$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85238f5d-688c-4749-b2d9-f8996afee63a.roa File: 85238f5d-688c-4749-b2d9-f8996afee63a.roa (raw, json) Hash identifier: WOhTL5SlDfnajCNiztmI1+3raLAzd8X9WU/LnI824e0= Subject key identifier: B4:49:F8:A1:05:50:05:95:30:9E:2F:CD:27:A2:93:E2:0C:78:B6:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12225528FBEA18CD1347BF9F33CA7423D20716EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85238f5d-688c-4749-b2d9-f8996afee63a.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:22:55:28:fb:ea:18:cd:13:47:bf:9f:33:ca:74:23:d2:07:16:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3cc31a3f1022c29125d22fcfcbe7b2fb5f7677a4552e6fa3f0de5c9f2a499cb8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b5:4e:ab:b2:87:c3:d8:38:0f:db:45:64:12: 6f:cd:23:c1:9e:08:37:86:7a:53:31:b1:56:21:91: 50:47:66:4a:c9:97:ac:ec:d4:8a:3c:54:c9:38:95: 25:d1:7e:ed:41:93:48:16:ee:95:52:61:4c:55:bd: 28:0a:2c:76:f5:ac:0a:67:65:a5:f2:ca:21:ae:d5: 1e:cd:e7:e6:aa:af:c4:76:08:b5:bc:29:a6:25:86: d0:3f:a7:af:1b:99:2d:31:91:4e:14:6f:1a:9f:dc: f4:85:1b:7f:71:c5:c4:9b:ee:b9:3a:d5:c5:02:7a: cd:bf:f9:89:37:6c:13:2f:1a:90:0a:7a:e9:eb:12: 54:4d:61:91:4a:9d:41:5d:ff:67:b5:b9:54:1d:94: 0e:4e:7a:5e:55:f6:e2:98:eb:e2:82:a3:00:ed:c8: 24:73:33:36:f6:23:d5:e3:df:89:4d:f2:60:46:f3: e1:e3:1f:b5:9e:01:c9:7c:67:75:06:44:27:2d:8d: 77:86:71:7a:31:6b:7d:97:dc:d7:02:60:3b:eb:fa: c8:ba:b1:6d:dc:e4:36:f9:1b:1e:68:41:b4:8c:26: d8:0a:94:7f:d7:fb:83:e7:f4:cc:bb:ea:32:73:d6: d0:8e:ea:e0:2e:b8:a2:ed:87:65:2f:10:1d:a5:54: bb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:49:F8:A1:05:50:05:95:30:9E:2F:CD:27:A2:93:E2:0C:78:B6:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85238f5d-688c-4749-b2d9-f8996afee63a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.12.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:08:80:44:e1:d0:60:d2:69:a4:7e:3c:bf:cb:36:a5:9e:88: e1:eb:91:55:f7:a4:69:1b:8d:e8:f9:94:0f:94:35:91:55:62: 8d:85:66:ba:26:da:57:e0:99:66:7c:c5:4a:8a:9c:6e:5d:09: 6d:29:73:cb:d7:06:54:8e:0c:48:3c:a4:5b:71:68:bc:aa:63: 59:52:a4:19:7b:3e:11:5c:eb:2b:f1:3d:6d:94:cf:c9:0b:b5: 0b:e8:5c:f0:08:0a:e8:74:da:e8:15:12:58:8d:48:89:ad:b6: fc:a5:e2:48:9b:2e:0c:1a:63:6d:9f:1b:b0:bb:6e:62:9e:d6: d0:93:f8:80:cf:bf:68:7e:92:ff:bb:44:a1:54:65:ce:ab:35: e5:31:38:d0:11:76:07:d0:20:aa:07:e4:ea:4e:e8:84:1a:a5: a6:66:2f:26:dd:ea:b5:48:56:c3:8f:04:78:23:82:e9:bd:e1: ab:4c:87:d0:7d:11:7c:cb:b0:50:d4:3d:42:cb:f0:11:21:94: a8:8e:14:c2:63:d5:08:5b:d0:bd:f8:e0:11:85:fd:0a:33:45: 80:02:fa:17:bd:27:7d:5d:e6:8c:52:e4:8a:72:6e:69:e1:6a: c4:ea:1e:ab:b4:33:4a:3a:e5:28:b9:40:25:57:c9:af:6b:79: 16:68:90:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEiJVKPvqGM0TR7+fM8p0I9IHFuwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzY2MzMWEzZjEwMjJjMjkxMjVkMjJmY2ZjYmU3YjJmYjVm NzY3N2E0NTUyZTZmYTNmMGRlNWM5ZjJhNDk5Y2I4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCztU6rsofD2DgP20VkEm/NI8GeCDeGelMxsVYhkVBHZkrJ l6zs1Io8VMk4lSXRfu1Bk0gW7pVSYUxVvSgKLHb1rApnZaXyyiGu1R7N5+aqr8R2 CLW8KaYlhtA/p68bmS0xkU4Ubxqf3PSFG39xxcSb7rk61cUCes2/+Yk3bBMvGpAK eunrElRNYZFKnUFd/2e1uVQdlA5Oel5V9uKY6+KCowDtyCRzMzb2I9Xj34lN8mBG 8+HjH7WeAcl8Z3UGRCctjXeGcXoxa32X3NcCYDvr+si6sW3c5Db5Gx5oQbSMJtgK lH/X+4Pn9My76jJz1tCO6uAuuKLth2UvEB2lVLthAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtEn4oQVQBZUwni/NJ6KT4gx4trgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1MjM4ZjVkLTY4OGMtNDc0OS1iMmQ5LWY4OTk2YWZlZTYzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQDAwwDQYJKoZIhvcNAQELBQADggEBAH0IgETh0GDSaaR+PL/LNqWeiOHr kVX3pGkbjej5lA+UNZFVYo2FZrom2lfgmWZ8xUqKnG5dCW0pc8vXBlSODEg8pFtx aLyqY1lSpBl7PhFc6yvxPW2Uz8kLtQvoXPAICuh02ugVEliNSImttvyl4kibLgwa Y22fG7C7bmKe1tCT+IDPv2h+kv+7RKFUZc6rNeUxONARdgfQIKoH5OpO6IQapaZm Lybd6rVIVsOPBHgjgum94atMh9B9EXzLsFDUPULL8BEhlKiOFMJj1Qhb0L344BGF /QozRYAC+he9J31d5oxS5IpybmnhasTqHqu0M0o65Si5QCVXya9reRZokPE= -----END CERTIFICATE-----Generated at Fri Sep 22 21:27:59 2023 by rpki-client on console-ams.rpki-client.org