$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa File: 9e3973a0-6f9e-4d6a-981e-b0146a441803.roa (raw, json) Hash identifier: c5oUpji+G1rAhSdJJQquH3tKlOyg1ugWtjjVMe1dl+Y= Subject key identifier: 3C:F9:CB:DB:1C:D7:8B:13:1C:FA:AC:85:EE:33:0E:41:B2:81:FF:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1108411ECDDBDB42FE1B6E5136FB4EE1A1285AAB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:08:41:1e:cd:db:db:42:fe:1b:6e:51:36:fb:4e:e1:a1:28:5a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=2d3792684cdf01ee0558aa156f8fc53478619904b251f3aba8d0e49a68f335ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:07:83:53:b4:9a:e9:33:0c:33:02:ed:a5: 27:01:51:f4:b5:7a:02:a6:6e:b8:a4:3f:98:ed:78: e9:09:6d:8e:ff:a1:ca:6e:61:f5:ad:ca:52:b3:f7: 00:34:7f:56:ba:86:14:0c:e2:0e:44:d1:90:b6:b2: 65:4e:43:0b:5e:5f:23:b7:f8:7e:99:0b:a8:91:f9: 28:2c:1b:14:74:0b:a9:84:e6:2d:2d:ed:1f:2c:d1: 2f:ab:a5:b3:68:86:81:bd:7c:b6:12:c6:b6:7b:49: 3c:74:f0:1d:59:84:52:fd:45:b0:65:c4:62:d0:32: 70:0f:2e:7a:1d:b2:13:7b:54:fd:ab:5b:0c:02:5e: 5c:fe:aa:41:fb:40:bf:b9:99:34:21:f5:76:e4:4a: ef:78:98:69:7a:46:70:51:53:28:ec:e4:4b:9f:26: 42:92:f6:5d:27:06:40:2b:0f:d9:1c:f2:5c:9a:6c: 0d:86:de:7c:1d:c3:7a:4f:4f:a3:7a:f4:ab:4d:df: b1:6d:55:b6:ab:2b:dc:d0:81:bc:98:84:9a:45:77: d6:e8:aa:8a:b3:76:1f:88:ca:29:a5:fe:d5:d7:bc: 37:cf:9b:f3:32:6e:56:86:c0:48:8c:64:6e:82:5c: cd:19:2e:ef:4b:aa:e9:4c:65:0d:2e:26:c1:2a:2a: cc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F9:CB:DB:1C:D7:8B:13:1C:FA:AC:85:EE:33:0E:41:B2:81:FF:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.236.0/24 Signature Algorithm: sha256WithRSAEncryption d0:e6:16:ad:80:c9:29:af:94:6d:67:77:f0:f5:fb:e2:f2:61: 7a:2f:61:fc:e9:15:ad:39:97:36:4d:95:f6:91:90:80:40:c0: ba:31:56:f3:1a:e6:61:fc:fc:40:57:eb:84:d4:ed:a0:f4:02: e4:7d:ec:0d:81:d4:f0:3f:fb:0c:f4:d1:4f:3f:a9:75:1c:09: 48:44:19:4d:35:69:c3:61:c5:66:af:ad:18:e3:df:90:30:59: de:a0:47:f1:58:c9:36:f3:dd:4c:ab:95:bb:f6:a8:9e:fe:cf: c7:8b:6b:ed:c3:18:ba:1b:ef:db:12:e4:53:c0:40:02:53:31: bd:62:8e:f6:82:b3:63:aa:4e:89:32:1f:c6:9f:5c:37:4e:6c: 9c:8f:a8:b3:5f:05:85:54:22:75:a4:6e:2e:4e:aa:de:7f:f0: 75:89:28:68:7b:3d:0d:3f:8f:5d:b5:63:0a:c8:fa:a4:fe:8e: 33:d0:7c:c0:43:01:ed:56:ee:8c:53:d7:04:99:48:e1:85:02: 43:da:89:19:eb:b5:e9:08:21:9f:86:dd:83:fb:13:37:f4:8d: dc:9d:a3:d2:d3:e0:b8:88:45:d2:e4:9a:01:c0:f1:ef:cc:57: 45:dd:61:ad:84:68:31:44:65:01:f3:86:1f:4b:3f:92:68:e7: 81:b5:25:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQhBHs3b20L+G25RNvtO4aEoWqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDM3OTI2ODRjZGYwMWVlMDU1OGFhMTU2ZjhmYzUzNDc4 NjE5OTA0YjI1MWYzYWJhOGQwZTQ5YTY4ZjMzNWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7kweDU7Sa6TMMMwLtpScBUfS1egKmbrikP5jteOkJbY7/ ocpuYfWtylKz9wA0f1a6hhQM4g5E0ZC2smVOQwteXyO3+H6ZC6iR+SgsGxR0C6mE 5i0t7R8s0S+rpbNohoG9fLYSxrZ7STx08B1ZhFL9RbBlxGLQMnAPLnodshN7VP2r WwwCXlz+qkH7QL+5mTQh9XbkSu94mGl6RnBRUyjs5EufJkKS9l0nBkArD9kc8lya bA2G3nwdw3pPT6N69KtN37FtVbarK9zQgbyYhJpFd9boqoqzdh+Iyiml/tXXvDfP m/MyblaGwEiMZG6CXM0ZLu9LqulMZQ0uJsEqKsxrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPPnL2xzXixMc+qyF7jMOQbKB/wAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMzk3M2EwLTZmOWUtNGQ2YS05ODFlLWIwMTQ2YTQ0MTgwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTewwDQYJKoZIhvcNAQELBQADggEBANDmFq2AySmvlG1nd/D1++LyYXov YfzpFa05lzZNlfaRkIBAwLoxVvMa5mH8/EBX64TU7aD0AuR97A2B1PA/+wz00U8/ qXUcCUhEGU01acNhxWavrRjj35AwWd6gR/FYyTbz3Uyrlbv2qJ7+z8eLa+3DGLob 79sS5FPAQAJTMb1ijvaCs2OqTokyH8afXDdObJyPqLNfBYVUInWkbi5Oqt5/8HWJ KGh7PQ0/j121YwrI+qT+jjPQfMBDAe1W7oxT1wSZSOGFAkPaiRnrtekIIZ+G3YP7 Ezf0jdydo9LT4LiIRdLkmgHA8e/MV0XdYa2EaDFEZQHzhh9LP5Jo54G1JSg= -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:54 2023 by rpki-client on console-fra.rpki-client.org