$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa File: 825fa423-a735-4a65-a380-17d1eb42f29a.roa (raw, json) Hash identifier: s6RCiF4naoTlABjBxqfqtUV5ktYDJfRrvez23K9HRVw= Subject key identifier: DA:8D:FE:EC:8A:DA:F8:E1:07:E2:C0:27:50:37:B6:59:A5:C0:8F:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 026C39629D2A69FA0A39BA0D8EBA2ED3FCBDE7EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6c:39:62:9d:2a:69:fa:0a:39:ba:0d:8e:ba:2e:d3:fc:bd:e7:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=ae5d70436c57b62fd1d9536a2fbd85af3eb4ddf8f17438716724d4f484b54786, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:15:f7:0b:08:c6:1b:20:76:e7:69:d5:6b:85: 33:fd:b6:15:7c:95:e4:6e:ca:7d:51:a3:f4:7f:1c: 5e:f8:57:6f:b8:c5:e8:a1:d1:ae:d1:8a:8d:c0:cd: 1d:11:d2:e7:6a:a3:6d:80:fb:a6:c9:d0:d2:56:b0: 72:02:05:c7:a7:ce:dc:4e:da:bf:65:e6:07:81:ce: b7:38:25:33:7d:78:94:62:f4:7a:3c:5a:de:76:42: a2:d4:58:ca:51:dd:ca:ca:65:0f:29:2e:39:f4:a1: dd:3f:e8:50:9d:87:9c:15:e6:e9:a7:11:39:b8:20: d5:d1:d7:a1:0b:e3:61:5f:34:6f:19:a1:fb:21:3a: 66:8e:37:4a:35:91:94:ea:44:14:ba:10:17:83:02: ad:0f:d0:1f:7f:b7:73:3b:0c:7b:33:81:d9:58:b8: ae:06:9d:d1:d1:ed:3e:e9:12:d9:9a:2e:1b:cb:db: 5e:54:60:90:df:04:6a:3b:30:af:e9:85:09:e0:91: 3a:a7:3e:41:b4:70:b1:e5:6e:5f:e6:a7:bd:35:f4: 77:b2:38:8c:e9:05:8c:7c:f6:36:b1:f9:82:e9:da: 47:56:53:2c:f0:2d:b3:e3:b2:62:ed:c9:b8:d3:a4: 44:25:ce:96:5a:1f:54:01:3f:6b:30:a6:04:36:8b: 45:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:8D:FE:EC:8A:DA:F8:E1:07:E2:C0:27:50:37:B6:59:A5:C0:8F:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption b9:49:7f:fa:95:cc:d5:d4:d0:ac:1c:5d:c5:d1:1a:33:a2:19: 2d:95:b5:64:5f:47:a3:dd:ea:d8:c2:b7:89:59:ed:94:27:cc: d8:6f:7f:e2:a1:34:96:4b:91:14:b2:ab:f0:dc:1d:38:fb:c8: 0a:26:e5:c3:33:ba:b7:27:87:f1:e4:24:f0:17:e8:4a:d0:63: f4:9a:95:b1:b9:13:8e:4a:54:44:83:64:74:c0:da:d0:65:5d: 63:c2:92:8f:3e:ea:42:ae:12:ae:fe:7c:a4:23:f0:19:cb:20: 02:7d:75:7e:a8:4f:42:4b:67:95:cb:6c:0f:6b:7e:6c:27:52: 0a:bf:27:c2:22:5b:aa:e1:2f:2b:c9:dc:88:0d:4f:f9:0f:a9: 86:de:62:e3:ff:3d:05:fd:72:eb:81:6d:6a:59:23:3c:88:8e: 74:4f:fd:b8:05:3b:35:79:94:77:9b:44:58:71:30:1b:3c:e3: 13:f1:38:0f:d6:74:21:b4:f7:2f:88:d1:ca:b1:ad:71:39:4c: 9d:c0:14:a8:e8:42:a7:12:3c:c2:7f:de:ae:1b:da:4c:87:52: 72:36:98:2a:55:c9:91:73:7e:ea:36:d0:06:f8:24:a7:ff:d9: fb:73:46:aa:f8:f3:e4:5f:e0:84:e2:64:81:e4:bb:f6:69:12: e3:25:1a:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAmw5Yp0qafoKOboNjrou0/y95+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTVkNzA0MzZjNTdiNjJmZDFkOTUzNmEyZmJkODVhZjNl YjRkZGY4ZjE3NDM4NzE2NzI0ZDRmNDg0YjU0Nzg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsFfcLCMYbIHbnadVrhTP9thV8leRuyn1Ro/R/HF74V2+4 xeih0a7Rio3AzR0R0udqo22A+6bJ0NJWsHICBcenztxO2r9l5geBzrc4JTN9eJRi 9Ho8Wt52QqLUWMpR3crKZQ8pLjn0od0/6FCdh5wV5umnETm4INXR16EL42FfNG8Z ofshOmaON0o1kZTqRBS6EBeDAq0P0B9/t3M7DHszgdlYuK4GndHR7T7pEtmaLhvL 215UYJDfBGo7MK/phQngkTqnPkG0cLHlbl/mp7019HeyOIzpBYx89jax+YLp2kdW UyzwLbPjsmLtybjTpEQlzpZaH1QBP2swpgQ2i0XzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2o3+7Ira+OEH4sAnUDe2WaXAjxowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyNWZhNDIzLWE3MzUtNGE2NS1hMzgwLTE3ZDFlYjQyZjI5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdM3wAwDQYJKoZIhvcNAQELBQADggEBALlJf/qVzNXU0KwcXcXRGjOiGS2V tWRfR6Pd6tjCt4lZ7ZQnzNhvf+KhNJZLkRSyq/DcHTj7yAom5cMzurcnh/HkJPAX 6ErQY/SalbG5E45KVESDZHTA2tBlXWPCko8+6kKuEq7+fKQj8BnLIAJ9dX6oT0JL Z5XLbA9rfmwnUgq/J8IiW6rhLyvJ3IgNT/kPqYbeYuP/PQX9cuuBbWpZIzyIjnRP /bgFOzV5lHebRFhxMBs84xPxOA/WdCG09y+I0cqxrXE5TJ3AFKjoQqcSPMJ/3q4b 2kyHUnI2mCpVyZFzfuo20Ab4JKf/2ftzRqr48+Rf4ITiZIHku/ZpEuMlGiQ= -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:06 2023 by rpki-client on console-fra.rpki-client.org