$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa File: b30f0045-88bf-4cab-804d-bca257af8bb6.roa (raw, json) Hash identifier: lpOgPy7CaIDZuiqSOhu8ZLSWPSVq+ymEoox8eDmbxxo= Subject key identifier: 04:7F:E9:04:87:DE:10:2A:D9:D3:91:61:71:89:A9:F8:72:A2:1F:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69488BED74A5E51773F596C96CD7B6386A6E0B27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 207.207.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:48:8b:ed:74:a5:e5:17:73:f5:96:c9:6c:d7:b6:38:6a:6e:0b:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=959e899e6ca7efbbbe2c80358443433eb6e333850b341b23c1b7b93dc71044fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bf:22:92:6d:f6:36:4c:fa:e8:75:4a:f4:84: 9e:c4:e8:fe:d4:2b:46:12:79:fa:a2:f8:6d:73:87: f9:da:21:f0:cf:bc:50:9a:85:fd:5c:3c:4f:42:02: d9:f8:e2:8d:38:1b:90:f4:c8:dc:ab:75:6f:8a:08: a9:dd:e5:55:b0:f0:2c:a5:da:dc:e5:75:d4:69:e5: a6:e5:60:67:6d:ad:83:a2:17:10:78:9e:05:45:30: 0a:cb:ee:bd:aa:16:fb:97:96:a5:38:74:ec:d4:79: 7b:cb:f3:db:c4:b2:c5:b2:41:3f:95:b5:fe:8b:8c: 45:62:f3:47:d7:c5:f4:61:f4:2a:4d:18:8c:79:e3: 4c:94:63:50:2d:9b:f1:1f:5d:9d:5e:c8:9a:ac:0b: 89:70:b9:69:d1:f3:c8:64:e6:43:e0:90:19:b9:f4: 30:13:60:4e:9f:35:01:86:0e:1d:1a:52:18:66:a0: 58:4d:de:4b:48:58:61:41:8b:23:b4:96:20:9f:39: 82:5f:97:f3:d7:60:fa:3f:02:5c:83:ca:76:16:78: ce:c2:e1:8a:f1:b0:a8:00:45:3d:7b:f8:dc:53:07: 34:ec:72:71:b6:d8:64:81:f9:f4:f5:66:65:ac:65: 5b:70:d2:68:d3:38:fa:3b:8b:01:c8:4a:85:13:09: cc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7F:E9:04:87:DE:10:2A:D9:D3:91:61:71:89:A9:F8:72:A2:1F:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.207.64.0/19 Signature Algorithm: sha256WithRSAEncryption d5:31:97:f3:5f:74:7c:e1:8e:68:af:83:e4:6d:8b:e3:4a:53: 78:4a:fb:a7:57:28:98:54:7e:72:8c:9c:bd:00:b5:72:55:ab: d4:ef:46:c9:9e:e3:49:c5:a6:ab:d7:74:7f:4b:77:e1:92:b7: e2:44:39:fe:ac:b9:ae:52:39:83:76:60:7c:cf:62:41:05:9c: 3c:30:2b:c3:32:11:89:10:ec:9b:1d:a2:fb:ba:b0:23:90:21: 28:df:e6:70:fe:77:b9:34:1a:36:7b:97:99:81:8d:57:a7:ee: 93:b4:4e:36:4f:d7:24:6c:58:10:94:6d:7b:a9:a4:f6:a9:54: ae:bb:b2:96:2a:7e:f3:c4:b2:66:14:54:6e:89:cd:25:22:f1: 3c:81:3e:25:c4:91:55:80:8f:b8:86:20:31:b7:25:bc:be:1f: 30:7d:d8:0f:d0:72:b1:41:84:1f:4c:41:68:94:8d:71:70:5b: 9d:30:bf:b5:89:33:56:a1:02:48:f5:ce:15:98:b6:28:b2:cd: 21:52:de:d9:88:76:24:aa:82:af:ad:6e:9d:8b:52:bc:c3:82: 0a:1d:55:b4:ba:1e:84:9c:f4:a9:c8:92:97:1e:03:6a:75:cb: f2:08:2b:ee:87:11:2d:58:fa:b7:90:73:b5:02:e9:87:90:13: 09:35:d1:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaUiL7XSl5Rdz9ZbJbNe2OGpuCycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTllODk5ZTZjYTdlZmJiYmUyYzgwMzU4NDQzNDMzZWI2 ZTMzMzg1MGIzNDFiMjNjMWI3YjkzZGM3MTA0NGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmvyKSbfY2TProdUr0hJ7E6P7UK0YSefqi+G1zh/naIfDP vFCahf1cPE9CAtn44o04G5D0yNyrdW+KCKnd5VWw8Cyl2tzlddRp5ablYGdtrYOi FxB4ngVFMArL7r2qFvuXlqU4dOzUeXvL89vEssWyQT+Vtf6LjEVi80fXxfRh9CpN GIx540yUY1Atm/EfXZ1eyJqsC4lwuWnR88hk5kPgkBm59DATYE6fNQGGDh0aUhhm oFhN3ktIWGFBiyO0liCfOYJfl/PXYPo/AlyDynYWeM7C4YrxsKgART17+NxTBzTs cnG22GSB+fT1ZmWsZVtw0mjTOPo7iwHISoUTCcwlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBH/pBIfeECrZ05FhcYmp+HKiH/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMGYwMDQ1LTg4YmYtNGNhYi04MDRkLWJjYTI1N2FmOGJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPz0AwDQYJKoZIhvcNAQELBQADggEBANUxl/NfdHzhjmivg+Rti+NKU3hK +6dXKJhUfnKMnL0AtXJVq9TvRsme40nFpqvXdH9Ld+GSt+JEOf6sua5SOYN2YHzP YkEFnDwwK8MyEYkQ7Jsdovu6sCOQISjf5nD+d7k0GjZ7l5mBjVen7pO0TjZP1yRs WBCUbXuppPapVK67spYqfvPEsmYUVG6JzSUi8TyBPiXEkVWAj7iGIDG3Jby+HzB9 2A/QcrFBhB9MQWiUjXFwW50wv7WJM1ahAkj1zhWYtiiyzSFS3tmIdiSqgq+tbp2L UrzDggodVbS6HoSc9KnIkpceA2p1y/IIK+6HES1Y+reQc7UC6YeQEwk10Ts= -----END CERTIFICATE-----Generated at Fri Sep 22 16:18:48 2023 by rpki-client on console-ams.rpki-client.org