$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3605182-73be-4b14-a693-b70c018bdd57.roa File: b3605182-73be-4b14-a693-b70c018bdd57.roa (raw, json) Hash identifier: arYUEyIgmxXH9ZtJ+ykv7xxJqINFJaLSElbzRiX7JLU= Subject key identifier: B3:A4:EB:B4:DA:8D:40:7C:B6:DC:84:5D:D7:F1:69:92:CB:55:8D:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49DBE2B799C61D9D92EAB5497D5C8C4B5FBEFB75 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3605182-73be-4b14-a693-b70c018bdd57.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 130.171.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:db:e2:b7:99:c6:1d:9d:92:ea:b5:49:7d:5c:8c:4b:5f:be:fb:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=f01dc360eef9d60b72dd6ac61eeb7aff500d8aa74e8cbdd4b46195363ed814d7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:66:d5:e1:3a:0a:ed:c8:ea:5c:ad:db:c4:d2: 15:54:99:a8:da:bb:5e:65:d6:d7:90:c1:d2:fb:c8: 23:51:be:2b:ec:f6:8c:e8:1e:a8:9f:26:fe:59:26: 56:7b:bd:73:46:04:eb:cd:cd:16:83:c0:c1:30:f0: 75:64:ee:51:cd:27:00:91:f4:bc:5e:04:8a:7e:de: a5:1a:6d:7c:b2:ff:42:30:1e:10:e9:95:c4:46:7d: 55:40:d2:2c:77:3d:de:3c:fd:22:ec:0a:92:7e:e0: 18:af:2a:d9:df:fa:1b:46:20:a5:1a:c3:09:a4:13: 0c:66:1f:ab:56:82:58:14:d8:4a:9e:72:69:f6:44: 0a:e1:17:66:4a:33:41:dd:10:ae:2a:bf:1f:46:6b: c7:91:57:f0:8c:ce:51:1b:72:e3:b3:7e:d1:b9:39: a5:5e:11:00:ac:c0:7b:f4:2c:99:db:cf:a5:af:5a: 64:b3:b5:42:41:25:9d:0f:a0:4a:cc:22:14:26:81: bf:1e:59:bc:a0:8c:0b:48:3a:f7:09:3d:fc:f6:6c: 8a:68:9d:89:ca:78:e3:33:07:86:9a:a9:2f:2e:ab: 3c:9d:a4:2e:87:ea:59:e0:8a:c5:14:68:56:27:39: ab:77:b0:40:97:ce:dc:f9:1a:a7:aa:02:c0:ad:e1: 62:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A4:EB:B4:DA:8D:40:7C:B6:DC:84:5D:D7:F1:69:92:CB:55:8D:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3605182-73be-4b14-a693-b70c018bdd57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.171.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:22:55:09:87:48:a6:06:46:da:1f:72:1f:1f:5b:f8:ec:98: 5f:12:20:ef:94:e1:a3:83:5f:44:6a:5d:f9:49:cc:14:6f:4f: 65:10:fd:a4:39:d2:e4:d3:90:22:1c:04:6b:39:16:96:c5:12: 5a:02:f2:c9:d7:a3:cf:ce:76:55:2d:4e:33:a9:72:58:53:4e: a2:e5:84:d2:57:5b:f5:38:2e:1d:a2:c8:85:f9:68:e3:f2:dc: a4:83:07:3d:a0:43:76:f1:5b:d7:04:e3:7f:e7:59:a8:a0:03: 18:f9:1a:4e:a4:a1:4d:fd:ba:40:94:5f:c8:0e:a4:83:43:33: 37:56:3e:b0:dd:fd:87:c7:a0:e2:40:99:40:45:dd:b3:41:cb: 28:bf:00:0c:0a:e3:95:87:83:b6:03:15:1d:d0:7e:8f:df:36: 5a:b4:cc:09:af:9d:51:36:16:78:78:01:27:56:6a:88:93:43: e1:21:1b:2b:7e:59:bb:6a:3c:fe:c5:32:65:e6:16:f9:1c:d6: ce:eb:b0:da:17:f8:91:2c:68:4a:fe:ad:12:69:0c:60:56:c7: 88:c9:dd:74:8d:66:fd:7e:00:b5:f0:c2:13:04:37:8b:1e:51: 68:2c:2a:f1:d7:2a:43:59:a4:97:a5:fc:16:4d:9e:fd:19:95: 42:84:b4:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSdvit5nGHZ2S6rVJfVyMS1+++3UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDFkYzM2MGVlZjlkNjBiNzJkZDZhYzYxZWViN2FmZjUw MGQ4YWE3NGU4Y2JkZDRiNDYxOTUzNjNlZDgxNGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDZtXhOgrtyOpcrdvE0hVUmajau15l1teQwdL7yCNRvivs 9ozoHqifJv5ZJlZ7vXNGBOvNzRaDwMEw8HVk7lHNJwCR9LxeBIp+3qUabXyy/0Iw HhDplcRGfVVA0ix3Pd48/SLsCpJ+4BivKtnf+htGIKUawwmkEwxmH6tWglgU2Eqe cmn2RArhF2ZKM0HdEK4qvx9Ga8eRV/CMzlEbcuOzftG5OaVeEQCswHv0LJnbz6Wv WmSztUJBJZ0PoErMIhQmgb8eWbygjAtIOvcJPfz2bIponYnKeOMzB4aaqS8uqzyd pC6H6lngisUUaFYnOat3sECXztz5GqeqAsCt4WJHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs6TrtNqNQHy23IRd1/FpkstVjQowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzNjA1MTgyLTczYmUtNGIxNC1hNjkzLWI3MGMwMThiZGQ1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCqzANBgkqhkiG9w0BAQsFAAOCAQEAVyJVCYdIpgZG2h9yHx9b+OyYXxIg 75Tho4NfRGpd+UnMFG9PZRD9pDnS5NOQIhwEazkWlsUSWgLyydejz852VS1OM6ly WFNOouWE0ldb9TguHaLIhflo4/LcpIMHPaBDdvFb1wTjf+dZqKADGPkaTqShTf26 QJRfyA6kg0MzN1Y+sN39h8eg4kCZQEXds0HLKL8ADArjlYeDtgMVHdB+j982WrTM Ca+dUTYWeHgBJ1ZqiJND4SEbK35Zu2o8/sUyZeYW+RzWzuuw2hf4kSxoSv6tEmkM YFbHiMnddI1m/X4AtfDCEwQ3ix5RaCwq8dcqQ1mkl6X8Fk2e/RmVQoS0CA== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:08 2023 by rpki-client on console-ams.rpki-client.org