$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa File: b5a85156-56d9-44fe-b845-5494537aa440.roa (raw, json) Hash identifier: gANyxwKOc/pfeexH5tE/pyv8nVufTOMmZ5/BRmZOIJg= Subject key identifier: D3:84:DC:C5:08:F0:C2:2F:E4:00:38:3C:73:ED:C1:5C:B2:A4:07:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 438A2C0DB671318811DBD573A974EFAAD70983A3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8a:2c:0d:b6:71:31:88:11:db:d5:73:a9:74:ef:aa:d7:09:83:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=2f9b2905e14b63af130a035f5100fb0dad1c764d5979957d0e4cc5ca471c18b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:05:4a:3a:cc:b8:5b:91:af:30:27:57:67:f6: e2:5c:bd:3c:47:d4:f9:2e:1f:99:06:09:a2:e1:cc: 61:db:a4:1c:d5:fb:39:2d:89:d3:c3:66:88:0c:3d: 31:50:87:b9:c7:00:aa:20:56:ca:ef:38:55:c8:0f: 29:61:d3:78:3d:93:fc:7d:93:20:31:03:16:0a:9e: 3a:5e:1b:24:37:cc:77:25:a8:95:07:d6:95:72:bf: 79:60:e5:6c:fa:97:81:67:cc:6a:f6:3f:61:3b:72: fc:43:3a:47:e4:4f:f3:a2:04:c4:94:03:36:36:8b: d1:6b:ac:76:97:d4:ce:73:5d:33:e1:bf:e6:5d:5f: aa:c6:90:2f:07:3b:89:02:56:71:c8:aa:5f:f9:6f: 61:2c:df:51:a2:e6:e9:d5:42:a3:3a:85:53:34:c2: b1:e2:9e:6e:60:90:e3:8e:8a:5e:ed:88:4d:b4:ff: 59:a1:e6:ee:50:0d:0e:7a:e1:b8:0e:42:35:62:a6: 1a:f6:da:da:12:28:52:c2:8f:5a:85:c3:f6:5b:cb: 6a:01:0a:fa:b8:a6:78:2d:23:a8:a8:ed:8c:1f:ff: f7:19:c7:c3:55:36:59:a2:a2:3c:e0:eb:5f:e5:9b: 13:af:a7:03:b0:5a:4b:80:7b:35:30:4f:8c:fd:73: 2b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:84:DC:C5:08:F0:C2:2F:E4:00:38:3C:73:ED:C1:5C:B2:A4:07:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.234.0/24 Signature Algorithm: sha256WithRSAEncryption 53:10:5d:71:6a:ba:73:b7:89:3d:4a:36:a3:fb:07:0f:79:28: 82:0e:81:ad:3c:75:59:1e:07:00:ed:85:2a:2e:b8:a4:b9:76: dc:e6:d5:2e:28:16:df:de:f8:42:3c:2f:4e:5e:53:49:08:bb: 27:98:03:90:fb:51:6f:e1:e1:9c:23:bb:44:53:0f:a7:43:8a: bb:28:9f:f8:63:98:7f:19:14:5f:5a:82:45:f2:50:b4:c0:90: d4:45:af:9b:71:67:58:80:ba:8d:f9:a6:e0:b2:9c:af:3a:3b: 65:80:75:5c:c4:55:4d:04:fe:c1:ce:a4:ac:b2:f3:78:ee:61: bf:92:0d:b2:9e:ce:e1:6f:43:d4:15:40:e2:38:98:4f:d9:ed: fd:d7:1f:68:d4:fa:a1:08:8c:b4:21:e0:cf:96:c3:49:d4:97: b8:2d:f7:09:d2:7f:1a:f4:6f:f2:33:da:26:36:95:74:68:ed: ad:46:91:a9:1c:d8:99:c8:e5:5f:8f:35:e2:bb:7c:db:5b:b8: ba:1f:26:c9:3e:4b:36:36:b3:59:b7:5c:a8:e9:1d:95:e8:55: 33:bb:8f:6f:a4:9e:c3:0e:99:85:e9:0b:be:1f:fa:96:4b:ac: 33:68:44:36:1a:ee:01:d8:0f:f2:d8:4f:54:96:be:0d:ca:84: d7:da:97:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4osDbZxMYgR29VzqXTvqtcJg6MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjliMjkwNWUxNGI2M2FmMTMwYTAzNWY1MTAwZmIwZGFk MWM3NjRkNTk3OTk1N2QwZTRjYzVjYTQ3MWMxOGI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtBUo6zLhbka8wJ1dn9uJcvTxH1PkuH5kGCaLhzGHbpBzV +zktidPDZogMPTFQh7nHAKogVsrvOFXIDylh03g9k/x9kyAxAxYKnjpeGyQ3zHcl qJUH1pVyv3lg5Wz6l4FnzGr2P2E7cvxDOkfkT/OiBMSUAzY2i9FrrHaX1M5zXTPh v+ZdX6rGkC8HO4kCVnHIql/5b2Es31Gi5unVQqM6hVM0wrHinm5gkOOOil7tiE20 /1mh5u5QDQ564bgOQjViphr22toSKFLCj1qFw/Zby2oBCvq4pngtI6io7Ywf//cZ x8NVNlmiojzg61/lmxOvpwOwWkuAezUwT4z9cyu5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU04TcxQjwwi/kADg8c+3BXLKkB/UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1YTg1MTU2LTU2ZDktNDRmZS1iODQ1LTU0OTQ1MzdhYTQ0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTeowDQYJKoZIhvcNAQELBQADggEBAFMQXXFqunO3iT1KNqP7Bw95KIIO ga08dVkeBwDthSouuKS5dtzm1S4oFt/e+EI8L05eU0kIuyeYA5D7UW/h4Zwju0RT D6dDirson/hjmH8ZFF9agkXyULTAkNRFr5txZ1iAuo35puCynK86O2WAdVzEVU0E /sHOpKyy83juYb+SDbKezuFvQ9QVQOI4mE/Z7f3XH2jU+qEIjLQh4M+Ww0nUl7gt 9wnSfxr0b/Iz2iY2lXRo7a1Gkakc2JnI5V+PNeK7fNtbuLofJsk+SzY2s1m3XKjp HZXoVTO7j2+knsMOmYXpC74f+pZLrDNoRDYa7gHYD/LYT1SWvg3KhNfal5Y= -----END CERTIFICATE-----Generated at Mon Aug 28 23:15:02 2023 by rpki-client on console-fra.rpki-client.org