$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9af038d2-354c-4182-aff5-39365e11033e.roa File: 9af038d2-354c-4182-aff5-39365e11033e.roa (raw, json) Hash identifier: cAf9ENNzv6x20THoX2qyg4RE14Jki40rcUEzlgrd+1c= Subject key identifier: CA:FB:87:E0:1D:CE:02:DD:90:B8:26:24:78:95:BB:0A:14:47:DD:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A345159295D082891EF9BB6909E6CC318A46C60 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9af038d2-354c-4182-aff5-39365e11033e.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 152.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:34:51:59:29:5d:08:28:91:ef:9b:b6:90:9e:6c:c3:18:a4:6c:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=fefcb104b59d19beadf2a83371e1207fceaa9111c26e62d819f36c0e83b053e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:de:3f:85:d6:f5:ff:53:57:0d:a7:7b:a4:f4: b2:12:7a:d3:1a:a5:94:01:87:51:2f:93:7a:4e:f5: 48:79:e3:6c:72:7e:6b:18:72:a7:c7:86:f7:78:dc: 8a:27:24:04:bc:7d:2c:ab:09:bb:5a:23:7f:16:61: 34:90:4e:41:39:ac:12:eb:af:ce:35:b0:de:06:c9: 7d:76:dc:fb:be:9e:7d:7e:59:2d:87:ab:b0:50:78: d8:36:23:0d:5f:54:71:b7:1d:1e:27:c1:23:99:f8: 40:67:44:d3:9a:b9:d1:60:4a:8f:5f:67:f7:91:e8: f9:cc:3b:95:e7:de:fa:5d:e3:c5:30:70:84:82:f1: 56:b3:64:12:cf:a3:e4:32:9e:53:06:f9:8d:21:75: 49:35:0a:19:be:3e:de:63:9c:cf:09:25:76:c6:86: 7a:1d:2b:18:ed:15:6a:28:45:df:57:89:5b:eb:f3: 00:cd:d3:a1:05:60:f3:90:90:c5:5c:75:78:c3:6c: bc:70:41:9c:ca:84:1c:bd:d6:05:c5:9e:38:67:7d: 2d:16:8e:98:8f:4c:7c:cb:c4:2d:ba:e1:7d:e8:63: 3e:9b:33:72:c1:02:17:c4:2a:14:9c:4d:00:f0:79: 7d:5f:86:d6:0e:00:7e:f7:f0:b9:09:eb:43:d4:66: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FB:87:E0:1D:CE:02:DD:90:B8:26:24:78:95:BB:0A:14:47:DD:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9af038d2-354c-4182-aff5-39365e11033e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:d5:75:75:8c:fe:57:db:8b:62:bb:fe:1d:f2:92:c3:e2:6f: d2:83:e0:54:ca:89:29:a1:1b:bf:aa:b8:4b:8e:d5:46:c7:25: 80:28:02:9d:59:3d:99:45:0b:1f:26:33:ac:4a:d7:f3:d4:19: 7c:4f:b2:9d:17:36:5a:ed:04:c0:91:01:4a:c4:21:f8:e2:19: 18:9b:6d:89:fc:df:fa:c2:b5:d1:3c:3f:c0:de:b0:f2:ec:ac: 82:32:4a:6c:4c:9b:12:e0:30:b9:ef:51:32:11:c0:92:47:e3: d2:96:ed:c7:b3:eb:b9:62:5b:e9:1b:9d:e8:41:65:c4:0c:00: 32:13:11:9f:fb:c2:32:11:6c:d2:e4:cb:ab:80:32:ed:45:e5: 5d:e0:aa:48:d1:6a:88:a9:be:14:71:bf:ba:36:e3:86:51:1f: 45:26:6b:fa:2e:a7:e6:b4:15:c0:c9:7b:c8:8c:f5:7d:a7:74: c5:2e:fe:58:1b:6c:aa:ef:38:9c:41:a5:08:17:0f:02:af:31: 31:39:6a:1c:ea:89:d8:e1:eb:13:48:4f:fc:a1:51:ba:56:d7: 57:02:de:a7:00:05:cf:62:c3:2e:40:e7:1b:e1:4f:aa:b6:00: 75:91:09:fc:fb:3f:ba:14:b7:11:97:d3:b3:b6:da:df:09:9e: 84:0d:6f:0c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKjRRWSldCCiR75u2kJ5swxikbGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWZjYjEwNGI1OWQxOWJlYWRmMmE4MzM3MWUxMjA3ZmNl YWE5MTExYzI2ZTYyZDgxOWYzNmMwZTgzYjA1M2UxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq3j+F1vX/U1cNp3uk9LISetMapZQBh1Evk3pO9Uh542xy fmsYcqfHhvd43IonJAS8fSyrCbtaI38WYTSQTkE5rBLrr841sN4GyX123Pu+nn1+ WS2Hq7BQeNg2Iw1fVHG3HR4nwSOZ+EBnRNOaudFgSo9fZ/eR6PnMO5Xn3vpd48Uw cISC8VazZBLPo+QynlMG+Y0hdUk1Chm+Pt5jnM8JJXbGhnodKxjtFWooRd9XiVvr 8wDN06EFYPOQkMVcdXjDbLxwQZzKhBy91gXFnjhnfS0WjpiPTHzLxC264X3oYz6b M3LBAhfEKhScTQDweX1fhtYOAH738LkJ60PUZjIrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyvuH4B3OAt2QuCYkeJW7ChRH3fowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhZjAzOGQyLTM1NGMtNDE4Mi1hZmY1LTM5MzY1ZTExMDMzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCY4zANBgkqhkiG9w0BAQsFAAOCAQEAPNV1dYz+V9uLYrv+HfKSw+Jv0oPg VMqJKaEbv6q4S47VRsclgCgCnVk9mUULHyYzrErX89QZfE+ynRc2Wu0EwJEBSsQh +OIZGJttifzf+sK10Tw/wN6w8uysgjJKbEybEuAwue9RMhHAkkfj0pbtx7PruWJb 6Rud6EFlxAwAMhMRn/vCMhFs0uTLq4Ay7UXlXeCqSNFqiKm+FHG/ujbjhlEfRSZr +i6n5rQVwMl7yIz1fad0xS7+WBtsqu84nEGlCBcPAq8xMTlqHOqJ2OHrE0hP/KFR ulbXVwLepwAFz2LDLkDnG+FPqrYAdZEJ/Ps/uhS3EZfTs7ba3wmehA1vDA== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:43 2023 by rpki-client on console-ams.rpki-client.org