$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa File: 8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa (raw, json) Hash identifier: H+T57qtx6e/uNPvZEk8bWYuqprIPMplTHuJ4aTUsOWA= Subject key identifier: A2:FD:1D:1B:16:4A:CC:84:D6:69:59:20:41:AE:03:19:4D:33:A8:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03829808D7248A8B2212974C00B73002923AF973 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:82:98:08:d7:24:8a:8b:22:12:97:4c:00:b7:30:02:92:3a:f9:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=250b8385b8d8344f012ea8c72d385b09fc234cdfa1dfe85e254870e5522df48c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1a:92:6b:52:0e:b1:27:86:79:ec:c8:4c:66: 67:76:04:50:49:b8:71:c7:15:50:e2:64:68:35:8e: c0:6d:dc:7f:b0:1d:a0:31:0c:e8:e6:eb:df:de:79: fe:31:56:10:3d:de:e9:0a:9a:97:3b:64:9e:c6:45: f9:92:e7:d9:3c:a7:aa:93:b2:05:76:34:97:8e:86: 71:48:31:ec:ca:f4:78:7b:44:36:1f:e9:04:3b:8f: 13:16:4c:f9:9f:00:b4:cf:96:d3:c6:39:f1:2f:ba: d9:2c:1e:7b:68:36:24:d8:17:84:a8:b3:88:f7:39: 15:d2:62:1b:3c:ca:ff:be:b4:79:95:59:6a:09:8d: 09:ed:7b:30:ef:9c:ff:75:1c:7e:8f:e9:c4:b5:22: 32:b6:bf:09:79:84:88:c5:1c:6e:5d:22:8e:a9:45: aa:f1:18:1f:7d:9a:6c:fe:95:79:8a:4d:55:c4:fe: 5c:9a:85:e9:f0:7f:f8:69:75:a7:b3:12:da:e2:6f: 7d:b1:11:c5:22:de:57:d4:9e:db:ae:8d:16:9b:a4: 45:e0:fe:16:0c:5f:d5:e0:3d:3e:67:af:a3:6e:d2: 3b:fd:fb:7c:9f:0b:b7:38:38:c9:8f:91:82:fc:99: 59:80:00:8b:3e:8f:c7:04:c8:ee:7c:ba:d0:96:02: 46:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FD:1D:1B:16:4A:CC:84:D6:69:59:20:41:AE:03:19:4D:33:A8:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:0c:5e:51:80:b6:2c:0d:f7:d5:65:ef:ec:cd:43:d4:13:6b: 63:c3:1a:e1:ab:53:b8:de:60:31:32:d5:27:b3:31:bd:9a:14: 2b:dc:97:c2:8c:80:be:d9:e1:80:d9:3f:78:63:a1:a5:ed:12: 30:ef:d9:d0:9f:3a:f7:37:e9:e8:6d:d6:4a:34:58:48:39:06: 31:e0:6d:72:6e:0e:52:96:ff:fb:08:3d:c2:e8:10:14:02:97: 39:1a:ad:03:03:a1:ba:67:02:e3:1e:1d:fe:6c:2c:0a:c7:6f: ed:7e:f5:61:6e:75:55:c8:08:8b:e0:23:d0:0c:70:0f:f7:06: 41:80:bc:1b:22:93:ba:8e:5d:f8:2c:a2:99:b4:63:88:79:fb: be:ec:5c:4d:5b:ee:da:b1:f6:18:b2:4e:55:4e:dd:c7:be:bf: 78:93:c9:bd:18:76:33:5b:4d:c7:06:5f:3c:52:3a:50:7d:0f: 48:bd:d6:dc:81:aa:56:10:d6:c4:b9:d8:37:87:2c:3c:fc:6e: 48:38:f9:72:61:07:5f:ec:48:e3:67:2a:aa:f1:e7:fa:1f:c2: 7b:2b:85:b6:e5:b2:11:67:02:85:ad:0b:af:11:c1:c5:2b:25: e4:b5:bc:c1:5b:ba:82:03:8c:fe:69:45:a8:71:e6:17:2b:c4: 67:97:5d:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA4KYCNckiosiEpdMALcwApI6+XMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTBiODM4NWI4ZDgzNDRmMDEyZWE4YzcyZDM4NWIwOWZj MjM0Y2RmYTFkZmU4NWUyNTQ4NzBlNTUyMmRmNDhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCGpJrUg6xJ4Z57MhMZmd2BFBJuHHHFVDiZGg1jsBt3H+w HaAxDOjm69/eef4xVhA93ukKmpc7ZJ7GRfmS59k8p6qTsgV2NJeOhnFIMezK9Hh7 RDYf6QQ7jxMWTPmfALTPltPGOfEvutksHntoNiTYF4Sos4j3ORXSYhs8yv++tHmV WWoJjQntezDvnP91HH6P6cS1IjK2vwl5hIjFHG5dIo6pRarxGB99mmz+lXmKTVXE /lyahenwf/hpdaezEtrib32xEcUi3lfUntuujRabpEXg/hYMX9XgPT5nr6Nu0jv9 +3yfC7c4OMmPkYL8mVmAAIs+j8cEyO58utCWAkbrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUov0dGxZKzITWaVkgQa4DGU0zqJYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmNjFjNWEzLTAzYjQtNDk1My1hNWUxLWVhMDk3NWQxYjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ijANBgkqhkiG9w0BAQsFAAOCAQEANwxeUYC2LA331WXv7M1D1BNrY8Ma 4atTuN5gMTLVJ7MxvZoUK9yXwoyAvtnhgNk/eGOhpe0SMO/Z0J869zfp6G3WSjRY SDkGMeBtcm4OUpb/+wg9wugQFAKXORqtAwOhumcC4x4d/mwsCsdv7X71YW51VcgI i+Aj0AxwD/cGQYC8GyKTuo5d+CyimbRjiHn7vuxcTVvu2rH2GLJOVU7dx76/eJPJ vRh2M1tNxwZfPFI6UH0PSL3W3IGqVhDWxLnYN4csPPxuSDj5cmEHX+xI42cqqvHn +h/CeyuFtuWyEWcCha0LrxHBxSsl5LW8wVu6ggOM/mlFqHHmFyvEZ5ddTg== -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:13 2023 by rpki-client on console-ams.rpki-client.org