$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa File: a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa (raw, json) Hash identifier: lJCxiHwRZaVLuAcCgYig6j4WBOFGoesKr0JjZlRCEOU= Subject key identifier: B4:AA:C0:30:F1:D5:AD:AC:B8:3B:3F:92:78:67:D4:B2:1F:28:84:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A1DA319219E2996DC5012F0317B79875952C41B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 136.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1d:a3:19:21:9e:29:96:dc:50:12:f0:31:7b:79:87:59:52:c4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=fe552cdfa39c527bc2668b8d4f4dabddad9e137f93b71f54ef0305841475a486, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:66:1d:81:37:7f:cc:15:68:b0:ce:e5:01: ee:89:60:9e:32:2e:84:39:0d:49:1e:46:e1:f5:dc: 59:5c:1a:f6:a7:47:eb:f0:2e:96:e3:2d:c3:18:8f: 27:75:94:57:c9:cc:3e:05:6f:cd:a6:16:08:e2:3b: 0b:63:14:be:da:8e:29:99:09:4c:4c:a0:d8:33:73: 6e:d4:96:f2:f8:5e:f5:4c:cc:0a:bb:01:55:cf:c9: 36:c2:a3:54:5e:66:e8:9a:db:20:fb:0c:15:ed:ab: ee:ec:70:fb:06:74:27:19:29:4a:fa:0e:cb:12:b6: 65:59:18:73:56:8f:25:3c:52:bf:d2:2e:e3:d9:ad: 66:18:0f:b9:50:17:a8:fa:79:48:32:6b:32:96:75: 0f:f9:6c:60:22:b7:32:b2:a0:4a:77:a9:86:7e:1a: e1:8f:ae:bd:40:4d:5e:3c:cf:63:cc:f2:ac:ed:64: 69:4d:c2:f0:b8:a4:45:e1:1a:2b:03:b7:f1:fc:b7: e8:15:04:91:87:9d:44:70:4a:26:78:96:ed:4a:e5: 71:4f:19:32:d3:a9:7c:f0:f8:01:e2:6e:1f:2f:c0: 31:19:8c:d2:23:36:96:5a:a4:61:d8:f6:d8:77:c3: da:cb:66:08:42:2a:b4:19:6a:6d:15:ad:ca:07:50: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AA:C0:30:F1:D5:AD:AC:B8:3B:3F:92:78:67:D4:B2:1F:28:84:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:62:18:21:da:d8:50:e2:5d:0a:e2:61:10:75:c4:82:a9:a6: b4:62:b7:34:8e:40:86:3a:cb:bd:c4:da:c5:b3:31:fd:5d:22: 36:36:1d:ba:75:8b:72:e0:20:e4:8f:4e:3e:69:e5:e6:06:e6: b6:7a:e0:1c:92:83:f7:b6:08:2d:ae:fe:03:9e:cf:ed:1e:8c: a0:59:ff:75:aa:f9:6a:0e:41:41:cc:5e:71:15:05:8e:40:91: bc:74:3b:46:0d:f8:f2:97:df:83:39:f1:6a:3c:9a:46:a0:3a: 5e:42:cf:b2:49:ce:9c:f8:58:7f:00:6a:45:db:34:63:c9:e7: 4d:53:b7:c0:55:e2:18:32:72:d5:85:52:6d:09:a5:11:58:29: a0:2a:1e:5c:c2:02:14:f7:ea:0c:e4:2e:ad:ef:c0:bf:ce:69: 67:e8:1d:8a:20:78:2f:0b:11:3d:a5:fb:66:e7:bf:82:93:c2: 35:a0:25:4d:01:f2:c1:46:7b:62:3b:aa:1d:aa:04:18:21:24: 13:1c:ff:4e:36:55:2d:3d:49:79:f3:5d:45:62:bb:16:2b:19: 71:ca:fb:b2:d6:9d:c0:27:42:70:c9:ec:ed:62:35:43:6d:1f: d8:ef:44:58:54:6c:98:62:f7:e6:70:59:62:83:df:fc:14:7f: 68:9f:06:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCh2jGSGeKZbcUBLwMXt5h1lSxBswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTU1MmNkZmEzOWM1MjdiYzI2NjhiOGQ0ZjRkYWJkZGFk OWUxMzdmOTNiNzFmNTRlZjAzMDU4NDE0NzVhNDg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9o2YdgTd/zBVosM7lAe6JYJ4yLoQ5DUkeRuH13FlcGvan R+vwLpbjLcMYjyd1lFfJzD4Fb82mFgjiOwtjFL7ajimZCUxMoNgzc27UlvL4XvVM zAq7AVXPyTbCo1ReZuia2yD7DBXtq+7scPsGdCcZKUr6DssStmVZGHNWjyU8Ur/S LuPZrWYYD7lQF6j6eUgyazKWdQ/5bGAitzKyoEp3qYZ+GuGPrr1ATV48z2PM8qzt ZGlNwvC4pEXhGisDt/H8t+gVBJGHnURwSiZ4lu1K5XFPGTLTqXzw+AHibh8vwDEZ jNIjNpZapGHY9th3w9rLZghCKrQZam0VrcoHUOIjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtKrAMPHVray4Oz+SeGfUsh8ohNkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZTEwZTk5LTIzNzAtNGE3My1iNmU5LTNmN2I4NDI4ZTcxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCICTANBgkqhkiG9w0BAQsFAAOCAQEAaGIYIdrYUOJdCuJhEHXEgqmmtGK3 NI5AhjrLvcTaxbMx/V0iNjYdunWLcuAg5I9OPmnl5gbmtnrgHJKD97YILa7+A57P 7R6MoFn/dar5ag5BQcxecRUFjkCRvHQ7Rg348pffgznxajyaRqA6XkLPsknOnPhY fwBqRds0Y8nnTVO3wFXiGDJy1YVSbQmlEVgpoCoeXMICFPfqDOQure/Av85pZ+gd iiB4LwsRPaX7Zue/gpPCNaAlTQHywUZ7YjuqHaoEGCEkExz/TjZVLT1JefNdRWK7 FisZccr7stadwCdCcMns7WI1Q20f2O9EWFRsmGL35nBZYoPf/BR/aJ8GwQ== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org