$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa File: 92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa (raw, json) Hash identifier: nzYobdBkr/U8GB8sVSWEu0tfoVhRQICEKJnLx9bH4sY= Subject key identifier: C9:36:5B:B2:98:BA:D2:BB:46:B2:AA:91:A4:9D:80:AB:65:18:3B:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72CFDA3733BC15171C2A69340F7FBC9CF91F5CDD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:cf:da:37:33:bc:15:17:1c:2a:69:34:0f:7f:bc:9c:f9:1f:5c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b01103cf7bc7f5af17f28053a09179b851f69ebae2bbe10371a91e13fecd06ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:28:a2:49:8e:65:72:f1:d0:c2:32:ec:a6:5c: af:b9:e7:27:0e:0a:9d:76:08:fa:0e:b8:6f:44:58: e6:dd:b3:ea:be:e3:2f:ad:d5:af:98:85:77:9d:7a: 7e:85:a2:2b:12:60:79:0c:4d:24:9e:a5:14:8e:70: 45:a1:ff:d1:75:21:b4:7e:15:18:ea:20:0d:eb:03: 9b:dd:29:c7:21:80:63:8d:af:5e:dc:c7:59:1a:c5: 9f:77:eb:57:be:42:57:77:d7:c2:b2:5e:7e:c1:d2: 23:04:5e:c2:96:ec:ec:cf:33:69:1f:81:27:7d:94: 61:b7:0e:26:f8:5d:36:9e:e6:1c:8a:e2:29:9f:83: 4a:0a:c0:28:a0:45:50:4c:c9:f4:03:5d:b2:23:9e: bb:3f:7f:8c:bd:ae:45:91:54:57:7a:56:71:b6:a7: 3d:46:98:6b:d8:71:df:4b:bb:92:3a:92:d8:85:ed: 2f:ed:44:c8:3a:90:bc:33:4d:21:5a:ed:a9:61:80: 2b:8a:bf:29:26:39:0c:24:82:c4:46:22:00:c5:c5: d2:77:40:fb:d0:c1:89:00:58:7d:7a:9a:2f:2c:cb: f0:d9:9c:17:6a:29:64:ce:83:20:eb:6a:e0:a6:74: df:57:17:70:5d:37:7a:66:54:cf:41:53:da:86:29: c0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:36:5B:B2:98:BA:D2:BB:46:B2:AA:91:A4:9D:80:AB:65:18:3B:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption b3:7f:cd:0b:cd:2f:9d:bf:08:d5:d4:38:20:32:67:1f:e8:d7: 35:66:cb:9f:7c:17:55:47:31:73:b0:59:df:a7:3d:e7:9d:a4: 14:8d:13:38:7f:cc:a3:0b:e8:54:c8:ca:21:fd:ba:50:93:a6: fb:68:ae:5a:0a:97:45:39:c4:d6:ff:83:92:94:57:db:8c:71: bb:b3:13:11:a1:50:ea:ac:a6:49:36:65:45:f1:7e:a0:47:37: c2:73:09:3e:86:ad:07:bb:9d:bc:d8:ac:0e:af:bc:0d:8b:b5: aa:db:0c:2b:9f:47:08:ee:46:f1:d5:3c:47:f0:4d:39:f7:c9: ee:e6:54:1b:e5:e9:76:51:fe:7a:46:1d:c4:ad:c8:68:2f:6c: 3b:7d:c1:ca:1d:2d:3f:e0:64:25:68:c4:8b:45:79:5c:f6:01: ee:e4:a4:da:ae:24:57:b4:29:a3:d8:ee:cf:1b:9f:21:d5:0c: 4d:86:f0:0a:c3:b7:39:df:0e:31:48:a2:0d:50:a5:1e:b7:64: 55:4d:44:ad:69:b5:9a:96:e6:2b:85:28:a7:da:c0:f7:fb:0d: d0:ae:54:b2:61:87:74:df:f4:a6:58:5f:69:f2:c9:10:e7:41: 31:61:0d:14:a9:e9:b2:e7:e1:01:64:5b:c8:35:e9:02:94:0e: 05:a3:fe:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcs/aNzO8FRccKmk0D3+8nPkfXN0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDExMDNjZjdiYzdmNWFmMTdmMjgwNTNhMDkxNzliODUx ZjY5ZWJhZTJiYmUxMDM3MWE5MWUxM2ZlY2QwNmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuKKJJjmVy8dDCMuymXK+55ycOCp12CPoOuG9EWObds+q+ 4y+t1a+YhXeden6FoisSYHkMTSSepRSOcEWh/9F1IbR+FRjqIA3rA5vdKcchgGON r17cx1kaxZ9361e+Qld318KyXn7B0iMEXsKW7OzPM2kfgSd9lGG3Dib4XTae5hyK 4imfg0oKwCigRVBMyfQDXbIjnrs/f4y9rkWRVFd6VnG2pz1GmGvYcd9Lu5I6ktiF 7S/tRMg6kLwzTSFa7alhgCuKvykmOQwkgsRGIgDFxdJ3QPvQwYkAWH16mi8sy/DZ nBdqKWTOgyDrauCmdN9XF3BdN3pmVM9BU9qGKcAbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyTZbspi60rtGsqqRpJ2Aq2UYO+QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyZTMzODhhLTMzMjItNDRlYi05ZDcwLWE5YWJjN2EyNmZiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBjVjANBgkqhkiG9w0BAQsFAAOCAQEAs3/NC80vnb8I1dQ4IDJnH+jXNWbL n3wXVUcxc7BZ36c9552kFI0TOH/MowvoVMjKIf26UJOm+2iuWgqXRTnE1v+DkpRX 24xxu7MTEaFQ6qymSTZlRfF+oEc3wnMJPoatB7udvNisDq+8DYu1qtsMK59HCO5G 8dU8R/BNOffJ7uZUG+XpdlH+ekYdxK3IaC9sO33Byh0tP+BkJWjEi0V5XPYB7uSk 2q4kV7Qpo9juzxufIdUMTYbwCsO3Od8OMUiiDVClHrdkVU1ErWm1mpbmK4Uop9rA 9/sN0K5UsmGHdN/0plhfafLJEOdBMWENFKnpsufhAWRbyDXpApQOBaP+bw== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:53 2023 by rpki-client on console-fra.rpki-client.org