$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa File: 815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa (raw, json) Hash identifier: womJNfZO/1y8IzrGt0nXTjkVLAh5rtX2ag/YyMEpCTA= Subject key identifier: B6:5B:7C:B3:D6:80:C4:F1:5F:57:AB:78:51:C8:CA:4E:4D:A0:0F:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7795B1B9BDF3CC1953399B791C526EE7B01BC430 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:95:b1:b9:bd:f3:cc:19:53:39:9b:79:1c:52:6e:e7:b0:1b:c4:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=e6c770e73b16a295fe3c08006336cfdd8949060117a6fdcccc2d249a200c1505, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:eb:c4:d6:55:f8:16:c0:e0:fc:a3:b6:b5:1a: 14:f7:47:55:24:70:7d:32:81:20:fd:b6:a3:89:ed: 89:dc:7b:46:7b:16:81:ee:a2:f1:fe:ee:e1:1c:7b: d9:7a:ef:d2:d7:4c:0d:bb:ee:0d:4b:f7:1d:5b:9f: 0d:e7:3f:c4:87:f1:e7:25:54:cb:28:f7:3f:60:17: ec:bd:11:7a:12:92:ba:4b:82:93:59:9f:18:b2:66: f0:c1:2a:17:49:ca:bb:22:08:95:ec:8c:99:32:de: 91:67:5a:06:a4:ed:bc:d6:98:e8:b9:f0:9b:9c:51: f7:9e:57:1a:88:fe:d5:00:72:9a:34:f3:6c:8e:92: 1d:b5:c3:4b:f5:fb:13:b1:d8:41:ef:5b:dd:99:1e: 06:f3:8e:5c:2c:78:70:b5:6c:f1:6e:14:20:fd:7c: d6:4d:24:a1:c8:6e:77:2c:3c:55:51:87:95:71:87: 5a:d2:1d:40:5f:6d:74:d6:bd:86:4a:33:6b:a0:6f: 8f:c4:64:f6:60:26:8b:8b:1c:da:19:a3:41:0d:54: 62:b4:b7:a7:28:5d:18:3a:0f:c8:22:7b:af:76:57: a5:11:3f:e3:7b:9d:0d:d2:23:f9:19:0e:d5:98:be: 44:00:ba:63:ff:4f:78:8a:b1:25:86:e5:18:be:68: b4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:5B:7C:B3:D6:80:C4:F1:5F:57:AB:78:51:C8:CA:4E:4D:A0:0F:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:cc:04:54:fc:fd:9d:e4:2e:70:67:67:16:61:c4:f6:c1:96: 72:78:25:c1:03:f7:e0:40:ce:80:45:c9:d2:4f:be:44:9a:bc: cf:e7:22:b6:c1:fd:85:ce:e3:14:9f:04:6c:bd:82:25:3f:29: 64:67:fc:3a:1c:44:7a:5e:81:b9:d7:3e:73:41:98:2e:3a:bf: 85:e6:d7:b1:ab:31:5b:5e:f1:9c:ad:7a:1a:f6:02:6d:36:d1: 81:a8:12:50:62:e0:a6:a6:a5:14:0a:5a:c5:60:a4:4c:c2:18: f0:c9:27:b5:06:76:ad:2a:aa:a4:2f:0c:ac:c4:31:2d:5d:64: a5:38:07:d0:bd:c6:6c:28:e1:b5:cd:47:f6:96:c8:e0:52:1d: 7d:64:1d:eb:49:52:0c:ac:16:7a:0a:06:92:dc:40:68:af:5b: dc:80:a7:31:d3:f8:f9:82:c5:6c:09:42:a3:5d:08:ca:1b:89: 68:2b:38:2d:ad:7b:79:a9:36:02:a4:82:82:c4:4d:78:c5:24: d5:bc:63:57:7e:24:d3:de:76:ff:e8:dd:80:21:59:23:47:e8: b9:87:95:d6:46:8f:eb:54:a9:85:81:f8:16:50:7c:30:af:c3: 60:fe:6e:43:6f:f1:7b:92:4c:aa:28:41:6c:e3:fb:91:af:de: 74:df:f7:60 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd5Wxub3zzBlTOZt5HFJu57AbxDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmM3NzBlNzNiMTZhMjk1ZmUzYzA4MDA2MzM2Y2ZkZDg5 NDkwNjAxMTdhNmZkY2NjYzJkMjQ5YTIwMGMxNTA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt68TWVfgWwOD8o7a1GhT3R1UkcH0ygSD9tqOJ7Ynce0Z7 FoHuovH+7uEce9l679LXTA277g1L9x1bnw3nP8SH8eclVMso9z9gF+y9EXoSkrpL gpNZnxiyZvDBKhdJyrsiCJXsjJky3pFnWgak7bzWmOi58JucUfeeVxqI/tUAcpo0 82yOkh21w0v1+xOx2EHvW92ZHgbzjlwseHC1bPFuFCD9fNZNJKHIbncsPFVRh5Vx h1rSHUBfbXTWvYZKM2ugb4/EZPZgJouLHNoZo0ENVGK0t6coXRg6D8gie692V6UR P+N7nQ3SI/kZDtWYvkQAumP/T3iKsSWG5Ri+aLT5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtlt8s9aAxPFfV6t4UcjKTk2gD28wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNTk2NGVkLTk3MjItNGNjMC05OGM0LWYxZDBlYjUyMWY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ZjANBgkqhkiG9w0BAQsFAAOCAQEAfswEVPz9neQucGdnFmHE9sGWcngl wQP34EDOgEXJ0k++RJq8z+citsH9hc7jFJ8EbL2CJT8pZGf8OhxEel6Budc+c0GY Ljq/hebXsasxW17xnK16GvYCbTbRgagSUGLgpqalFApaxWCkTMIY8MkntQZ2rSqq pC8MrMQxLV1kpTgH0L3GbCjhtc1H9pbI4FIdfWQd60lSDKwWegoGktxAaK9b3ICn MdP4+YLFbAlCo10IyhuJaCs4La17eak2AqSCgsRNeMUk1bxjV34k0952/+jdgCFZ I0fouYeV1kaP61SphYH4FlB8MK/DYP5uQ2/xe5JMqihBbOP7ka/edN/3YA== -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:15 2023 by rpki-client on console-fra.rpki-client.org