$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa File: 9a757271-95e4-47fb-a54a-e2edf0864ceb.roa (raw, json) Hash identifier: nxISX2JqaosbV6HWJXxLdPGbk6FO3FNrGHXEvkCnqz0= Subject key identifier: 93:F0:F4:84:44:55:11:9E:AA:84:B0:0F:EB:B9:D8:F9:7F:B0:2B:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49201375BA2A7A739644AF274E41107D6DC170F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:20:13:75:ba:2a:7a:73:96:44:af:27:4e:41:10:7d:6d:c1:70:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=916458e67a6ffc450fb29187f6d77d864b17da04843881963b39804a1f5ae5a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:02:87:60:02:5c:45:74:17:5f:60:8f:68:43: 8d:6f:93:9c:4e:78:8f:7c:b3:58:64:21:ec:a8:0d: 15:7e:0a:95:c1:b6:ee:9e:c2:9f:7f:27:15:15:c7: fa:e3:10:4c:d0:61:ec:38:73:68:3a:c1:a8:4e:d3: 5d:52:23:7f:08:e8:31:f7:9c:f3:8d:7f:c6:86:b2: e0:88:a2:a8:e2:8a:3a:d0:bb:43:18:c5:ee:51:3e: 16:1c:a4:d8:68:86:c4:a3:ab:56:0c:b3:e8:f0:dc: c8:8d:c9:fb:58:9e:5c:63:65:3b:41:0c:09:52:3b: db:55:23:b2:f6:b4:cf:94:67:8c:ff:c2:f2:e0:71: ad:72:2a:4b:f6:fb:a1:3e:ed:94:84:14:1d:0b:7f: f5:81:d5:08:d9:d3:c0:9a:5f:a6:40:32:8e:7d:f9: 24:7a:da:65:ff:ce:da:b2:c3:b5:1b:78:ab:c4:8c: b7:94:6d:cd:15:66:ea:6d:b7:3d:b4:10:9d:a7:b9: de:79:34:ad:67:c5:6d:03:e4:69:fe:59:96:44:ad: f5:b2:b5:3f:c8:f9:1a:67:d1:02:98:47:99:f0:75: 6b:be:aa:93:61:2d:76:ed:25:b0:b1:2a:a9:dd:a8: bd:fc:bd:3a:50:50:cd:0d:4a:bb:e2:e8:30:2f:66: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F0:F4:84:44:55:11:9E:AA:84:B0:0F:EB:B9:D8:F9:7F:B0:2B:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a757271-95e4-47fb-a54a-e2edf0864ceb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.0.0/18 Signature Algorithm: sha256WithRSAEncryption 13:17:b4:0d:ef:ee:24:1d:eb:d9:76:dc:6e:e5:fc:9e:bb:59: a4:d2:0f:3b:d9:b0:fd:97:44:b1:91:7d:4c:a2:03:48:e2:e9: f8:87:e3:18:42:87:79:5f:d7:2f:ef:6f:0a:53:d3:c6:ea:d5: 52:7f:a5:97:72:64:d2:d7:b9:db:3c:51:89:3b:db:49:3f:9c: 2c:f4:7c:ed:30:f0:23:a5:3d:07:78:cb:58:d3:ad:bc:bc:c1: 9d:f5:5f:00:dc:7b:91:06:d5:1d:ba:73:32:c8:26:e1:43:19: 32:e4:bc:c2:b9:45:07:ec:df:5a:bf:a2:f0:49:23:b8:63:5e: c8:3f:4c:ff:eb:17:0d:c2:27:23:19:be:23:cd:43:0d:57:e2: 4d:fb:f8:56:4d:0d:29:aa:47:df:e2:10:c7:b8:49:d5:cb:08: c9:58:8c:f0:7b:d7:9d:24:8c:49:07:17:d6:30:46:ab:ce:95: dc:66:3d:47:3f:83:f5:5c:65:db:fb:eb:f3:63:36:8a:9a:7e: 86:12:61:f8:97:81:74:f0:ce:0b:ef:65:24:b6:e8:6e:f3:34: 39:04:e9:f9:31:57:8d:5b:f7:7c:d4:a2:f8:0d:e4:18:59:85: 23:72:e3:b3:9c:17:fd:56:9b:ad:71:7b:3c:04:41:37:ff:d3: a5:8b:5b:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSSATdboqenOWRK8nTkEQfW3BcPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTY0NThlNjdhNmZmYzQ1MGZiMjkxODdmNmQ3N2Q4NjRi MTdkYTA0ODQzODgxOTYzYjM5ODA0YTFmNWFlNWEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuAodgAlxFdBdfYI9oQ41vk5xOeI98s1hkIeyoDRV+CpXB tu6ewp9/JxUVx/rjEEzQYew4c2g6wahO011SI38I6DH3nPONf8aGsuCIoqjiijrQ u0MYxe5RPhYcpNhohsSjq1YMs+jw3MiNyftYnlxjZTtBDAlSO9tVI7L2tM+UZ4z/ wvLgca1yKkv2+6E+7ZSEFB0Lf/WB1QjZ08CaX6ZAMo59+SR62mX/ztqyw7UbeKvE jLeUbc0VZupttz20EJ2nud55NK1nxW0D5Gn+WZZErfWytT/I+Rpn0QKYR5nwdWu+ qpNhLXbtJbCxKqndqL38vTpQUM0NSrvi6DAvZgdHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk/D0hERVEZ6qhLAP67nY+X+wK/UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhNzU3MjcxLTk1ZTQtNDdmYi1hNTRhLWUyZWRmMDg2NGNlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjTQAwDQYJKoZIhvcNAQELBQADggEBABMXtA3v7iQd69l23G7l/J67WaTS DzvZsP2XRLGRfUyiA0ji6fiH4xhCh3lf1y/vbwpT08bq1VJ/pZdyZNLXuds8UYk7 20k/nCz0fO0w8COlPQd4y1jTrby8wZ31XwDce5EG1R26czLIJuFDGTLkvMK5RQfs 31q/ovBJI7hjXsg/TP/rFw3CJyMZviPNQw1X4k37+FZNDSmqR9/iEMe4SdXLCMlY jPB7150kjEkHF9YwRqvOldxmPUc/g/VcZdv76/NjNoqafoYSYfiXgXTwzgvvZSS2 6G7zNDkE6fkxV41b93zUovgN5BhZhSNy47OcF/1Wm61xezwEQTf/06WLWzc= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:53 2023 by rpki-client on console-fra.rpki-client.org