2f:59:f5:77:b3:29:76:93:e5:6b:15:a8:29: 84:17:c6:df:78:4a:8c:c1:08:03:9f:35:ff:de:08:ec:b4:bb: fe:c5:a8:30:08:da:b6:12:f6:d8:fe:8e:dd:7e:03:dd:d1:81: 77:cd:20:dd:5d:7e:54:67:00:19:80:20:f5:73:9a:15:4a:2d: 57:49:d1:fb:f6:3a:49:d5:24:07:65:53:71:e2:40:a0:d7:b4: c6:ec:12:36:93:3a:96:63:6d:c2:7f:be:a6:b4:47:16:41:ae: 51:83:71:23:4c:54:26:10:8b:ef:01:f6:0e:dd:52:09:ac:7d: 63:b2:75:ef:bf:4c:dd:9c:ae:2d:31:e3:ae:b3:97:03:27:08: 34:0f:39:52 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS91tUWeF+m/YpTHCCemHuZYL7W4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzY3NjEwYmFlNzMwNzMwM2Y5NmFjMjczZjE0MTZiNWZm ZDAxNTQ0YTQ2NGUxZTg5N2I4NDA1ZTEzNGI1NGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7zGIl9SkB3oPLlLXR/qlzelB/3p7MiTozW0DNmS8apbGi KfSkfJaBMGbaZO869rZqMLDsY9zZlVNfKHg0IOrC2To7Ms0su/I9X3sbtbFjyTJB 64rE5pSLXjNVIuN05oi0ihtu0ONPchlljZrqUTRapPmkdsEXA6AZZX5uGqhMHUpk 5hhO4yS7XnBHUhBNOA2rMRBB69IO072AmknzvFyUVBBJwDZcAOS81juVYOl+Z51R DHefRW0rKvtYp5B8Iq/8EBw9fgpR/WddniDtBkFw/L/ZmXiJWox+Ym5O1IRi63mB sX2Amnd1GIakz+QPHg1ejzxBL9qP+drLc+vs65G9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmMYZhn4bbtLcz39+YVm2uvuabi8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiNzQzNjI1LThhYjgtNGQxZi1hNWVlLWIyNjU3YmFkMzIwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCApzANBgkqhkiG9w0BAQsFAAOCAQEAtjzs2EuSwy8F+d4PWPZ5764fWUs0 bVOlt1aSzpb1nS6ggTPY/bFI4VwNlaAR66ysenwWHDve+8uZTepaCiZpjaX0TO73 7fKUWMP4KqPLw030atxVnXLo6GqBmFq8A+yriZ0h03IXuxqJXGH0JCXdg4EvWfV3 syl2k+VrFagphBfG33hKjMEIA581/94I7LS7/sWoMAjathL22P6O3X4D3dGBd80g 3V1+VGcAGYAg9XOaFUotV0nR+/Y6SdUkB2VTceJAoNe0xuwSNpM6lmNtwn++prRH FkGuUYNxI0xUJhCL7wH2Dt1SCax9Y7J1779M3ZyuLTHjrrOXAycINA85Ug== -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:46 2023 by rpki-client on console-fra.rpki-client.org