$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa File: 91fcb15f-13b7-4590-8345-f94221d7046c.roa (raw, json) Hash identifier: ru1rTl5eUslvJauOYRCq/wuBoZDTeAm1KfvKENoQzV8= Subject key identifier: 98:10:92:EE:48:37:4D:4B:27:1D:DE:87:CD:9E:D1:17:84:30:D7:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65A52E1F07A9A18C5920DE65B3D0274B954614A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.156.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a5:2e:1f:07:a9:a1:8c:59:20:de:65:b3:d0:27:4b:95:46:14:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=29aca0c672dbcf7868df854b3706ab6c072dfefa418ed6d5be42ae73caa61a3c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:dd:2e:bc:2f:a4:f3:aa:d6:87:4e:90:1a: 04:92:ef:38:08:71:19:73:72:0c:e3:7c:2a:93:16: 42:0b:68:bd:47:49:e4:2a:0c:97:16:34:84:73:a8: ec:fe:dd:3a:0e:86:ad:dc:3c:45:23:18:f6:ab:73: c8:5c:6b:46:ff:45:bd:b2:10:33:9d:78:87:b9:4e: 41:0b:7f:37:96:04:de:b8:48:22:2e:c4:b6:bd:33: ed:17:5b:45:d1:e0:ad:10:91:9a:03:12:83:df:a8: d6:1d:db:58:c8:f5:e4:5e:b9:f2:00:62:2f:5c:da: 8a:00:2d:44:4f:8a:26:f0:20:97:cc:42:fe:af:c0: c7:cd:76:75:f4:10:20:4c:c9:b8:bd:e6:bf:b5:b0: 49:35:22:15:67:f2:b0:39:18:ca:21:24:96:fc:3b: 3f:a1:3e:64:c3:47:06:bd:af:2d:57:4e:15:a3:65: 4d:4e:fd:83:73:56:5f:0d:fd:29:b4:b0:74:ba:0f: 7b:e0:8c:b6:fd:aa:31:0a:0f:41:84:60:14:7c:f4: a8:67:55:19:eb:20:15:76:9a:1e:78:0a:c7:67:47: ca:b6:94:24:a2:52:b0:20:ba:95:9b:89:cb:2b:7c: e6:fa:c4:e3:6f:26:0b:80:68:2c:49:73:fb:06:de: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:10:92:EE:48:37:4D:4B:27:1D:DE:87:CD:9E:D1:17:84:30:D7:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.156.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:3e:f3:92:fb:73:1f:50:98:bf:c8:c8:64:89:bd:11:97:9e: a4:cf:e3:6a:45:13:d2:8a:79:c0:66:8a:ea:27:24:a1:14:3e: 99:24:09:a0:8b:cc:8f:1f:6f:6b:60:9e:99:a4:1a:e3:65:09: 12:ce:57:88:06:6d:1a:46:74:ac:26:dd:96:53:c9:54:eb:51: 03:29:73:cc:58:88:49:9a:42:50:63:f5:3b:96:6d:8e:a1:6c: 32:a5:b5:ac:3f:6e:f0:1b:80:89:77:17:b9:c4:a5:06:a2:11: 88:b6:92:b4:f8:06:6e:ce:5a:7d:5d:fb:ea:99:12:fa:86:81: 3a:b5:c7:88:b5:aa:d9:b1:c4:80:ba:1b:5a:ae:f5:d9:9d:e2: 18:bb:9a:95:d4:47:f8:69:92:a4:43:4a:33:dd:2b:51:53:11: fc:be:f3:c2:3d:e9:67:a0:47:17:1f:07:4b:35:e3:f8:97:58: e2:28:67:f1:73:25:d4:1f:63:2b:ce:64:f1:62:8c:f8:91:b1: a8:66:85:2a:cf:b8:b9:2c:ba:3a:11:e8:3b:68:78:0f:a1:e4: 59:c2:e3:8b:b7:f3:0f:11:41:5f:64:28:73:f5:82:2e:65:a5: e0:63:e6:91:4f:56:96:a3:c6:24:d0:3c:72:92:78:58:e3:be: 73:e4:2c:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZaUuHwepoYxZIN5ls9AnS5VGFKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWFjYTBjNjcyZGJjZjc4NjhkZjg1NGIzNzA2YWI2YzA3 MmRmZWZhNDE4ZWQ2ZDViZTQyYWU3M2NhYTYxYTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2SN0uvC+k86rWh06QGgSS7zgIcRlzcgzjfCqTFkILaL1H SeQqDJcWNIRzqOz+3ToOhq3cPEUjGParc8hca0b/Rb2yEDOdeIe5TkELfzeWBN64 SCIuxLa9M+0XW0XR4K0QkZoDEoPfqNYd21jI9eReufIAYi9c2ooALURPiibwIJfM Qv6vwMfNdnX0ECBMybi95r+1sEk1IhVn8rA5GMohJJb8Oz+hPmTDRwa9ry1XThWj ZU1O/YNzVl8N/Sm0sHS6D3vgjLb9qjEKD0GEYBR89KhnVRnrIBV2mh54CsdnR8q2 lCSiUrAgupWbicsrfOb6xONvJguAaCxJc/sG3vhDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmBCS7kg3TUsnHd6HzZ7RF4Qw14MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZmNiMTVmLTEzYjctNDU5MC04MzQ1LWY5NDIyMWQ3MDQ2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nDANBgkqhkiG9w0BAQsFAAOCAQEAEz7zkvtzH1CYv8jIZIm9EZeepM/j akUT0op5wGaK6ickoRQ+mSQJoIvMjx9va2CemaQa42UJEs5XiAZtGkZ0rCbdllPJ VOtRAylzzFiISZpCUGP1O5ZtjqFsMqW1rD9u8BuAiXcXucSlBqIRiLaStPgGbs5a fV376pkS+oaBOrXHiLWq2bHEgLobWq712Z3iGLualdRH+GmSpENKM90rUVMR/L7z wj3pZ6BHFx8HSzXj+JdY4ihn8XMl1B9jK85k8WKM+JGxqGaFKs+4uSy6OhHoO2h4 D6HkWcLji7fzDxFBX2Qoc/WCLmWl4GPmkU9WlqPGJNA8cpJ4WOO+c+QsCg== -----END CERTIFICATE-----Generated at Fri Sep 22 15:34:21 2023 by rpki-client on console-fra.rpki-client.org