$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa File: aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa (raw, json) Hash identifier: gD4G1dGnwRT8qct0DOF9vu1uAZfAp8m40TAh16bO0Q4= Subject key identifier: 00:B4:06:26:D5:93:14:27:0F:D6:CD:1C:F4:11:E8:41:4F:5A:D1:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EB1FD9B930C87079726FE7255DE4328A72F0418 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b1:fd:9b:93:0c:87:07:97:26:fe:72:55:de:43:28:a7:2f:04:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0606106ea1b76f32263da7938a878a91ac4d95cedd94ed1b95f7c2201d9e2f51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:07:67:ad:54:df:7e:01:95:2b:61:d2:ce:e3: c6:e4:01:f6:c1:5c:25:d9:d8:09:fc:39:d3:6d:39: a8:09:94:8a:ee:33:bb:15:e6:f6:a4:37:6b:d0:ad: c0:cd:78:ca:f4:8e:68:33:34:4e:ac:53:af:82:71: 69:39:a4:67:3e:87:ae:fe:74:f3:7e:17:a5:35:70: 4b:5a:6a:9b:12:b4:b7:d2:80:0c:fa:6b:e1:09:b7: 42:a6:a9:d6:b3:57:3c:51:83:51:4f:a2:22:99:c2: 60:cb:2d:7c:06:12:b8:7f:d5:77:f6:fb:2d:ed:c9: 78:b6:85:08:3c:d5:3b:56:b9:0e:f0:0f:19:ba:b8: e1:c6:7e:f5:61:3c:2e:f6:07:5e:6d:dc:e3:1c:bc: b8:28:c6:6c:6c:d6:02:12:0b:b2:57:e3:e6:f0:b3: 89:81:62:d8:f8:90:6f:17:e4:60:2d:19:65:a7:e7: 1a:fc:29:fa:7f:60:69:45:8c:80:fb:5c:d7:35:3d: fe:86:9e:d3:79:35:20:fa:07:73:6a:5e:01:e2:13: 30:b7:68:bd:38:9f:3c:fb:cf:c9:88:46:35:7b:74: 81:b2:01:00:36:60:c3:83:f8:37:a0:c3:f2:12:f8: e6:ff:2c:94:6d:0d:2c:fb:3c:fc:70:5e:55:74:9e: 1e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B4:06:26:D5:93:14:27:0F:D6:CD:1C:F4:11:E8:41:4F:5A:D1:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:bb:7f:99:5e:f0:52:ad:85:6d:ed:bb:7c:b4:29:6a:96:65: fe:fe:40:92:ac:ad:33:5d:72:e1:9a:9e:de:d8:00:37:7e:a1: 65:f0:36:6f:60:33:37:cc:eb:30:f2:3b:2e:fb:73:0f:26:96: 45:f1:af:93:59:8f:19:74:d8:88:11:56:54:9e:02:a3:1c:d5: 9c:16:9c:19:9a:be:76:7c:e0:1a:12:34:c0:29:a3:b9:2f:60: b8:27:36:c9:f1:0c:3c:5e:58:5c:04:24:52:21:7b:c5:e5:0f: e4:0a:8c:92:43:64:3e:65:37:44:38:11:f6:75:e1:c7:bf:72: 18:59:33:5b:5e:25:b9:84:87:e1:22:a4:d9:ac:f0:d7:f7:d3: a1:f5:85:03:36:e0:24:30:e2:14:e7:81:49:fd:33:52:04:86: 93:be:77:cc:cf:11:7e:f1:fb:1c:32:6c:58:51:18:e7:e0:50: e2:04:b3:70:f9:ce:57:25:5f:28:1d:18:ef:11:1d:c3:bb:f1: a0:5b:dc:70:db:7a:4f:85:c6:85:6b:ec:a4:14:9c:94:82:e6: 2e:5b:85:d3:9b:49:7e:05:b9:11:21:87:08:5c:4d:b9:3d:4a: 7e:68:5c:b6:47:4b:45:93:3a:17:08:8a:28:04:67:38:81:ff: ea:68:b3:47 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfrH9m5MMhweXJv5yVd5DKKcvBBgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjA2MTA2ZWExYjc2ZjMyMjYzZGE3OTM4YTg3OGE5MWFj NGQ5NWNlZGQ5NGVkMWI5NWY3YzIyMDFkOWUyZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXB2etVN9+AZUrYdLO48bkAfbBXCXZ2An8OdNtOagJlIru M7sV5vakN2vQrcDNeMr0jmgzNE6sU6+CcWk5pGc+h67+dPN+F6U1cEtaapsStLfS gAz6a+EJt0KmqdazVzxRg1FPoiKZwmDLLXwGErh/1Xf2+y3tyXi2hQg81TtWuQ7w Dxm6uOHGfvVhPC72B15t3OMcvLgoxmxs1gISC7JX4+bws4mBYtj4kG8X5GAtGWWn 5xr8Kfp/YGlFjID7XNc1Pf6GntN5NSD6B3NqXgHiEzC3aL04nzz7z8mIRjV7dIGy AQA2YMOD+Degw/IS+Ob/LJRtDSz7PPxwXlV0nh69AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUALQGJtWTFCcP1s0c9BHoQU9a0VUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZDg3ZTYyLTBmNjUtNGI3Yi1hMTc2LWExNTIyYzZlM2QxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEALrt/mV7wUq2Fbe27fLQpapZl/v5A kqytM11y4Zqe3tgAN36hZfA2b2AzN8zrMPI7LvtzDyaWRfGvk1mPGXTYiBFWVJ4C oxzVnBacGZq+dnzgGhI0wCmjuS9guCc2yfEMPF5YXAQkUiF7xeUP5AqMkkNkPmU3 RDgR9nXhx79yGFkzW14luYSH4SKk2azw1/fTofWFAzbgJDDiFOeBSf0zUgSGk753 zM8RfvH7HDJsWFEY5+BQ4gSzcPnOVyVfKB0Y7xEdw7vxoFvccNt6T4XGhWvspBSc lILmLluF05tJfgW5ESGHCFxNuT1KfmhctkdLRZM6FwiKKARnOIH/6mizRw== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org