$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa File: a5e89287-6c05-411f-a3e6-fef6be7964e1.roa (raw, json) Hash identifier: WOJzftpbhKnzG5pVSkvV/GfPem6r5PcLTerASS5yA/Y= Subject key identifier: 6F:5A:61:34:D2:FE:F3:25:B6:A9:A4:78:7F:E2:B2:79:5B:26:07:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F787AA1D89C345DB02F2B3CE3561D94212AADCE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 143.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 05:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:78:7a:a1:d8:9c:34:5d:b0:2f:2b:3c:e3:56:1d:94:21:2a:ad:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=0d00868f8cf1f499d6b5c51a6d52eebb5e2258ada93464d03e0d16fa01ea4d8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:46:ba:a3:fa:99:85:f7:47:f8:cf:9c:08:c4: 57:d9:c7:71:ae:3a:0d:a2:1f:fa:1c:ee:20:58:42: 1f:31:4f:8a:5c:2c:6d:bf:1f:82:66:31:24:24:24: 92:82:4c:9d:20:1a:a9:3f:70:72:9f:ba:f4:23:5e: e4:0f:8a:d0:10:32:0d:87:cc:77:20:21:2b:22:dc: 3a:83:75:31:c7:d1:30:5c:ab:02:b6:6d:b8:14:ce: a5:ea:c0:18:e2:ca:5a:78:ac:8f:97:50:01:3b:eb: 31:cd:1f:57:aa:94:ea:98:0c:c8:83:99:f7:38:a6: fa:66:01:90:de:13:9a:b3:f0:aa:c0:e6:d0:fe:96: ca:f3:af:07:3c:fb:96:3b:b4:8e:32:f5:58:55:f0: d8:c0:7c:08:86:6d:d3:d2:8c:bd:39:21:88:fa:1f: 03:63:4d:a2:11:38:2c:2d:d1:0b:a3:9a:d0:49:7c: 3c:4f:ee:25:7b:0b:ba:6b:d4:0e:bd:9b:89:b4:d6: 1c:9a:b6:3e:39:45:b4:13:41:86:0c:be:13:ac:49: b7:b4:f2:65:bf:7c:1e:cd:ad:d9:83:98:fe:32:c8: 7e:c4:16:93:8a:fb:0b:60:a5:8b:a5:62:4f:ff:3b: 72:06:96:b5:74:80:40:c3:85:0b:0a:46:a3:6a:1d: 16:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5A:61:34:D2:FE:F3:25:B6:A9:A4:78:7F:E2:B2:79:5B:26:07:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7a:e3:ec:3e:d9:fe:8e:ec:68:a3:29:6e:d8:a6:d0:a2:66:4f: 7e:e6:aa:1c:c7:3c:67:53:47:8b:e0:67:65:73:30:4d:e9:bc: aa:1b:d8:78:a0:50:30:db:8a:8e:30:c6:bc:36:94:5e:26:87: 2b:58:63:ca:f6:6c:5d:ef:44:7b:e1:b8:00:60:8a:cb:f9:eb: 32:07:59:4c:00:5c:46:d6:85:2c:72:a2:bb:03:6e:9b:08:c9: 2d:db:bb:3c:6c:d9:45:39:7e:83:71:d1:f1:93:73:f3:72:47: c5:1e:6c:8f:b8:85:4a:3e:f1:05:1d:21:ba:ce:19:5c:7a:6f: 85:ff:4c:e9:6e:d0:c1:5d:69:13:2d:11:00:ec:5c:ce:66:ab: b4:1b:42:32:70:23:7a:e4:1f:4c:d1:31:b8:7d:c4:83:91:1c: 03:c7:1a:94:4c:e3:1b:47:b0:f7:bb:12:c4:60:e5:72:c0:fc: f4:1d:3f:f1:00:8d:cb:e9:a1:c1:a8:5c:df:39:63:31:66:15: 6e:04:b4:9c:44:48:85:c1:f2:0c:a5:6c:76:b9:05:51:f5:20: 9e:d3:87:47:9f:5b:cb:03:9a:9a:0b:8c:e9:42:18:b8:9a:1e: 6c:49:75:45:39:b6:aa:33:8e:3a:69:1a:b5:d4:17:f7:e1:26: 22:3d:e5:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH3h6odicNF2wLys841YdlCEqrc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDAwODY4ZjhjZjFmNDk5ZDZiNWM1MWE2ZDUyZWViYjVl MjI1OGFkYTkzNDY0ZDAzZTBkMTZmYTAxZWE0ZDhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaRrqj+pmF90f4z5wIxFfZx3GuOg2iH/oc7iBYQh8xT4pc LG2/H4JmMSQkJJKCTJ0gGqk/cHKfuvQjXuQPitAQMg2HzHcgISsi3DqDdTHH0TBc qwK2bbgUzqXqwBjiylp4rI+XUAE76zHNH1eqlOqYDMiDmfc4pvpmAZDeE5qz8KrA 5tD+lsrzrwc8+5Y7tI4y9VhV8NjAfAiGbdPSjL05IYj6HwNjTaIROCwt0QujmtBJ fDxP7iV7C7pr1A69m4m01hyatj45RbQTQYYMvhOsSbe08mW/fB7NrdmDmP4yyH7E FpOK+wtgpYulYk//O3IGlrV0gEDDhQsKRqNqHRbvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUb1phNNL+8yW2qaR4f+KyeVsmB9cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ZTg5Mjg3LTZjMDUtNDExZi1hM2U2LWZlZjZiZTc5NjRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPhzANBgkqhkiG9w0BAQsFAAOCAQEAeuPsPtn+juxooylu2KbQomZPfuaq HMc8Z1NHi+BnZXMwTem8qhvYeKBQMNuKjjDGvDaUXiaHK1hjyvZsXe9Ee+G4AGCK y/nrMgdZTABcRtaFLHKiuwNumwjJLdu7PGzZRTl+g3HR8ZNz83JHxR5sj7iFSj7x BR0hus4ZXHpvhf9M6W7QwV1pEy0RAOxczmartBtCMnAjeuQfTNExuH3Eg5EcA8ca lEzjG0ew97sSxGDlcsD89B0/8QCNy+mhwahc3zljMWYVbgS0nERIhcHyDKVsdrkF UfUgntOHR59bywOamguM6UIYuJoebEl1RTm2qjOOOmkatdQX9+EmIj3lnQ== -----END CERTIFICATE-----Generated at Mon Aug 28 17:23:41 2023 by rpki-client on console-fra.rpki-client.org