$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad9078a9-7f3c-49b9-9c69-3e68c37e2bdd.roa File: ad9078a9-7f3c-49b9-9c69-3e68c37e2bdd.roa (raw, json) Hash identifier: 31UTxQSr65hat9fi799miDWXZZVRKcsKmyRCrwj3NLk= Subject key identifier: DE:FD:34:A7:F5:6C:F4:64:B4:C6:0B:13:26:58:78:15:4C:97:04:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A843495C1A094E4CC25BB7BB3AC8CAF4A243232 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad9078a9-7f3c-49b9-9c69-3e68c37e2bdd.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 108.136.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:84:34:95:c1:a0:94:e4:cc:25:bb:7b:b3:ac:8c:af:4a:24:32:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=103db39eaf1e8cf1af03e5379270b5c6bc29dd9694e1e1d90846780adba13512, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:99:8a:a5:84:db:d7:1c:dc:ee:04:3b:cd: 97:fb:ac:ca:9c:2f:01:0b:ba:27:e2:05:42:10:d9: 6a:e8:ae:02:73:40:fa:ca:46:ba:fd:78:cd:a6:9f: 93:6b:30:a3:15:81:44:29:58:3e:1b:09:5b:3a:1a: 0d:7a:40:9a:a2:a0:e8:ba:c1:30:a9:c3:9d:3f:db: 82:1d:70:53:a4:49:09:24:8c:65:99:29:40:60:07: c3:cf:19:08:bd:26:b2:70:df:ff:d2:05:0e:2b:9c: 1f:bb:05:1f:ed:57:ed:21:e9:b8:7e:ad:27:80:3d: ce:8c:89:62:1c:de:6a:08:d6:74:bc:53:95:31:8c: f4:a6:7e:16:92:f2:3a:8d:73:7c:df:a5:f8:87:53: 0e:a4:f2:e1:b8:2e:7e:d1:6a:b6:ef:b0:4e:62:1e: c8:27:80:6e:6b:24:b9:fe:c3:a1:ed:21:86:46:92: 25:8a:23:b7:df:8d:e5:19:56:44:be:19:d6:3b:9b: 70:be:71:69:cb:2e:15:f9:18:97:4d:04:64:de:ae: fc:80:0b:05:05:28:7c:b9:91:ff:b2:b8:e8:4f:c4: ca:52:d3:cc:88:45:e7:6b:c1:3a:17:8a:fd:36:27: f8:c5:a8:8a:72:05:fb:4d:20:a1:67:59:ec:be:65: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FD:34:A7:F5:6C:F4:64:B4:C6:0B:13:26:58:78:15:4C:97:04:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad9078a9-7f3c-49b9-9c69-3e68c37e2bdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.136.0.0/15 Signature Algorithm: sha256WithRSAEncryption d6:2f:07:6c:da:88:99:f1:e9:84:3f:c4:eb:52:90:36:d0:eb: 6c:84:c6:19:69:28:8a:ce:45:50:34:1e:d5:73:dc:0b:dd:8a: 28:b6:74:92:3d:d6:82:84:44:01:b2:bc:ad:7d:89:55:14:5d: 40:5f:74:ad:46:6c:58:f8:f1:55:1a:f8:3e:2c:c7:51:33:62: f0:3b:df:1b:8f:96:00:c6:f2:1f:e7:6a:2c:af:5c:ef:45:05: 4b:78:04:d5:9b:d5:e8:39:6b:7d:0f:f0:99:b3:dc:99:2c:5a: 24:66:08:1d:c7:e4:a9:de:52:3b:a8:ad:ce:6a:7c:f1:4c:97: e7:30:19:f2:09:10:a0:30:fc:3c:a7:b9:6c:f7:03:b2:c8:11: 44:5a:ca:89:27:fc:fa:09:e4:8a:9c:a4:ce:95:a1:0c:22:73: 99:fb:d5:d1:6c:87:ea:9f:5d:65:4e:bc:54:59:76:78:75:37: ea:dd:5f:58:71:f3:d4:03:e3:26:8a:2d:61:c3:cd:5c:85:3d: ef:8f:fc:b6:96:00:04:9a:4f:4f:ec:5f:43:e3:6d:d8:d3:f9: 16:32:f7:79:4b:e5:c6:f6:af:fe:9f:9e:f2:4e:2e:15:9e:3f: b2:45:7c:a2:c6:6f:06:de:09:44:e0:74:e9:ae:f3:73:2f:e7: ba:71:1e:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSoQ0lcGglOTMJbt7s6yMr0okMjIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDNkYjM5ZWFmMWU4Y2YxYWYwM2U1Mzc5MjcwYjVjNmJj MjlkZDk2OTRlMWUxZDkwODQ2NzgwYWRiYTEzNTEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+UpmKpYTb1xzc7gQ7zZf7rMqcLwELuifiBUIQ2WrorgJz QPrKRrr9eM2mn5NrMKMVgUQpWD4bCVs6Gg16QJqioOi6wTCpw50/24IdcFOkSQkk jGWZKUBgB8PPGQi9JrJw3//SBQ4rnB+7BR/tV+0h6bh+rSeAPc6MiWIc3moI1nS8 U5UxjPSmfhaS8jqNc3zfpfiHUw6k8uG4Ln7RarbvsE5iHsgngG5rJLn+w6HtIYZG kiWKI7ffjeUZVkS+GdY7m3C+cWnLLhX5GJdNBGTervyACwUFKHy5kf+yuOhPxMpS 08yIRedrwToXiv02J/jFqIpyBftNIKFnWey+Zc3hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3v00p/Vs9GS0xgsTJlh4FUyXBOcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkOTA3OGE5LTdmM2MtNDliOS05YzY5LTNlNjhjMzdlMmJkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFsiDANBgkqhkiG9w0BAQsFAAOCAQEA1i8HbNqImfHphD/E61KQNtDrbITG GWkois5FUDQe1XPcC92KKLZ0kj3WgoREAbK8rX2JVRRdQF90rUZsWPjxVRr4PizH UTNi8DvfG4+WAMbyH+dqLK9c70UFS3gE1ZvV6DlrfQ/wmbPcmSxaJGYIHcfkqd5S O6itzmp88UyX5zAZ8gkQoDD8PKe5bPcDssgRRFrKiSf8+gnkipykzpWhDCJzmfvV 0WyH6p9dZU68VFl2eHU36t1fWHHz1APjJootYcPNXIU974/8tpYABJpPT+xfQ+Nt 2NP5FjL3eUvlxvav/p+e8k4uFZ4/skV8osZvBt4JROB06a7zcy/nunEeqA== -----END CERTIFICATE-----Generated at Fri Sep 22 16:18:48 2023 by rpki-client on console-ams.rpki-client.org