$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa File: aceae2b8-bb86-419b-a042-74b95a9ac220.roa (raw, json) Hash identifier: 9PQIx5MWotZ3+jyRnm7JipqXANosqro5g06gMFTiyPU= Subject key identifier: C1:39:D8:D4:DE:91:26:2E:75:4D:C3:57:52:89:21:E3:48:C4:B3:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 110652CE686D76C5D5D3EFD4601D9EE22EABBAA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 130.186.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:06:52:ce:68:6d:76:c5:d5:d3:ef:d4:60:1d:9e:e2:2e:ab:ba:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=4bddc55deac5dcd81c8e6c07caeec93b2147b19bb912f02321b27459ea7e830f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:72:ac:68:df:23:07:37:eb:60:c5:1e:cf:f9: c7:92:ef:f4:5c:e3:67:97:c3:2e:3d:73:d5:3c:41: b4:98:4b:6a:d5:fa:a4:40:01:45:ca:5b:92:cc:98: 20:85:2c:7a:13:74:da:c5:95:d4:53:24:19:7a:13: 9a:a0:43:ff:88:61:93:a8:7e:04:77:53:65:eb:cb: da:26:d5:a3:b2:31:98:ef:5e:2b:14:03:66:8e:0a: 0e:26:a0:90:c0:5a:82:d7:7b:ac:e9:41:64:d5:89: bd:be:93:5c:8b:74:2d:9b:b6:f7:f9:64:f8:2e:12: 30:d9:fa:d1:08:08:c4:17:c6:ae:38:4a:cf:06:5f: f3:cb:66:21:1a:b7:b9:b7:35:1b:25:f4:e2:b2:88: 2b:4f:05:a8:60:58:c8:46:eb:4a:97:2b:ee:06:5a: 49:e7:ba:b9:5d:66:a0:9e:d3:93:14:b8:5f:bf:7a: 59:68:05:e0:81:d7:6f:03:7c:a7:af:27:80:d9:c2: 9a:84:13:f7:39:64:cb:da:64:63:a3:d0:72:ed:4c: 9d:53:b5:a9:14:e5:59:e4:a0:b1:e2:09:fe:e6:38: a9:40:cb:87:44:a0:1e:e8:33:8f:6a:eb:18:5a:59: 07:fb:dc:80:b1:6e:d5:72:bf:60:5f:58:e0:11:94: 1c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:39:D8:D4:DE:91:26:2E:75:4D:C3:57:52:89:21:E3:48:C4:B3:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.186.128.0/17 Signature Algorithm: sha256WithRSAEncryption 13:c1:fd:2a:f4:d8:e3:2e:61:63:29:63:25:ee:b8:cd:22:40: ad:59:d2:76:7b:64:4c:f6:dd:b9:13:e1:6f:be:ff:41:55:da: 81:f8:ab:ed:cb:f6:e8:ee:60:93:49:d6:f6:87:a8:e2:33:f7: f3:68:86:ad:fc:b0:26:3a:99:ef:b6:da:e1:0b:81:77:83:e6: fc:b2:eb:3c:ee:cf:9c:a6:3d:9d:74:97:62:82:1e:29:1d:13: b4:ad:67:bb:f8:ec:80:1a:53:a3:c6:11:6c:60:04:38:6e:08: c6:3c:b4:54:78:c7:b8:82:05:90:30:fc:10:48:d5:85:31:84: 1e:fb:21:5d:98:cb:60:11:f4:59:54:fb:f9:3e:37:92:20:56: 6f:85:91:6a:d9:b9:7e:b5:e6:43:ab:15:6e:7b:62:97:ad:34: 1a:5b:d3:5e:de:d6:43:0f:17:b6:f1:3c:b1:04:95:bc:ab:06: 6c:8d:3a:d0:31:a7:48:29:b2:20:68:cd:39:1c:97:81:41:4f: 7a:12:e3:86:af:cb:4d:8c:84:88:3b:8f:19:a2:b7:00:1f:56: 28:86:62:93:ee:c9:46:14:46:89:7c:e2:e7:6c:86:e1:5a:ed: 33:c8:a3:99:15:c8:25:79:80:fb:13:4a:41:56:88:9b:a6:87: a4:7a:7f:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQZSzmhtdsXV0+/UYB2e4i6ruqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmRkYzU1ZGVhYzVkY2Q4MWM4ZTZjMDdjYWVlYzkzYjIx NDdiMTliYjkxMmYwMjMyMWIyNzQ1OWVhN2U4MzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWcqxo3yMHN+tgxR7P+ceS7/Rc42eXwy49c9U8QbSYS2rV +qRAAUXKW5LMmCCFLHoTdNrFldRTJBl6E5qgQ/+IYZOofgR3U2Xry9om1aOyMZjv XisUA2aOCg4moJDAWoLXe6zpQWTVib2+k1yLdC2btvf5ZPguEjDZ+tEICMQXxq44 Ss8GX/PLZiEat7m3NRsl9OKyiCtPBahgWMhG60qXK+4GWknnurldZqCe05MUuF+/ elloBeCB128DfKevJ4DZwpqEE/c5ZMvaZGOj0HLtTJ1TtakU5VnkoLHiCf7mOKlA y4dEoB7oM49q6xhaWQf73ICxbtVyv2BfWOARlBztAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwTnY1N6RJi51TcNXUokh40jEs9kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWFlMmI4LWJiODYtNDE5Yi1hMDQyLTc0Yjk1YTlhYzIyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeCuoAwDQYJKoZIhvcNAQELBQADggEBABPB/Sr02OMuYWMpYyXuuM0iQK1Z 0nZ7ZEz23bkT4W++/0FV2oH4q+3L9ujuYJNJ1vaHqOIz9/Nohq38sCY6me+22uEL gXeD5vyy6zzuz5ymPZ10l2KCHikdE7StZ7v47IAaU6PGEWxgBDhuCMY8tFR4x7iC BZAw/BBI1YUxhB77IV2Yy2AR9FlU+/k+N5IgVm+FkWrZuX615kOrFW57YpetNBpb 017e1kMPF7bxPLEElbyrBmyNOtAxp0gpsiBozTkcl4FBT3oS44avy02MhIg7jxmi twAfViiGYpPuyUYURol84udshuFa7TPIo5kVyCV5gPsTSkFWiJumh6R6fzE= -----END CERTIFICATE-----Generated at Fri Sep 22 15:34:21 2023 by rpki-client on console-fra.rpki-client.org