$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bd09f21-a2dd-4485-9917-18c02bb6ae14.roa File: 8bd09f21-a2dd-4485-9917-18c02bb6ae14.roa (raw, json) Hash identifier: Xnn5e3eM6Fl9z7mtUm0ViQdGTsi1Kdc7BtwZdngwYFM= Subject key identifier: 1E:6B:F7:5A:A8:A5:63:40:83:71:F3:6E:09:89:B4:E4:96:84:88:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03CAA6BBC23CA6905448445A62AB40C8DB3271BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bd09f21-a2dd-4485-9917-18c02bb6ae14.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.117.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ca:a6:bb:c2:3c:a6:90:54:48:44:5a:62:ab:40:c8:db:32:71:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=50e3441e73b76bae89c3342a21bd5aad72509c7ee8b1488aeb5bf37e6194b8f5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ed:7d:5a:64:25:10:b4:fc:1d:d2:88:92:84: de:de:f3:fc:e4:20:47:b1:68:e9:aa:b1:de:5d:dc: 50:6f:8f:ba:68:bd:68:64:ad:31:90:f0:93:97:de: 4e:83:0b:dc:08:f2:d0:2e:95:9d:43:59:02:c4:11: fd:4b:d2:89:18:9b:2e:01:e2:67:45:4a:e8:b5:1d: dd:53:3d:6a:37:55:42:1c:df:82:b4:1c:22:36:f8: 1c:0d:bd:fb:9f:ea:54:e7:f0:68:8e:ac:76:ce:18: 9f:6b:c8:ce:87:07:66:3d:fe:dd:f6:9c:12:e1:86: 02:e9:b9:b5:ad:2d:1e:32:38:3a:5d:a6:8a:eb:73: c8:0d:e4:c6:81:39:82:51:1f:71:50:78:91:4b:4f: b1:e0:29:1b:f5:cb:4e:59:4f:ad:7f:09:74:10:73: 29:54:56:3d:59:94:0d:ee:9f:06:bb:d3:d2:db:f0: 42:df:69:8a:97:77:91:b0:53:a5:7d:45:17:1c:95: 2e:e1:8c:80:36:d7:fb:ea:4d:d9:e3:8b:80:5b:55: a2:34:fe:a9:fb:b4:cf:7f:41:30:18:53:10:37:15: d6:72:31:bf:fb:35:7b:e6:97:a9:a2:c8:8e:75:25: 5b:ec:22:1f:2b:89:5a:31:1b:ab:b4:67:bb:bf:e3: b0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:F7:5A:A8:A5:63:40:83:71:F3:6E:09:89:B4:E4:96:84:88:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bd09f21-a2dd-4485-9917-18c02bb6ae14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.117.0.0/16 Signature Algorithm: sha256WithRSAEncryption d7:6d:29:05:99:f1:1d:1b:b5:e5:bd:7e:fd:52:46:de:38:cb: f5:28:f3:a7:f8:2f:f8:c4:5c:76:50:90:cd:c1:09:02:3a:a8: 62:2e:35:68:13:f5:1c:c2:db:3d:ff:63:2c:ff:5b:0f:51:f0: 15:a1:ff:27:89:2f:d5:9b:21:82:2e:18:a9:7d:48:d4:89:ad: 77:22:31:77:ba:37:89:bc:97:3f:79:bd:b3:70:f1:20:47:f5: 53:7a:48:11:5e:25:9d:e2:02:b7:0b:a8:36:c6:12:51:fe:27: 75:f1:b0:15:c0:e3:5d:eb:46:a4:49:32:26:db:bd:3d:4a:d2: ca:f0:9d:d1:0c:f3:7a:b4:f9:33:f0:f6:45:c3:82:96:6b:e4: 27:ef:76:d2:2e:f7:58:b2:fb:4f:1b:59:30:61:a5:42:bd:db: 3c:b1:3b:50:2c:02:4c:32:d2:e8:fa:74:c6:52:70:91:c0:a8: 52:1a:11:5e:11:df:e1:5e:fe:af:eb:80:4d:a2:39:e5:65:7b: 4e:54:1d:48:4e:3d:11:23:0a:66:c6:a7:79:e3:cf:90:5d:34: ac:4a:0d:d3:97:0a:98:ca:e7:f6:ae:4c:53:a5:0a:e6:3c:e6: 9c:ac:09:a2:96:9e:25:ca:90:bd:15:81:48:17:0d:64:bb:ad: f4:fa:d0:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA8qmu8I8ppBUSERaYqtAyNsycb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGUzNDQxZTczYjc2YmFlODljMzM0MmEyMWJkNWFhZDcy NTA5YzdlZThiMTQ4OGFlYjViZjM3ZTYxOTRiOGY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv7X1aZCUQtPwd0oiShN7e8/zkIEexaOmqsd5d3FBvj7po vWhkrTGQ8JOX3k6DC9wI8tAulZ1DWQLEEf1L0okYmy4B4mdFSui1Hd1TPWo3VUIc 34K0HCI2+BwNvfuf6lTn8GiOrHbOGJ9ryM6HB2Y9/t32nBLhhgLpubWtLR4yODpd porrc8gN5MaBOYJRH3FQeJFLT7HgKRv1y05ZT61/CXQQcylUVj1ZlA3unwa709Lb 8ELfaYqXd5GwU6V9RRcclS7hjIA21/vqTdnji4BbVaI0/qn7tM9/QTAYUxA3FdZy Mb/7NXvml6miyI51JVvsIh8riVoxG6u0Z7u/47A/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHmv3WqilY0CDcfNuCYm05JaEiDgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiZDA5ZjIxLWEyZGQtNDQ4NS05OTE3LTE4YzAyYmI2YWUxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2dTANBgkqhkiG9w0BAQsFAAOCAQEA120pBZnxHRu15b1+/VJG3jjL9Sjz p/gv+MRcdlCQzcEJAjqoYi41aBP1HMLbPf9jLP9bD1HwFaH/J4kv1Zshgi4YqX1I 1ImtdyIxd7o3ibyXP3m9s3DxIEf1U3pIEV4lneICtwuoNsYSUf4ndfGwFcDjXetG pEkyJtu9PUrSyvCd0QzzerT5M/D2RcOClmvkJ+920i73WLL7TxtZMGGlQr3bPLE7 UCwCTDLS6Pp0xlJwkcCoUhoRXhHf4V7+r+uATaI55WV7TlQdSE49ESMKZsaneePP kF00rEoN05cKmMrn9q5MU6UK5jzmnKwJopaeJcqQvRWBSBcNZLut9PrQsA== -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:15 2023 by rpki-client on console-fra.rpki-client.org