$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90abd194-eb65-4f55-bf71-988fd6b0cb8a.roa File: 90abd194-eb65-4f55-bf71-988fd6b0cb8a.roa (raw, json) Hash identifier: Sim1aUXTzZEEiUmdQJ7LDFXQTEatGIVHa2OXASTW3gM= Subject key identifier: 54:25:0A:6C:BC:21:33:43:B7:70:8D:60:AE:22:2D:DC:7C:F0:BC:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 605B4E4E2BBCB6CDB37B1192333DE277E17E0555 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90abd194-eb65-4f55-bf71-988fd6b0cb8a.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5b:4e:4e:2b:bc:b6:cd:b3:7b:11:92:33:3d:e2:77:e1:7e:05:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=81fb37d2529c5b3853125fcc1fee85e1e5385c8a7b382361f22768bcc8edf2ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:86:b6:72:d2:6b:94:4f:af:7f:ce:23:af: 96:66:63:3e:33:42:93:34:09:3f:5a:ae:10:64:c5: dd:12:5d:0b:60:67:13:bf:99:d9:eb:af:90:a0:b7: fe:1b:d3:fb:3b:3c:79:9c:f2:39:47:53:7e:65:50: 53:b3:86:94:2d:dc:96:0f:80:71:d8:ed:e6:5a:3f: ac:42:ff:c2:cb:e5:db:66:4a:42:41:10:2a:37:11: 14:41:b1:8f:cc:11:08:2a:da:35:10:45:87:5e:54: 79:b9:f0:db:1e:bb:0a:2c:52:50:7e:9d:e9:5c:b4: 34:99:1d:1e:43:15:83:4e:15:63:30:f0:33:2f:33: 7b:e7:f2:6c:cc:91:45:3d:2d:8a:a8:53:9b:bc:e7: d3:bd:9f:26:44:e7:5c:e2:88:6c:36:d6:49:d1:e5: e0:c2:d3:78:0a:f8:97:f1:3b:e3:d3:81:84:2e:2b: 91:af:a3:c3:3b:cd:b2:ad:cb:1d:c3:1b:0b:27:cb: 77:eb:b7:b8:5a:1f:81:4e:ac:c5:5b:09:8d:77:ad: 96:35:79:f7:0c:72:7a:67:90:cc:5f:db:84:a8:09: d7:ee:dd:57:68:6b:4f:35:85:e9:dc:1d:5e:72:0f: 57:18:73:72:62:32:3b:9b:73:8e:8b:d0:34:8e:48: 1f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:25:0A:6C:BC:21:33:43:B7:70:8D:60:AE:22:2D:DC:7C:F0:BC:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90abd194-eb65-4f55-bf71-988fd6b0cb8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.0.0/14 Signature Algorithm: sha256WithRSAEncryption 5b:e6:41:19:8a:97:63:48:78:9a:df:2d:6b:d4:fe:7b:82:48: 12:69:95:70:bd:3a:29:4b:79:7b:f7:5b:7d:c3:4e:b1:47:2b: 21:c0:a4:8d:93:0b:58:61:cd:96:6e:26:7d:75:57:da:a0:cf: 97:2a:dc:0d:46:83:b7:e3:5e:2a:aa:67:a3:52:53:e7:d2:53: 08:e6:95:67:31:69:e4:14:83:f2:ff:41:30:ac:be:e4:3d:a6: 42:65:41:7d:4b:82:cf:c9:e5:e4:cc:2f:39:10:ed:a1:6b:58: 86:e5:91:3d:3b:ae:c0:72:70:80:eb:3b:98:98:e4:f2:23:35: d9:37:02:be:3e:07:ef:b3:6a:25:f5:06:d9:be:e4:de:a0:62: 84:82:26:9e:42:d6:bc:b5:ff:75:22:c3:e1:dd:ef:08:df:cf: 9f:db:82:0d:61:82:36:1a:93:d6:6e:f7:c7:74:60:36:69:43: c5:76:45:d4:d4:37:71:c2:6c:fb:66:ce:ef:50:74:e7:0f:d7: 7d:72:bc:ca:84:f3:5a:03:94:c4:10:38:76:e2:6a:ec:85:1a: 39:dd:9f:5b:02:1f:e4:dd:99:ce:81:bb:6f:8b:c3:f9:0e:a4: 32:7d:f0:22:00:77:e9:ef:64:84:a9:5c:cf:b7:59:0d:d8:73: 23:a7:3c:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYFtOTiu8ts2zexGSMz3id+F+BVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWZiMzdkMjUyOWM1YjM4NTMxMjVmY2MxZmVlODVlMWU1 Mzg1YzhhN2IzODIzNjFmMjI3NjhiY2M4ZWRmMmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKGIa2ctJrlE+vf84jr5ZmYz4zQpM0CT9arhBkxd0SXQtg ZxO/mdnrr5Cgt/4b0/s7PHmc8jlHU35lUFOzhpQt3JYPgHHY7eZaP6xC/8LL5dtm SkJBECo3ERRBsY/MEQgq2jUQRYdeVHm58NseuwosUlB+nelctDSZHR5DFYNOFWMw 8DMvM3vn8mzMkUU9LYqoU5u859O9nyZE51ziiGw21knR5eDC03gK+JfxO+PTgYQu K5Gvo8M7zbKtyx3DGwsny3frt7haH4FOrMVbCY13rZY1efcMcnpnkMxf24SoCdfu 3Vdoa081hencHV5yD1cYc3JiMjubc46L0DSOSB9LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVCUKbLwhM0O3cI1griIt3HzwvCkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwYWJkMTk0LWViNjUtNGY1NS1iZjcxLTk4OGZkNmIwY2I4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIosDANBgkqhkiG9w0BAQsFAAOCAQEAW+ZBGYqXY0h4mt8ta9T+e4JIEmmV cL06KUt5e/dbfcNOsUcrIcCkjZMLWGHNlm4mfXVX2qDPlyrcDUaDt+NeKqpno1JT 59JTCOaVZzFp5BSD8v9BMKy+5D2mQmVBfUuCz8nl5MwvORDtoWtYhuWRPTuuwHJw gOs7mJjk8iM12TcCvj4H77NqJfUG2b7k3qBihIImnkLWvLX/dSLD4d3vCN/Pn9uC DWGCNhqT1m73x3RgNmlDxXZF1NQ3ccJs+2bO71B05w/XfXK8yoTzWgOUxBA4duJq 7IUaOd2fWwIf5N2ZzoG7b4vD+Q6kMn3wIgB36e9khKlcz7dZDdhzI6c8/A== -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:01 2023 by rpki-client on console-fra.rpki-client.org