$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa File: af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa (raw, json) Hash identifier: ljoLkZz7oor6v5q8NzxVDn6ePnGcjrgaLN3t43JqGJk= Subject key identifier: 50:90:BA:14:74:92:9B:1A:EC:D3:77:68:A5:75:B7:67:96:14:BF:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D561226CFFD45C5D6E36E775A197D272F5918C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:56:12:26:cf:fd:45:c5:d6:e3:6e:77:5a:19:7d:27:2f:59:18:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=1e6c6ff68c6b91b4cbe5f2c57582c4edc35a7ba2d4d06dcc271cf69d385a6baa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4f:50:27:37:4b:31:28:fb:5d:8a:43:dd:ad: 34:75:83:c0:29:17:8f:cd:44:c7:e9:19:2e:2b:d0: 9e:3b:6a:8b:1d:24:c8:cf:90:e3:88:3b:fd:e6:72: 42:45:84:83:42:b7:08:c5:1a:f8:f2:17:53:a8:71: e7:ee:48:a8:a5:5e:54:5c:ee:4a:3f:da:9b:f2:05: 72:6c:9c:fb:75:98:1a:bf:40:40:65:90:17:02:42: 08:eb:72:1b:16:14:70:59:2f:88:43:51:c9:94:3a: b9:62:05:07:b2:7f:ee:1d:c3:dc:3d:b0:02:4a:eb: c4:e0:7a:a9:59:7b:0a:79:09:af:31:20:dd:35:23: 81:80:36:5c:3c:1e:7b:ed:c4:7e:54:80:93:8e:a8: e1:34:bf:6b:fc:81:12:63:ee:64:ab:bb:dd:20:d3: 2e:55:0d:c0:fd:e8:40:d5:db:03:b7:e0:80:1f:a7: a7:ec:ef:fb:c3:4d:a5:65:77:5d:27:10:89:71:2e: fe:83:3b:b4:71:c8:22:c9:03:da:5f:7d:bf:4a:63: 01:a6:b2:7f:d2:a9:3b:59:ce:9a:cd:a1:d6:ba:59: 4c:59:76:da:34:e2:ae:8c:f3:98:3c:44:84:0d:dd: 25:db:c3:42:d0:c6:0b:26:7b:4b:a8:da:b2:e7:c1: 66:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:90:BA:14:74:92:9B:1A:EC:D3:77:68:A5:75:B7:67:96:14:BF:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption 58:cd:fa:68:d8:bf:01:b1:fa:09:1b:cb:78:51:70:e6:ff:ae: fc:35:bf:23:a9:c8:dc:68:84:31:b3:8c:15:e5:d0:39:9c:ab: 0d:16:52:18:69:aa:f0:b9:07:db:2f:97:c0:60:83:5a:92:d3: 52:3b:5e:16:d5:61:7d:e7:91:c3:2f:4f:43:1c:fd:c6:f0:8c: 33:60:07:38:30:ef:c9:e9:ab:ac:69:78:67:71:16:19:92:c7: af:07:41:fb:68:7a:ef:fc:3a:58:ca:41:65:0d:9d:d8:8c:04: d4:dd:e5:f8:7e:b8:50:2d:40:cf:0a:d0:8f:fd:65:cb:56:97: 4f:d5:17:d2:59:2e:fe:d2:e8:33:f6:0b:34:a3:53:d9:47:06: 09:7f:a4:d2:c4:87:c5:ab:bf:7c:03:74:35:52:23:71:f5:9c: 94:c8:16:55:8b:ef:76:28:d0:12:c0:1a:c1:e7:99:84:cb:f3: 69:78:1b:86:36:05:ef:42:2e:91:f8:d5:ec:3f:d3:5b:df:0c: b1:15:02:7e:11:e9:4f:29:d7:aa:a8:5c:3e:0a:78:f1:49:a0: c1:e0:06:7c:15:bf:57:fa:58:97:76:65:8f:3f:03:fb:9f:ec: 5c:93:4a:01:b0:e1:6b:45:22:29:82:ea:48:c1:92:4d:46:3b: 8c:9a:18:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbVYSJs/9RcXW4253Whl9Jy9ZGMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTZjNmZmNjhjNmI5MWI0Y2JlNWYyYzU3NTgyYzRlZGMz NWE3YmEyZDRkMDZkY2MyNzFjZjY5ZDM4NWE2YmFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXT1AnN0sxKPtdikPdrTR1g8ApF4/NRMfpGS4r0J47aosd JMjPkOOIO/3mckJFhINCtwjFGvjyF1OocefuSKilXlRc7ko/2pvyBXJsnPt1mBq/ QEBlkBcCQgjrchsWFHBZL4hDUcmUOrliBQeyf+4dw9w9sAJK68TgeqlZewp5Ca8x IN01I4GANlw8HnvtxH5UgJOOqOE0v2v8gRJj7mSru90g0y5VDcD96EDV2wO34IAf p6fs7/vDTaVld10nEIlxLv6DO7RxyCLJA9pffb9KYwGmsn/SqTtZzprNoda6WUxZ dto04q6M85g8RIQN3SXbw0LQxgsme0uo2rLnwWZdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUJC6FHSSmxrs03dopXW3Z5YUv5IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmN2EyOGFkLWMyZjktNDM1ZS1hOGVlLWU4NDYzOWQwMDZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYowDQYJKoZIhvcNAQELBQADggEBAFjN+mjYvwGx+gkby3hRcOb/rvw1 vyOpyNxohDGzjBXl0Dmcqw0WUhhpqvC5B9svl8Bgg1qS01I7XhbVYX3nkcMvT0Mc /cbwjDNgBzgw78npq6xpeGdxFhmSx68HQftoeu/8OljKQWUNndiMBNTd5fh+uFAt QM8K0I/9ZctWl0/VF9JZLv7S6DP2CzSjU9lHBgl/pNLEh8Wrv3wDdDVSI3H1nJTI FlWL73Yo0BLAGsHnmYTL82l4G4Y2Be9CLpH41ew/01vfDLEVAn4R6U8p16qoXD4K ePFJoMHgBnwVv1f6WJd2ZY8/A/uf7FyTSgGw4WtFIimC6kjBkk1GO4yaGLI= -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:42 2023 by rpki-client on console-fra.rpki-client.org