$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa File: 844abc15-f137-4ba6-91a9-3db90fdebd62.roa (raw, json) Hash identifier: XrOwT5Ld9E4DjYjlRN3lupBfdUGGkFo/lMzh7MrE+Ec= Subject key identifier: FC:65:35:CA:63:91:9F:0C:51:5B:38:C5:E9:43:E0:E1:15:76:BF:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AF6E97C14323A92B56D001687D568CBFD30B590 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.27.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f6:e9:7c:14:32:3a:92:b5:6d:00:16:87:d5:68:cb:fd:30:b5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0f484f8affac9c134a8d0ad6db9a1df33daa7f92bb0e2e1be8dbf8c561f47d55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:49:0a:df:7c:ca:d7:47:6c:40:1b:7b:2f:b3: e0:fc:fe:d0:ba:34:6f:ba:92:94:31:ac:ee:3e:23: 9d:69:5d:46:75:6a:0a:67:bd:0f:5d:0b:35:8e:16: fd:dd:0e:84:e3:eb:c9:e6:d2:e3:03:91:2d:67:f6: 43:8d:aa:88:65:00:2e:21:49:9b:8e:fd:9f:47:da: 38:ad:b5:8a:44:59:1d:8c:31:d4:a3:6f:12:20:1e: 9d:93:83:21:cb:69:8c:c6:c4:33:a2:a1:ba:6b:02: 6d:1f:2b:b3:10:36:d1:1e:44:5a:ac:0e:42:a5:3b: 4f:b6:a8:93:01:09:2e:74:b3:fa:97:44:2d:c8:58: bb:1f:0c:cc:ab:ec:3e:d6:26:58:f3:db:81:32:8e: a4:7d:64:81:95:30:38:ab:a0:48:5a:22:ab:1b:2c: df:d2:23:35:36:a1:e9:03:07:c7:45:3a:25:ef:f1: 13:e7:f8:ac:d4:ab:06:52:9a:70:85:12:54:e7:78: 6d:c7:40:5f:85:b8:06:3f:a3:e1:dd:53:cf:20:8b: da:3c:66:3b:4b:15:08:ce:0f:85:d5:fa:eb:e4:35: 0c:4f:31:bb:ec:6c:e8:3e:f9:88:66:bc:b0:cb:50: 3d:4d:1e:00:13:85:02:a0:a7:27:8e:3d:e2:66:45: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:65:35:CA:63:91:9F:0C:51:5B:38:C5:E9:43:E0:E1:15:76:BF:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:35:78:a7:ac:3e:81:9e:41:3b:8a:82:57:c7:6b:4a:f9:40: 45:e3:e0:79:9a:40:db:62:f0:36:c6:5b:b1:c7:95:75:90:ef: 49:a7:53:4a:34:0b:24:1e:32:78:dc:1f:dd:8c:45:70:46:b4: 85:e3:d0:1a:c5:40:b5:83:b8:a9:78:cb:f1:85:e2:49:ba:64: 7c:3d:64:29:fd:0d:52:4a:a4:74:c0:55:47:5c:9f:24:cf:54: ed:e7:3e:ea:99:b0:dd:b4:29:a9:01:ec:78:fd:85:29:c5:65: 42:e5:7b:cd:4c:13:1a:0f:74:ba:f1:98:e3:b7:5c:47:27:c8: 7e:cf:0f:d3:63:08:2c:17:ed:ef:db:c4:9d:fa:bc:91:aa:3b: 23:ac:17:7d:a2:6b:01:ea:f7:41:9e:af:95:80:e3:37:9d:d4: e5:c9:e4:ea:8f:28:82:48:91:2e:ed:84:2b:95:c3:3f:5b:75: 8a:6c:07:90:c4:8b:fc:29:57:a6:35:95:94:0f:70:d7:8a:b3: 97:cb:57:c8:94:1b:e8:0c:94:2f:f1:a7:ff:9f:e5:f7:71:9c: 54:16:02:c3:b9:37:e6:54:3e:77:79:90:06:e2:e1:a9:a2:e9: 5f:69:dd:1e:3a:88:9e:e1:e0:05:e7:3e:bf:b8:89:73:c3:8d: 64:ee:8d:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOvbpfBQyOpK1bQAWh9Voy/0wtZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjQ4NGY4YWZmYWM5YzEzNGE4ZDBhZDZkYjlhMWRmMzNk YWE3ZjkyYmIwZTJlMWJlOGRiZjhjNTYxZjQ3ZDU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFSQrffMrXR2xAG3svs+D8/tC6NG+6kpQxrO4+I51pXUZ1 agpnvQ9dCzWOFv3dDoTj68nm0uMDkS1n9kONqohlAC4hSZuO/Z9H2jittYpEWR2M MdSjbxIgHp2TgyHLaYzGxDOiobprAm0fK7MQNtEeRFqsDkKlO0+2qJMBCS50s/qX RC3IWLsfDMyr7D7WJljz24EyjqR9ZIGVMDiroEhaIqsbLN/SIzU2oekDB8dFOiXv 8RPn+KzUqwZSmnCFElTneG3HQF+FuAY/o+HdU88gi9o8ZjtLFQjOD4XV+uvkNQxP MbvsbOg++YhmvLDLUD1NHgAThQKgpyeOPeJmRRdBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/GU1ymORnwxRWzjF6UPg4RV2vxkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NGFiYzE1LWYxMzctNGJhNi05MWE5LTNkYjkwZmRlYmQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQGzANBgkqhkiG9w0BAQsFAAOCAQEAczV4p6w+gZ5BO4qCV8drSvlARePg eZpA22LwNsZbsceVdZDvSadTSjQLJB4yeNwf3YxFcEa0hePQGsVAtYO4qXjL8YXi SbpkfD1kKf0NUkqkdMBVR1yfJM9U7ec+6pmw3bQpqQHseP2FKcVlQuV7zUwTGg90 uvGY47dcRyfIfs8P02MILBft79vEnfq8kao7I6wXfaJrAer3QZ6vlYDjN53U5cnk 6o8ogkiRLu2EK5XDP1t1imwHkMSL/ClXpjWVlA9w14qzl8tXyJQb6AyUL/Gn/5/l 93GcVBYCw7k35lQ+d3mQBuLhqaLpX2ndHjqInuHgBec+v7iJc8ONZO6NFQ== -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:13 2023 by rpki-client on console-ams.rpki-client.org