$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa File: 8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa (raw, json) Hash identifier: bZ1LVQ4lefCJsOQQQpjLCAi0b4ZeRS1o7howedrlFWM= Subject key identifier: 2C:FD:36:47:96:BF:C9:1D:88:6B:B6:EA:55:74:5E:2C:48:FB:AD:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AD1E9DD33BEC1C644C8217C71C53F3BF60F4633 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d1:e9:dd:33:be:c1:c6:44:c8:21:7c:71:c5:3f:3b:f6:0f:46:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7b4ecef5972f1b64b96b5536650c0aa622539ec5bf508da35181c4a2034611e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:d5:df:dc:01:17:62:3b:51:c2:89:07:30: 81:95:f8:1a:37:35:6d:85:f9:65:00:f6:29:f2:b2: 49:c9:af:ee:e3:12:1a:20:e3:ee:1b:b4:3f:77:c0: 5c:23:66:5e:fa:d2:cd:8a:b4:35:96:27:50:62:5c: 95:9b:41:d1:e8:f6:28:ca:fa:39:33:f2:00:a3:fb: 87:0e:f7:f4:28:34:ab:73:aa:7e:a2:53:05:72:31: b2:11:f0:63:d0:62:ad:ca:4e:8d:de:d4:74:67:7d: e3:23:63:48:d1:1c:16:74:68:5d:51:93:40:62:57: fb:a5:c3:2e:a1:05:18:ce:66:5f:3c:39:ca:e9:9c: 8c:6a:d6:df:fb:b7:fb:e4:45:5a:27:e5:78:db:44: d6:f9:6e:c4:80:1a:86:2a:ee:d4:01:57:4a:02:19: bc:0b:ca:60:19:86:08:6e:c0:45:f7:b0:85:43:82: e5:5c:af:cd:bb:28:04:41:22:75:cf:53:26:51:bf: f1:29:42:b3:17:f8:c0:59:83:6b:9a:6b:5a:3f:00: 5d:8b:a2:ce:7e:49:5a:0f:ee:79:3d:d8:62:41:12: 52:89:53:2a:3a:24:6c:6e:ec:21:a5:30:33:a6:00: d9:e3:0d:8f:7b:60:bf:0b:30:b1:46:e0:dd:14:b6: 80:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FD:36:47:96:BF:C9:1D:88:6B:B6:EA:55:74:5E:2C:48:FB:AD:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.145.0/24 Signature Algorithm: sha256WithRSAEncryption 67:37:9e:e9:c1:14:56:c0:83:59:48:e5:d9:ed:05:c4:26:68: 68:9f:cf:bf:aa:73:fd:d3:6b:a3:5f:0c:dc:62:dc:61:e2:f7: 0d:ce:9b:b4:31:3d:56:00:bd:3e:1d:17:18:b2:b8:09:aa:3b: e3:5a:1f:4d:58:06:b1:9a:ce:20:bf:81:70:4a:be:bd:ff:e5: b0:00:d0:01:77:f5:8c:7e:78:db:0a:60:38:08:aa:05:f4:5e: 8e:d0:3d:7c:a9:64:e1:ef:74:2a:16:02:56:64:a6:a3:cf:b8: 1e:ac:d7:2b:b4:1c:2f:34:50:50:fb:60:60:9c:de:57:c1:3f: 75:5b:c0:56:80:fa:cd:df:c4:0c:70:66:b1:01:ff:9d:b7:24: 44:30:6d:b9:4e:10:90:73:72:a4:fd:d0:83:c6:b7:87:95:b8: 18:94:7b:d2:36:98:08:94:00:b6:f8:67:6b:00:6c:c9:a8:9c: 15:40:c0:ba:e1:09:45:9b:b6:fc:9e:61:05:87:e7:9d:53:b3: 04:f1:4f:0d:5e:1e:2f:d6:b0:51:5b:d2:8c:ba:95:b8:57:26: ac:a0:fc:4c:20:44:74:be:c0:f0:c4:6a:b3:eb:95:43:55:71: ca:0d:cd:a5:25:c0:8b:d4:e9:f6:bf:c9:fc:2a:2b:72:56:b3: 58:38:db:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUetHp3TO+wcZEyCF8ccU/O/YPRjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjRlY2VmNTk3MmYxYjY0Yjk2YjU1MzY2NTBjMGFhNjIy NTM5ZWM1YmY1MDhkYTM1MTgxYzRhMjAzNDYxMWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9tNXf3AEXYjtRwokHMIGV+Bo3NW2F+WUA9inysknJr+7j Ehog4+4btD93wFwjZl760s2KtDWWJ1BiXJWbQdHo9ijK+jkz8gCj+4cO9/QoNKtz qn6iUwVyMbIR8GPQYq3KTo3e1HRnfeMjY0jRHBZ0aF1Rk0BiV/ulwy6hBRjOZl88 OcrpnIxq1t/7t/vkRVon5XjbRNb5bsSAGoYq7tQBV0oCGbwLymAZhghuwEX3sIVD guVcr827KARBInXPUyZRv/EpQrMX+MBZg2uaa1o/AF2Los5+SVoP7nk92GJBElKJ Uyo6JGxu7CGlMDOmANnjDY97YL8LMLFG4N0UtoDBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULP02R5a/yR2Ia7bqVXReLEj7rV0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmY2QwOGJkLTg4MDQtNDMxYS05MWIyLTEyNWY1M2FiN2YwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZEwDQYJKoZIhvcNAQELBQADggEBAGc3nunBFFbAg1lI5dntBcQmaGif z7+qc/3Ta6NfDNxi3GHi9w3Om7QxPVYAvT4dFxiyuAmqO+NaH01YBrGaziC/gXBK vr3/5bAA0AF39Yx+eNsKYDgIqgX0Xo7QPXypZOHvdCoWAlZkpqPPuB6s1yu0HC80 UFD7YGCc3lfBP3VbwFaA+s3fxAxwZrEB/523JEQwbblOEJBzcqT90IPGt4eVuBiU e9I2mAiUALb4Z2sAbMmonBVAwLrhCUWbtvyeYQWH551TswTxTw1eHi/WsFFb0oy6 lbhXJqyg/EwgRHS+wPDEarPrlUNVccoNzaUlwIvU6fa/yfwqK3JWs1g423Q= -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:07 2023 by rpki-client on console-ams.rpki-client.org