$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa File: b482a701-b585-4388-b9c8-e05a3a240f2d.roa (raw, json) Hash identifier: MYEXzxw/NbgTMuGlutNsILNjIGMQuwMLKyf+W86DZX0= Subject key identifier: 13:E4:FD:B5:11:5E:BA:45:5B:5F:36:CD:ED:8D:03:54:EE:A1:7F:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E008854571E067D6FCA55A156505B26905DEEA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:00:88:54:57:1e:06:7d:6f:ca:55:a1:56:50:5b:26:90:5d:ee:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=eaeecbe05ba08710cf0c3bad8c3ab185fbb1c8c3c22afa0208c55e3b5dc1ea36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:12:30:35:ef:2b:8f:72:88:ff:b9:48:05: 8d:b4:a8:81:ec:03:f2:34:20:52:66:4a:ab:30:57: 74:dd:61:84:f7:00:81:f9:1d:bc:59:55:9b:a3:41: ce:e4:3a:d4:8b:e1:b4:83:93:d1:f7:36:09:10:ea: df:8c:f0:08:e8:d1:cc:44:15:6a:a4:e5:15:46:13: 31:be:ad:06:c6:bc:45:f8:55:1b:83:ee:c6:ad:93: 29:8c:c2:54:58:ce:f5:76:15:fc:1f:d5:3c:4e:e4: 6f:a5:c9:a1:98:e6:e8:c1:c5:a0:28:cb:2e:d1:b7: 29:70:e6:e5:08:04:de:98:5b:c1:93:78:e1:a5:ad: d4:ea:2a:3b:40:0b:af:1a:b6:b7:ec:8b:b4:62:e0: 96:5b:27:f1:72:23:17:26:69:80:25:c5:c4:6a:1e: 5c:00:a4:b6:54:4f:3c:99:ec:8f:82:40:fb:ce:45: a5:d1:f9:3c:76:cd:c4:92:5f:31:9e:eb:ec:3f:1e: 2c:8a:d6:22:3a:08:31:ca:85:01:82:04:bf:da:f2: 61:9b:4d:e2:8f:49:19:a2:d3:b2:91:f2:d1:36:38: 98:d1:4e:ad:34:4b:77:0f:a1:62:1a:b8:e4:12:4f: 46:12:11:c1:24:21:36:df:09:0c:b0:ec:7f:6b:dd: 26:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E4:FD:B5:11:5E:BA:45:5B:5F:36:CD:ED:8D:03:54:EE:A1:7F:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.23.0/24 Signature Algorithm: sha256WithRSAEncryption b4:d5:73:29:62:8d:f4:aa:49:92:13:1f:48:97:3a:31:ee:c4: 13:a4:38:1e:10:be:76:1f:4d:b1:24:fc:46:1a:0f:af:8b:cb: ea:f5:70:b3:1f:fa:c3:63:ec:57:6b:eb:2b:7f:70:2f:2d:c7: c0:a9:6d:f1:6f:2f:c5:1a:5b:ed:a4:61:6a:aa:21:11:6a:28: 7f:66:85:58:f0:34:7b:69:0f:25:48:6c:7b:74:73:fb:6c:76: 38:c0:e7:36:d9:e3:fc:20:81:ff:e2:3e:e8:5e:41:f6:af:43: 73:64:1e:28:16:b1:72:04:0e:40:39:bc:2f:f0:aa:7a:db:f0: 4a:d5:6b:81:ef:c6:32:db:17:8c:b5:7d:22:ed:2d:0c:4d:ef: 0b:e7:2d:91:40:ec:e2:0a:5e:55:b3:6c:98:9f:62:29:a3:dc: 6a:a2:16:a4:63:d8:5c:27:a2:c8:7c:7d:c1:d7:5f:0a:8a:04: c3:eb:38:8e:bf:c5:69:34:bf:9e:1e:19:d7:66:1b:a8:b1:18: 6d:6f:b4:97:57:f4:71:fa:c7:fe:23:2c:2f:6c:1b:cc:39:5a: 12:3b:21:d7:ce:bb:7a:ad:d4:08:3f:08:b6:a3:87:ff:d3:0d: 50:b5:d7:57:33:6d:69:73:47:bf:af:29:38:ce:28:e2:a0:1b: 8e:9a:dc:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXgCIVFceBn1vylWhVlBbJpBd7qcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWVlY2JlMDViYTA4NzEwY2YwYzNiYWQ4YzNhYjE4NWZi YjFjOGMzYzIyYWZhMDIwOGM1NWUzYjVkYzFlYTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC29hIwNe8rj3KI/7lIBY20qIHsA/I0IFJmSqswV3TdYYT3 AIH5HbxZVZujQc7kOtSL4bSDk9H3NgkQ6t+M8Ajo0cxEFWqk5RVGEzG+rQbGvEX4 VRuD7satkymMwlRYzvV2Ffwf1TxO5G+lyaGY5ujBxaAoyy7Rtylw5uUIBN6YW8GT eOGlrdTqKjtAC68atrfsi7Ri4JZbJ/FyIxcmaYAlxcRqHlwApLZUTzyZ7I+CQPvO RaXR+Tx2zcSSXzGe6+w/HiyK1iI6CDHKhQGCBL/a8mGbTeKPSRmi07KR8tE2OJjR Tq00S3cPoWIauOQST0YSEcEkITbfCQyw7H9r3SbXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE+T9tRFeukVbXzbN7Y0DVO6hfz4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ODJhNzAxLWI1ODUtNDM4OC1iOWM4LWUwNWEzYTI0MGYyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEhcwDQYJKoZIhvcNAQELBQADggEBALTVcylijfSqSZITH0iXOjHuxBOk OB4QvnYfTbEk/EYaD6+Ly+r1cLMf+sNj7Fdr6yt/cC8tx8CpbfFvL8UaW+2kYWqq IRFqKH9mhVjwNHtpDyVIbHt0c/tsdjjA5zbZ4/wggf/iPuheQfavQ3NkHigWsXIE DkA5vC/wqnrb8ErVa4HvxjLbF4y1fSLtLQxN7wvnLZFA7OIKXlWzbJifYimj3Gqi FqRj2Fwnosh8fcHXXwqKBMPrOI6/xWk0v54eGddmG6ixGG1vtJdX9HH6x/4jLC9s G8w5WhI7IdfOu3qt1Ag/CLajh//TDVC111czbWlzR7+vKTjOKOKgG46a3Pg= -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:02 2023 by rpki-client on console-fra.rpki-client.org