$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3b8b211-d2cc-4e8a-aee1-d0fdfcd4f44a.roa File: b3b8b211-d2cc-4e8a-aee1-d0fdfcd4f44a.roa (raw, json) Hash identifier: DXfQp9xO6WoSlGqGWtlMOQs6A23GSD7TM/LPfbCAgjg= Subject key identifier: 2A:5E:A4:9E:04:3B:E5:F3:D3:91:28:4D:4D:1F:FB:08:0B:A4:46:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04C749A315EC409FCB0EC9F1C4D9AFCD588F1B1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3b8b211-d2cc-4e8a-aee1-d0fdfcd4f44a.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 10:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c7:49:a3:15:ec:40:9f:cb:0e:c9:f1:c4:d9:af:cd:58:8f:1b:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=5d2c7eded008eed8430a6f7fd25b25e45cd21531e6a70f958a48ce9c7559f2b0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:be:bb:e8:27:79:f9:58:13:9a:e5:6b:7d:2a: e7:a0:b7:5a:41:f5:42:49:10:1a:c6:96:e9:61:ec: d9:5e:56:50:40:09:24:1d:3d:5e:d8:17:a1:11:9b: 7e:48:2c:4f:bf:18:2d:40:86:a7:3e:b2:d2:c1:2c: 10:34:28:12:8b:98:28:5d:72:ec:b7:34:3e:c3:d4: 05:9f:ab:d3:dc:0d:e7:bd:ea:8f:c8:7c:f0:ae:1e: 55:95:07:18:11:76:7e:65:c6:86:65:6c:da:c7:b0: fe:67:9b:ff:68:a0:57:f3:1b:9a:76:d9:94:2e:07: 61:50:02:1c:12:2f:4a:e5:ff:86:71:12:71:2c:26: e5:c0:cc:2d:9d:ac:4d:69:49:41:b5:61:df:5a:45: da:f7:d3:ec:4d:da:78:1a:74:3b:4b:9a:29:af:9c: 3b:9c:5d:0d:93:5c:c0:d0:40:47:d7:1c:46:76:b1: 12:d9:51:06:dc:7b:a6:ea:76:6f:e1:44:2f:fb:c1: d2:77:d8:40:49:c7:19:7c:20:7b:e3:ea:8e:d7:e9: 15:18:54:e9:bc:9f:1d:93:95:84:a3:12:92:d3:9e: 84:4c:86:b6:36:c1:34:9f:e8:e0:b7:92:a0:66:d3: 1f:2e:4f:a7:0e:ff:70:cd:bc:55:25:ff:ed:4f:45: 62:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5E:A4:9E:04:3B:E5:F3:D3:91:28:4D:4D:1F:FB:08:0B:A4:46:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3b8b211-d2cc-4e8a-aee1-d0fdfcd4f44a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.8.0/21 Signature Algorithm: sha256WithRSAEncryption a1:0c:72:21:29:6b:ab:94:44:ad:08:02:9c:78:2e:dc:10:e9: fa:c3:77:46:56:1e:1a:44:64:f2:01:79:3f:b2:e0:ec:84:83: ef:ff:4c:c3:73:66:f2:34:fd:b9:63:1b:9e:70:1e:bd:a7:a7: 29:fa:46:e2:9a:4f:70:16:cd:0f:d1:45:84:af:88:49:e7:e2: a3:5d:83:fd:8f:0c:5e:2c:03:a8:c9:f8:40:ba:ed:ea:fd:f2: 2a:f1:f4:df:e8:7c:a1:21:ce:df:bb:bf:b1:06:d7:69:62:d0: c3:0f:65:38:a8:cb:a4:8c:ea:10:2a:42:df:6a:d6:fe:c8:c1: af:e3:42:cb:62:89:97:a6:de:22:e9:6b:83:2b:1b:6d:88:ef: 64:43:0c:9a:10:a9:65:19:21:20:37:45:a2:1d:82:43:91:6c: 35:b3:02:1d:48:41:6c:83:67:09:73:46:9a:9c:34:5d:02:5f: 6e:58:32:11:e9:42:79:26:7a:8e:c6:77:14:33:7f:8d:68:fb: 7b:cf:91:ee:e9:ab:60:e2:25:4d:05:7d:bb:de:49:b0:5a:81: 9c:42:71:4e:a5:aa:22:8f:1d:a2:46:93:d8:6c:41:1e:aa:58: 08:c3:80:05:92:77:72:12:40:88:19:a7:ae:65:ee:1e:e3:68: b9:ad:f9:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBMdJoxXsQJ/LDsnxxNmvzViPGx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDJjN2VkZWQwMDhlZWQ4NDMwYTZmN2ZkMjViMjVlNDVj ZDIxNTMxZTZhNzBmOTU4YTQ4Y2U5Yzc1NTlmMmIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqvrvoJ3n5WBOa5Wt9Kuegt1pB9UJJEBrGlulh7NleVlBA CSQdPV7YF6ERm35ILE+/GC1Ahqc+stLBLBA0KBKLmChdcuy3ND7D1AWfq9PcDee9 6o/IfPCuHlWVBxgRdn5lxoZlbNrHsP5nm/9ooFfzG5p22ZQuB2FQAhwSL0rl/4Zx EnEsJuXAzC2drE1pSUG1Yd9aRdr30+xN2ngadDtLmimvnDucXQ2TXMDQQEfXHEZ2 sRLZUQbce6bqdm/hRC/7wdJ32EBJxxl8IHvj6o7X6RUYVOm8nx2TlYSjEpLTnoRM hrY2wTSf6OC3kqBm0x8uT6cO/3DNvFUl/+1PRWJRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKl6kngQ75fPTkShNTR/7CAukRjswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYjhiMjExLWQyY2MtNGU4YS1hZWUxLWQwZmRmY2Q0ZjQ0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjVwgwDQYJKoZIhvcNAQELBQADggEBAKEMciEpa6uURK0IApx4LtwQ6frD d0ZWHhpEZPIBeT+y4OyEg+//TMNzZvI0/bljG55wHr2npyn6RuKaT3AWzQ/RRYSv iEnn4qNdg/2PDF4sA6jJ+EC67er98irx9N/ofKEhzt+7v7EG12li0MMPZTioy6SM 6hAqQt9q1v7Iwa/jQstiiZem3iLpa4MrG22I72RDDJoQqWUZISA3RaIdgkORbDWz Ah1IQWyDZwlzRpqcNF0CX25YMhHpQnkmeo7GdxQzf41o+3vPke7pq2DiJU0Ffbve SbBagZxCcU6lqiKPHaJGk9hsQR6qWAjDgAWSd3ISQIgZp65l7h7jaLmt+bI= -----END CERTIFICATE-----Generated at Mon Aug 28 22:22:34 2023 by rpki-client on console-fra.rpki-client.org