$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa File: 8c1a18f2-6db7-414e-af5f-943e93d34d77.roa (raw, json) Hash identifier: YDBOwTPwR95XXRvBubDjmL/6HSL8q1UWkuS/9BWWYnY= Subject key identifier: FC:02:50:30:B1:C0:14:B3:94:D1:E2:A4:C8:6D:E8:78:35:FB:82:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C9E3571F17C914A98A642ADECF2282A5CBFB08D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 151.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:9e:35:71:f1:7c:91:4a:98:a6:42:ad:ec:f2:28:2a:5c:bf:b0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1fdf724003274c68feadd6e09459bd7f4f4e4db92c08aaf3d54357d48963d500, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e2:bd:52:bc:f4:28:97:ed:2a:1a:b3:4e:8c: d7:7d:b2:53:e4:c8:4c:a0:d2:db:0c:f0:05:70:ca: 0b:13:ba:53:ec:f6:04:89:ac:32:b2:ff:79:7c:a8: f9:6c:4e:ac:f1:86:d1:c5:4f:08:6b:4c:81:c4:2e: 9e:f7:f3:d2:53:58:c9:98:21:1b:5c:3c:67:da:d4: d0:50:6b:3a:98:a4:51:d3:32:19:af:3a:1f:15:9c: 27:62:4d:84:7d:fe:8e:64:ab:99:da:8a:fc:d0:21: 62:73:40:2f:cc:c3:70:f3:e4:26:99:89:ca:4f:72: f8:00:8d:ed:48:99:49:e1:5f:b4:19:8a:16:bd:5a: 47:51:f7:43:e5:bd:cc:d5:6a:75:58:63:14:9e:0f: a1:4a:a3:1f:93:03:77:92:13:06:5c:12:f1:11:41: cb:d7:10:e3:b3:75:33:7b:42:56:e1:5c:ea:42:e9: 91:03:c6:da:6f:b0:ba:9c:b6:ba:22:2b:31:1f:33: d8:56:da:66:dc:e6:92:55:79:06:6f:bb:76:ac:84: 81:fc:cc:e3:f5:e8:ad:8f:1e:ac:13:95:4f:08:20: 4c:f2:42:d0:a9:18:f2:c7:32:ce:c0:58:db:6b:80: 2d:c8:7f:27:8e:63:8d:04:65:24:5a:4b:a2:04:46: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:02:50:30:B1:C0:14:B3:94:D1:E2:A4:C8:6D:E8:78:35:FB:82:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:85:5d:41:93:b8:94:e5:f5:3d:5a:5f:92:4c:c9:b2:76:0c: 13:47:35:01:cd:bd:2a:93:c0:d7:12:a7:7a:92:1a:1a:67:5b: 1e:36:97:8d:23:44:11:46:74:44:50:ac:ea:a0:6d:46:d1:dc: dc:f6:ef:f4:ec:6a:ff:0e:08:61:fd:46:39:d3:70:23:8b:92: 83:18:e1:72:c8:9c:ac:69:50:9f:df:45:6e:a8:32:50:f2:be: a6:7a:3e:0e:e5:5c:57:9a:d2:72:c3:b3:48:8f:e2:8d:43:2a: 09:ea:e9:b9:c4:56:82:9c:7b:c3:30:a7:b6:74:da:59:f6:aa: 43:72:3f:56:d8:a1:2d:80:aa:7c:23:92:0f:5d:03:d3:da:3b: e3:64:02:30:80:58:00:58:94:01:2b:17:bf:2a:6e:61:bc:35: d7:bf:24:7b:10:df:d9:67:f2:8b:9c:2e:b4:df:e3:20:fe:36: 00:40:51:a3:4e:42:81:14:25:d7:1e:2e:d1:05:7f:6d:22:3f: 0a:2a:d1:14:ea:b5:76:64:9c:f9:67:c7:57:03:47:48:5a:0e: a4:cd:4f:8b:8d:17:18:91:7b:f6:77:27:e2:5f:c3:94:7d:ac: 86:f4:39:2d:63:ae:8b:43:a0:49:a2:91:32:27:5d:84:ad:f3: 04:b5:41:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTJ41cfF8kUqYpkKt7PIoKly/sI0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmRmNzI0MDAzMjc0YzY4ZmVhZGQ2ZTA5NDU5YmQ3ZjRm NGU0ZGI5MmMwOGFhZjNkNTQzNTdkNDg5NjNkNTAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG4r1SvPQol+0qGrNOjNd9slPkyEyg0tsM8AVwygsTulPs 9gSJrDKy/3l8qPlsTqzxhtHFTwhrTIHELp7389JTWMmYIRtcPGfa1NBQazqYpFHT MhmvOh8VnCdiTYR9/o5kq5naivzQIWJzQC/Mw3Dz5CaZicpPcvgAje1ImUnhX7QZ iha9WkdR90PlvczVanVYYxSeD6FKox+TA3eSEwZcEvERQcvXEOOzdTN7QlbhXOpC 6ZEDxtpvsLqctroiKzEfM9hW2mbc5pJVeQZvu3ashIH8zOP16K2PHqwTlU8IIEzy QtCpGPLHMs7AWNtrgC3IfyeOY40EZSRaS6IERsEDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/AJQMLHAFLOU0eKkyG3oeDX7gqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMWExOGYyLTZkYjctNDE0ZS1hZjVmLTk0M2U5M2QzNGQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXhjANBgkqhkiG9w0BAQsFAAOCAQEAEIVdQZO4lOX1PVpfkkzJsnYME0c1 Ac29KpPA1xKnepIaGmdbHjaXjSNEEUZ0RFCs6qBtRtHc3Pbv9Oxq/w4IYf1GOdNw I4uSgxjhcsicrGlQn99FbqgyUPK+pno+DuVcV5rScsOzSI/ijUMqCerpucRWgpx7 wzCntnTaWfaqQ3I/VtihLYCqfCOSD10D09o742QCMIBYAFiUASsXvypuYbw1178k exDf2Wfyi5wutN/jIP42AEBRo05CgRQl1x4u0QV/bSI/CirRFOq1dmSc+WfHVwNH SFoOpM1Pi40XGJF79ncn4l/DlH2shvQ5LWOui0OgSaKRMiddhK3zBLVBbQ== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:43 2023 by rpki-client on console-ams.rpki-client.org