$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa File: 99922d4f-b1fc-43d5-9674-a085ad312500.roa (raw, json) Hash identifier: Rzor3Cjv6FhAORXkZnQDU8MCi53HC1cdBUY9KOqYayE= Subject key identifier: 32:9E:A0:9B:3E:8E:D2:52:8B:37:BB:86:A5:B2:85:BB:81:85:09:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F5F6A78EF2736074DBED19546A0A9281B48243D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5f:6a:78:ef:27:36:07:4d:be:d1:95:46:a0:a9:28:1b:48:24:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=58f4127b51f31f23110ee39cafd23cb32cb51e241c56e5ade68e93fa5985ce6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:20:d2:2b:0f:fa:2a:96:41:12:a5:db:8b:7f: 30:0c:c0:23:78:d7:83:1b:b9:6c:85:2e:27:0b:eb: 5a:22:39:0c:b9:6d:d3:da:7f:06:81:52:8e:52:6f: 32:6d:ad:55:03:73:96:f5:dc:31:07:04:76:82:84: 0e:4f:5f:2e:b4:ef:71:16:4d:93:58:15:6f:c5:48: ed:25:cf:fd:c4:59:d8:64:d3:fb:21:cb:52:89:df: 1c:16:0e:1a:0d:3f:b0:bf:92:e9:9c:f7:28:fb:1a: 74:c7:6e:dd:d5:15:40:41:0a:4d:80:a9:f3:5f:39: 13:53:2f:53:c5:c9:a1:13:ef:1d:e7:aa:68:f2:f7: b9:fb:90:96:fb:24:21:e1:de:ac:b5:2f:c4:55:be: 1d:aa:8d:18:cc:d3:c5:04:3c:8e:9e:82:39:cc:09: c7:6e:6e:30:95:60:8a:df:5f:ca:aa:59:b2:49:5a: 2f:77:af:36:28:11:3c:69:7b:96:f9:0b:07:17:c5: a6:3e:5c:c7:6c:b1:a0:fe:c4:e8:9c:42:b5:75:96: df:bd:fa:9b:3b:b4:75:4c:45:a6:c2:f8:05:7c:0d: e1:e6:05:db:7a:7d:61:9e:b3:4b:d6:05:7d:c1:39: 81:cc:c3:5e:03:2f:31:11:83:b3:e1:80:59:61:a6: 08:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9E:A0:9B:3E:8E:D2:52:8B:37:BB:86:A5:B2:85:BB:81:85:09:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption cb:02:68:e1:fd:61:34:fd:e7:33:19:2c:b9:30:00:63:7b:02: 15:0b:60:28:90:70:8a:76:3c:72:0a:34:30:cc:d9:12:7e:95: 5e:19:57:7a:ef:ce:24:62:92:f2:9d:33:34:5b:52:29:db:90: 5f:02:73:3a:f4:8f:8a:50:52:fc:a5:1b:d9:45:50:96:80:c5: 05:77:30:d5:6c:9f:af:15:ee:7e:f5:2d:4e:5a:11:67:55:40: 5c:4f:1b:2d:c3:64:ce:9b:10:0c:b0:ad:f1:3a:13:d7:56:54: 59:63:9f:84:b8:fe:0a:e6:b5:df:b9:2b:b1:37:8a:ad:2d:ef: 69:f2:0f:72:23:f4:6c:9d:72:cf:8a:2f:74:de:83:49:52:81: 94:ce:67:46:29:09:5a:b9:14:30:bd:81:a8:08:96:67:83:7e: 5e:4d:2b:70:5e:f0:07:08:35:89:12:d0:4f:ba:0d:1c:a1:e1: 57:da:99:06:ca:a0:71:08:32:b8:53:d9:48:79:78:fb:b2:76: 95:c0:4e:9a:48:5c:a8:23:df:4a:9a:43:dd:c9:68:05:92:c2: 44:85:cd:21:90:38:d9:ae:1e:0c:be:37:e2:18:c9:32:cb:27: 02:61:c1:37:1b:db:f6:4c:4f:c4:07:f5:7c:d3:c5:6e:1a:41: a9:dd:59:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf19qeO8nNgdNvtGVRqCpKBtIJD0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGY0MTI3YjUxZjMxZjIzMTEwZWUzOWNhZmQyM2NiMzJj YjUxZTI0MWM1NmU1YWRlNjhlOTNmYTU5ODVjZTZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjINIrD/oqlkESpduLfzAMwCN414MbuWyFLicL61oiOQy5 bdPafwaBUo5SbzJtrVUDc5b13DEHBHaChA5PXy6073EWTZNYFW/FSO0lz/3EWdhk 0/shy1KJ3xwWDhoNP7C/kumc9yj7GnTHbt3VFUBBCk2AqfNfORNTL1PFyaET7x3n qmjy97n7kJb7JCHh3qy1L8RVvh2qjRjM08UEPI6egjnMCcdubjCVYIrfX8qqWbJJ Wi93rzYoETxpe5b5CwcXxaY+XMdssaD+xOicQrV1lt+9+ps7tHVMRabC+AV8DeHm Bdt6fWGes0vWBX3BOYHMw14DLzERg7PhgFlhpgiHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMp6gmz6O0lKLN7uGpbKFu4GFCZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OTIyZDRmLWIxZmMtNDNkNS05Njc0LWEwODVhZDMxMjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBAMsCaOH9YTT95zMZLLkwAGN7AhUL YCiQcIp2PHIKNDDM2RJ+lV4ZV3rvziRikvKdMzRbUinbkF8Cczr0j4pQUvylG9lF UJaAxQV3MNVsn68V7n71LU5aEWdVQFxPGy3DZM6bEAywrfE6E9dWVFljn4S4/grm td+5K7E3iq0t72nyD3Ij9Gydcs+KL3Teg0lSgZTOZ0YpCVq5FDC9gagIlmeDfl5N K3Be8AcINYkS0E+6DRyh4VfamQbKoHEIMrhT2Uh5ePuydpXATppIXKgj30qaQ93J aAWSwkSFzSGQONmuHgy+N+IYyTLLJwJhwTcb2/ZMT8QH9XzTxW4aQandWZU= -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:43 2023 by rpki-client on console-ams.rpki-client.org