$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa File: b321cf91-4773-42bb-b05a-a6eee24370ac.roa (raw, json) Hash identifier: 7d1Mlxuhp21CjOaNGop8Rs6t6t4tEF4y/X1HAMsfnao= Subject key identifier: 75:37:E0:36:F3:72:B8:10:0C:35:1F:5C:0E:EB:3E:84:B3:E1:19:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 287F4D6A33F5E112B907D31DE00D468AEAE3B607 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 135.140.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7f:4d:6a:33:f5:e1:12:b9:07:d3:1d:e0:0d:46:8a:ea:e3:b6:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=d584005997744da29d6ca50a948aa6cfe88628e5c5f7da4132edf5f4dd8f1eab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cd:11:0c:1c:0d:f3:3f:32:89:0b:90:d0:af: 30:ad:ca:76:de:2a:35:a7:3c:9b:a2:a5:c6:9d:96: e2:16:5a:3b:1d:ea:1e:8b:0d:d2:76:12:b9:9c:44: e5:e7:7f:dd:e1:9d:f2:bf:22:a1:00:87:fe:ae:e9: ce:17:cf:92:80:4a:12:49:44:e2:89:d1:df:b4:38: 48:a2:df:29:c6:c8:b3:7c:3c:df:ec:95:68:fc:1d: c4:e5:34:c6:df:ef:9f:d1:c5:50:e3:35:44:88:b2: 4d:a0:23:b1:b5:72:ca:03:da:0e:12:11:ec:ec:83: e0:e3:b1:f7:c0:8e:99:bb:3b:26:57:3c:43:11:99: 8d:38:9b:3c:3a:bb:aa:4a:02:71:2e:41:de:5c:2d: b4:27:4d:a1:9d:85:d3:17:f8:96:ca:03:d7:cd:b3: 2f:f7:39:44:3f:fb:ac:db:0b:6a:fb:71:ff:43:b3: 74:47:93:03:ca:fb:15:95:a6:75:3e:cb:1d:0d:cc: 40:6b:ea:40:1f:da:d9:53:df:e9:2e:01:bb:14:fc: 25:fc:29:8e:71:92:5b:d5:b1:a7:de:19:49:52:9f: 68:e4:8e:77:b4:0e:32:26:0a:72:8b:fd:d0:2e:38: 0d:f3:49:b9:70:d7:cd:0a:c4:80:c6:bb:67:1c:2e: 33:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:37:E0:36:F3:72:B8:10:0C:35:1F:5C:0E:EB:3E:84:B3:E1:19:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 135.140.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:08:76:10:23:87:d1:58:c7:be:7c:56:bf:1e:1a:4b:e4:fa: d8:92:8f:16:f9:5b:4f:73:b1:ab:12:97:95:70:99:4e:ed:ad: 7d:24:9e:56:b2:ce:37:13:45:c3:c0:3a:a7:b2:30:88:76:e9: c2:88:df:56:8e:75:52:92:0e:f0:25:13:6e:c9:f4:91:66:a0: 66:33:29:95:c9:f7:a9:4e:e7:08:4c:8f:04:2b:87:85:1f:61: 27:24:31:cd:f9:b8:39:9c:44:91:9f:74:f3:52:7e:1c:15:49: b2:a4:4f:6d:0a:96:8d:cb:b2:b8:c1:65:7e:da:be:5d:47:e9: cc:ee:98:48:06:0c:0e:80:fd:77:e8:18:c6:9e:5b:f2:53:0b: a9:6a:62:95:4f:da:4f:06:38:75:20:ab:f6:b8:a9:4a:7d:54: ed:08:18:79:cb:dd:c6:0a:21:86:98:80:98:e5:61:8a:68:53: 9e:5d:f4:67:d3:d1:bd:24:45:6c:54:83:2b:af:56:e4:55:d5: 38:e0:3d:88:96:b4:fb:ed:0b:b6:4c:6d:54:bd:e8:f4:87:46: 37:e5:6e:08:25:e3:eb:b3:27:1e:9b:fa:f4:a4:54:11:12:3a: c2:c2:81:0d:29:84:81:20:65:aa:0d:ba:f0:3d:4a:81:7e:78: 25:06:cc:f3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKH9NajP14RK5B9Md4A1GiurjtgcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTg0MDA1OTk3NzQ0ZGEyOWQ2Y2E1MGE5NDhhYTZjZmU4 ODYyOGU1YzVmN2RhNDEzMmVkZjVmNGRkOGYxZWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRzREMHA3zPzKJC5DQrzCtynbeKjWnPJuipcadluIWWjsd 6h6LDdJ2ErmcROXnf93hnfK/IqEAh/6u6c4Xz5KAShJJROKJ0d+0OEii3ynGyLN8 PN/slWj8HcTlNMbf75/RxVDjNUSIsk2gI7G1csoD2g4SEezsg+DjsffAjpm7OyZX PEMRmY04mzw6u6pKAnEuQd5cLbQnTaGdhdMX+JbKA9fNsy/3OUQ/+6zbC2r7cf9D s3RHkwPK+xWVpnU+yx0NzEBr6kAf2tlT3+kuAbsU/CX8KY5xklvVsafeGUlSn2jk jne0DjImCnKL/dAuOA3zSblw180KxIDGu2ccLjNvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdTfgNvNyuBAMNR9cDus+hLPhGXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMjFjZjkxLTQ3NzMtNDJiYi1iMDVhLWE2ZWVlMjQzNzBhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCHjDANBgkqhkiG9w0BAQsFAAOCAQEAmwh2ECOH0VjHvnxWvx4aS+T62JKP FvlbT3OxqxKXlXCZTu2tfSSeVrLONxNFw8A6p7IwiHbpwojfVo51UpIO8CUTbsn0 kWagZjMplcn3qU7nCEyPBCuHhR9hJyQxzfm4OZxEkZ9081J+HBVJsqRPbQqWjcuy uMFlftq+XUfpzO6YSAYMDoD9d+gYxp5b8lMLqWpilU/aTwY4dSCr9ripSn1U7QgY ecvdxgohhpiAmOVhimhTnl30Z9PRvSRFbFSDK69W5FXVOOA9iJa0++0LtkxtVL3o 9IdGN+VuCCXj67MnHpv69KRUERI6wsKBDSmEgSBlqg268D1KgX54JQbM8w== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:53 2023 by rpki-client on console-fra.rpki-client.org