$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa File: 9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa (raw, json) Hash identifier: JOMkv4uuqeAhC2d7v+FO+zoHiGa9WQ++Hkhelrl7Fb0= Subject key identifier: EC:CA:7F:91:97:0F:BD:9A:01:C0:24:3C:1D:55:3E:48:D0:79:C4:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38C5A8D33DB5F0002189499F37EE5E45BB5B7A66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c5:a8:d3:3d:b5:f0:00:21:89:49:9f:37:ee:5e:45:bb:5b:7a:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=6ad25353776f83d772d9baeb5bd32e894a406cf21054085009c8473362c64342, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:53:98:f9:38:e6:7c:e6:9c:c1:bb:fb:b8:ec: 93:a3:4e:c1:0b:e0:06:18:aa:84:c4:e2:3b:9c:0c: 3c:81:30:94:fd:93:49:fc:a4:83:d2:ec:a4:88:68: a5:8d:8a:7b:04:d6:81:41:10:65:19:c4:42:cc:a3: ab:de:42:17:c5:dd:17:03:9e:18:f7:42:73:ce:cb: fd:c5:3a:03:f1:09:33:79:84:e1:74:43:3d:76:2d: e6:a6:9a:be:f8:c2:52:0d:5c:3d:57:e9:1a:95:d4: 8d:72:f3:7a:98:55:15:07:b1:ad:25:60:82:48:96: 3d:05:53:20:ee:41:f6:76:37:c3:00:5c:a6:7b:9f: 7d:00:d7:96:91:ef:f1:78:9d:2f:43:7a:1f:e4:64: 56:bc:bd:78:6a:62:a6:b3:83:97:04:3b:cb:82:54: ab:55:20:9a:39:4f:fb:1b:07:61:32:66:d2:2a:2b: 05:f9:f8:5a:ad:7b:0b:26:d4:b6:22:f9:d9:73:a7: 23:87:0c:7a:16:14:50:e7:27:98:ae:3f:d7:ee:f0: 1b:d5:5e:15:95:6f:9b:b2:e1:ad:4a:19:d0:86:1a: 93:b4:f0:d8:ac:4a:b0:a2:31:74:a8:c1:33:2c:ec: 05:97:43:d5:4c:84:94:eb:bf:2d:35:65:71:9f:15: a7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CA:7F:91:97:0F:BD:9A:01:C0:24:3C:1D:55:3E:48:D0:79:C4:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fc7701e-a287-47d6-a5b1-d8e702f5a9ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:7f:4a:fd:9d:ad:32:2d:21:c7:45:80:9f:3f:01:f4:68:c1: 2d:a4:b2:8d:ea:27:28:3f:1b:df:55:fb:86:88:47:ef:11:6a: 83:73:2a:8d:38:ee:8e:86:b2:bf:5a:5f:1f:21:4a:a9:01:95: 31:8e:38:d0:a7:a8:24:52:02:95:1a:bf:f8:8a:32:d5:06:5f: 1d:16:c6:4d:4f:16:d3:54:18:93:dd:74:1d:cd:68:83:ff:34: c2:41:5b:50:f4:bf:48:00:c5:01:f8:7e:84:54:76:7b:23:1c: d8:71:35:6d:ac:74:12:19:13:ec:32:3f:7d:df:9e:1d:10:eb: ac:c0:cf:63:d2:c4:45:77:1c:ca:37:e9:33:54:92:a6:21:9e: f2:e4:66:03:01:be:ac:73:01:59:5a:63:23:78:51:63:79:48: f0:28:32:99:91:69:34:53:e6:5b:a6:9f:e1:eb:28:d6:63:93: 40:db:59:02:ff:d3:f6:a9:f3:77:ca:cb:39:57:18:98:e8:1f: dd:c2:a2:fa:e3:5c:b7:c3:91:7f:94:41:ff:bd:a4:cd:8d:b3: bc:2f:20:b5:27:b7:4c:96:73:30:0a:85:3d:14:94:d6:6a:57: 2f:5d:39:19:d6:08:4b:e8:30:17:b4:d1:56:09:07:e7:a6:95: 99:5a:06:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOMWo0z218AAhiUmfN+5eRbtbemYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWQyNTM1Mzc3NmY4M2Q3NzJkOWJhZWI1YmQzMmU4OTRh NDA2Y2YyMTA1NDA4NTAwOWM4NDczMzYyYzY0MzQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIU5j5OOZ85pzBu/u47JOjTsEL4AYYqoTE4jucDDyBMJT9 k0n8pIPS7KSIaKWNinsE1oFBEGUZxELMo6veQhfF3RcDnhj3QnPOy/3FOgPxCTN5 hOF0Qz12Leammr74wlINXD1X6RqV1I1y83qYVRUHsa0lYIJIlj0FUyDuQfZ2N8MA XKZ7n30A15aR7/F4nS9Deh/kZFa8vXhqYqazg5cEO8uCVKtVIJo5T/sbB2EyZtIq KwX5+Fqtewsm1LYi+dlzpyOHDHoWFFDnJ5iuP9fu8BvVXhWVb5uy4a1KGdCGGpO0 8NisSrCiMXSowTMs7AWXQ9VMhJTrvy01ZXGfFafFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7Mp/kZcPvZoBwCQ8HVU+SNB5xI0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmYzc3MDFlLWEyODctNDdkNi1hNWIxLWQ4ZTcwMmY1YTlhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQTTANBgkqhkiG9w0BAQsFAAOCAQEATX9K/Z2tMi0hx0WAnz8B9GjBLaSy jeonKD8b31X7hohH7xFqg3MqjTjujoayv1pfHyFKqQGVMY440KeoJFIClRq/+Ioy 1QZfHRbGTU8W01QYk910Hc1og/80wkFbUPS/SADFAfh+hFR2eyMc2HE1bax0EhkT 7DI/fd+eHRDrrMDPY9LERXccyjfpM1SSpiGe8uRmAwG+rHMBWVpjI3hRY3lI8Cgy mZFpNFPmW6af4eso1mOTQNtZAv/T9qnzd8rLOVcYmOgf3cKi+uNct8ORf5RB/72k zY2zvC8gtSe3TJZzMAqFPRSU1mpXL105GdYIS+gwF7TRVgkH56aVmVoG4A== -----END CERTIFICATE-----Generated at Fri Sep 22 19:40:14 2023 by rpki-client on console-fra.rpki-client.org