$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85521f76-acf2-48af-b5b8-89d70851258b.roa File: 85521f76-acf2-48af-b5b8-89d70851258b.roa (raw, json) Hash identifier: VdpkXL9LsxOcJlUcCVv+DJQaJlhs0NNVZpoBcWnHnTw= Subject key identifier: 5B:FB:AA:4E:76:A9:6D:5B:DD:39:D6:DB:4C:74:6E:1C:C2:A4:65:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68F0EECCED6E919EBCA64AA2BA26A1515534A0E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85521f76-acf2-48af-b5b8-89d70851258b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f0:ee:cc:ed:6e:91:9e:bc:a6:4a:a2:ba:26:a1:51:55:34:a0:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c98e02a08b1f3846834c7d7d44252d9fc2a327da6407b29694de7a800b34955f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c0:23:fe:09:47:a4:ac:f1:23:1f:6b:2e:75: be:a2:ba:5d:91:dd:5b:31:77:31:c1:53:82:64:a5: 11:ef:ff:a9:fb:d0:a3:25:24:8b:47:11:bb:bc:a7: 43:3e:d0:97:eb:a4:a4:81:25:6d:52:41:20:77:67: 6f:1b:3e:aa:f9:51:67:a1:ff:c7:31:fa:83:df:33: ab:65:50:e7:bd:e2:30:b7:35:6b:b0:54:95:b6:c4: 8f:d4:bc:fd:c0:69:f5:c1:e9:e7:ae:b2:a5:dd:e7: 10:8b:8b:6c:44:09:48:e8:72:a8:89:26:94:60:8c: 81:e4:15:6c:66:1a:96:19:27:69:da:26:be:9e:a0: 68:e9:89:63:03:b3:48:6c:47:dc:95:8c:bc:80:ef: 49:97:a3:d8:cc:f7:eb:03:d6:3c:0b:c6:9e:c1:d6: b8:f2:f1:64:77:93:19:c0:43:80:e1:8b:a4:41:87: 32:de:4a:3f:53:84:55:a9:51:79:de:50:7d:b7:91: b5:61:25:73:6b:40:38:17:13:5f:cc:ca:c0:36:bb: be:5d:de:39:bd:34:df:83:c7:87:c4:12:e3:4b:2b: 1b:5f:6f:89:df:ed:6d:2a:28:6d:42:e1:35:2a:50: 91:ec:f4:c5:e1:fa:86:ce:9a:07:36:0d:d0:a3:7c: 43:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FB:AA:4E:76:A9:6D:5B:DD:39:D6:DB:4C:74:6E:1C:C2:A4:65:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85521f76-acf2-48af-b5b8-89d70851258b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption aa:48:74:3f:ba:f8:44:cb:c8:84:b2:af:58:c6:d4:f5:de:69: b6:67:13:30:c2:d7:94:42:d3:23:04:00:85:9e:da:f1:9e:e4: 4f:a4:01:2f:74:f6:aa:85:e2:8a:c8:7e:90:9b:17:ed:a6:71: b1:47:88:83:c7:03:a1:05:97:69:41:2e:f1:0f:40:e4:f6:0b: 5c:41:4d:3c:15:45:f5:48:c0:82:89:ad:7b:a2:b4:58:52:ca: 31:5f:5c:51:48:f4:66:6e:89:22:cf:37:16:5b:31:42:4b:11: 15:4e:80:ff:fa:10:9c:31:95:04:1b:94:b6:a5:5d:92:5d:78: fe:18:ce:40:4e:ec:e2:6c:05:06:42:c5:fb:37:c1:f1:cd:9f: 8e:9c:8b:12:d7:6c:44:25:d4:4b:bf:68:55:95:98:eb:e6:3f: d8:38:78:d8:2a:a2:b3:49:ec:a5:e1:1b:a5:97:c0:40:13:04: 1a:18:b8:74:dc:66:52:ea:82:60:fc:ba:0a:20:c0:30:3e:07: 9f:d0:5e:e5:4d:ca:cc:53:85:2d:cf:81:d8:1f:b2:cc:80:66: de:60:d0:27:a6:60:f0:e2:cb:c9:db:bf:d2:32:c4:c6:88:e1: 51:d0:66:0c:72:bb:e7:41:08:bf:21:72:ca:63:1d:15:dd:76: 4d:d9:6b:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaPDuzO1ukZ68pkqiuiahUVU0oOcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOThlMDJhMDhiMWYzODQ2ODM0YzdkN2Q0NDI1MmQ5ZmMy YTMyN2RhNjQwN2IyOTY5NGRlN2E4MDBiMzQ5NTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKwCP+CUekrPEjH2sudb6iul2R3VsxdzHBU4JkpRHv/6n7 0KMlJItHEbu8p0M+0JfrpKSBJW1SQSB3Z28bPqr5UWeh/8cx+oPfM6tlUOe94jC3 NWuwVJW2xI/UvP3AafXB6eeusqXd5xCLi2xECUjocqiJJpRgjIHkFWxmGpYZJ2na Jr6eoGjpiWMDs0hsR9yVjLyA70mXo9jM9+sD1jwLxp7B1rjy8WR3kxnAQ4Dhi6RB hzLeSj9ThFWpUXneUH23kbVhJXNrQDgXE1/MysA2u75d3jm9NN+Dx4fEEuNLKxtf b4nf7W0qKG1C4TUqUJHs9MXh+obOmgc2DdCjfENHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUW/uqTnapbVvdOdbbTHRuHMKkZQ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NTIxZjc2LWFjZjItNDhhZi1iNWI4LTg5ZDcwODUxMjU4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwG4SDANBgkqhkiG9w0BAQsFAAOCAQEAqkh0P7r4RMvIhLKvWMbU9d5ptmcT MMLXlELTIwQAhZ7a8Z7kT6QBL3T2qoXiish+kJsX7aZxsUeIg8cDoQWXaUEu8Q9A 5PYLXEFNPBVF9UjAgomte6K0WFLKMV9cUUj0Zm6JIs83FlsxQksRFU6A//oQnDGV BBuUtqVdkl14/hjOQE7s4mwFBkLF+zfB8c2fjpyLEtdsRCXUS79oVZWY6+Y/2Dh4 2Cqis0nspeEbpZfAQBMEGhi4dNxmUuqCYPy6CiDAMD4Hn9Be5U3KzFOFLc+B2B+y zIBm3mDQJ6Zg8OLLydu/0jLExojhUdBmDHK750EIvyFyymMdFd12TdlrOg== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org