$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa File: b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa (raw, json) Hash identifier: POBs3CR4cDK14MNVzhscLxfR0xtKYSp59G7fv4HJEV4= Subject key identifier: 79:2C:41:8B:7F:2B:4C:18:E4:B9:61:D2:27:6B:6C:0A:A0:CF:B1:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5038E06991510653BE252C50111B59202A71F6AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:38:e0:69:91:51:06:53:be:25:2c:50:11:1b:59:20:2a:71:f6:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=8d263d57188db0bff9eb13647159de7d477855696ce637621066eddf408bd0e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:3a:e3:bf:44:07:14:8d:bb:a5:a0:b0:a0: 4a:c2:70:fb:b9:ff:d3:3d:3a:0b:e4:4a:d4:b8:6b: 80:53:f5:2d:90:86:f8:dd:2e:ef:dd:cf:6e:5a:c4: 79:f0:f3:c1:62:33:bf:11:af:5c:28:ef:a0:83:10: bc:a1:6e:4c:7a:72:66:0e:ec:3f:d9:87:36:c7:33: 12:9b:1b:0e:f3:6a:82:03:4f:56:47:4e:4d:9f:0f: 92:aa:1e:e9:b3:82:41:24:ab:14:15:bb:ec:36:7b: a5:12:22:9a:77:15:ae:9f:c3:14:af:cb:6d:2d:d7: 21:fe:1a:f8:45:6f:5e:6c:10:03:f9:de:12:0e:4e: 62:76:5f:3a:ea:50:e3:c3:90:6f:9f:a0:2b:17:f5: 43:16:9b:16:9a:82:eb:1b:df:9f:8d:4d:7b:b8:fe: b6:08:d5:77:f8:8b:51:27:61:da:01:94:d1:d5:14: da:e2:07:53:eb:2c:de:fd:ad:2f:36:7c:60:8e:90: 3d:4f:ec:b1:13:98:10:e4:f5:c0:a9:3f:69:a1:4e: bc:8b:f3:32:60:a9:db:c2:9c:30:03:54:5a:82:04: 28:31:d3:b2:73:5d:f5:2c:ca:3c:0c:64:3f:a8:b4: 50:a9:91:1e:ac:30:a9:60:47:24:9a:11:f0:00:29: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2C:41:8B:7F:2B:4C:18:E4:B9:61:D2:27:6B:6C:0A:A0:CF:B1:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.36.0/22 Signature Algorithm: sha256WithRSAEncryption 69:d6:3f:f0:9a:6a:61:f3:70:63:df:18:05:79:75:6d:56:71: dc:b6:96:de:0e:74:fd:93:81:7a:45:71:53:09:99:5a:0e:a4: f7:c7:e0:fb:0b:3e:c3:70:30:89:ce:3a:93:4e:aa:ee:3e:e3: 33:86:be:97:bc:4b:ea:2b:8d:94:1a:3e:a1:bf:1e:c4:29:d5: 3b:32:d4:ba:ef:85:b0:74:08:a3:bd:5a:8f:4f:09:86:eb:0e: b5:5c:c3:af:a4:42:a0:cc:08:e1:04:49:ed:07:e9:d9:3a:e3: a1:46:1a:3c:61:14:39:61:45:ac:3c:a7:5d:34:59:0e:6d:1a: 33:c1:89:49:1a:52:ec:f3:7b:76:a9:21:68:6d:67:56:ec:94: d0:42:d6:e7:b8:0b:8a:24:aa:18:a2:2c:57:f9:d4:a2:7b:0a: 24:95:5a:24:49:e0:1d:98:d5:53:3e:fa:19:02:99:8e:75:0e: 37:28:db:f6:15:8d:74:a8:9a:54:93:3b:bc:86:9d:7b:9d:cf: 70:75:e1:81:1c:36:75:51:11:78:97:d7:7f:fc:6f:45:99:ee: 20:b7:89:ed:aa:74:f7:dc:6c:be:75:85:9d:15:c0:7b:e0:94: e0:05:4d:65:b2:a5:a8:28:f0:a3:f0:5f:01:da:b1:02:da:b0: e6:9b:4c:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUDjgaZFRBlO+JSxQERtZICpx9qowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDI2M2Q1NzE4OGRiMGJmZjllYjEzNjQ3MTU5ZGU3ZDQ3 Nzg1NTY5NmNlNjM3NjIxMDY2ZWRkZjQwOGJkMGUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvRDrjv0QHFI27paCwoErCcPu5/9M9OgvkStS4a4BT9S2Q hvjdLu/dz25axHnw88FiM78Rr1wo76CDELyhbkx6cmYO7D/ZhzbHMxKbGw7zaoID T1ZHTk2fD5KqHumzgkEkqxQVu+w2e6USIpp3Fa6fwxSvy20t1yH+GvhFb15sEAP5 3hIOTmJ2XzrqUOPDkG+foCsX9UMWmxaagusb35+NTXu4/rYI1Xf4i1EnYdoBlNHV FNriB1PrLN79rS82fGCOkD1P7LETmBDk9cCpP2mhTryL8zJgqdvCnDADVFqCBCgx 07JzXfUsyjwMZD+otFCpkR6sMKlgRySaEfAAKcyJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeSxBi38rTBjkuWHSJ2tsCqDPsa0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMzcyMzllLWMxZWEtNDYyYy05NGNlLTVhMThmOTlmM2ZiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgACQwDQYJKoZIhvcNAQELBQADggEBAGnWP/CaamHzcGPfGAV5dW1Wcdy2 lt4OdP2TgXpFcVMJmVoOpPfH4PsLPsNwMInOOpNOqu4+4zOGvpe8S+orjZQaPqG/ HsQp1Tsy1LrvhbB0CKO9Wo9PCYbrDrVcw6+kQqDMCOEESe0H6dk646FGGjxhFDlh Raw8p100WQ5tGjPBiUkaUuzze3apIWhtZ1bslNBC1ue4C4okqhiiLFf51KJ7CiSV WiRJ4B2Y1VM++hkCmY51Djco2/YVjXSomlSTO7yGnXudz3B14YEcNnVREXiX13/8 b0WZ7iC3ie2qdPfcbL51hZ0VwHvglOAFTWWypago8KPwXwHasQLasOabTKo= -----END CERTIFICATE-----Generated at Sat Sep 23 00:46:20 2023 by rpki-client on console-fra.rpki-client.org