$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5c5b340-1806-4d78-ab67-39da37d669ef.roa File: b5c5b340-1806-4d78-ab67-39da37d669ef.roa (raw, json) Hash identifier: +/VnWStZL2qymqe1PCiaG8elwbY7eNKnT5y1D3/jMys= Subject key identifier: 5C:E2:3E:40:F6:BF:17:23:7F:FD:F3:82:47:45:5E:07:0E:CC:41:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39DFED692DAFE2E483B68BA6F10FCA53250E48B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5c5b340-1806-4d78-ab67-39da37d669ef.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:df:ed:69:2d:af:e2:e4:83:b6:8b:a6:f1:0f:ca:53:25:0e:48:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=2984eb343f70315684c719f5dbde66981b01b586c68a8d570633f77c9a40143c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0f:ef:22:75:0e:85:a4:bb:aa:4f:2e:28:a4: f4:d5:c7:0b:b3:a4:ef:33:7f:15:9f:56:2a:24:6f: 7d:ee:d7:92:47:5c:df:56:f3:37:82:38:e3:45:b9: 2f:45:9f:78:e4:f5:a3:f0:0c:28:36:79:25:03:53: b0:50:1e:3d:71:a9:6d:3d:12:ab:00:11:0b:e1:5a: a9:f2:e5:d8:c2:0d:85:a2:0e:94:00:88:63:fa:65: ef:9f:d0:12:ac:46:dd:63:a2:ea:2e:16:b7:0b:84: bc:7d:f1:bf:e4:ab:60:bf:85:f1:15:1b:c4:a7:b1: 95:f5:8c:5b:89:a2:41:38:4e:5b:01:46:c1:fc:83: 8e:e9:ee:26:ba:a9:bf:0c:2d:b7:58:34:2b:85:f2: cd:1b:dc:89:d8:83:5f:06:ad:ae:10:c1:f9:65:5c: d5:a8:be:bf:b1:73:10:b7:f6:30:f7:82:0b:34:af: fe:bf:64:0e:b6:38:68:01:c8:af:21:77:a6:3e:15: 36:80:ce:6d:d4:58:31:79:9d:37:d2:76:59:8e:93: 7d:7c:43:99:2d:18:f4:54:c2:e8:ba:6b:e7:51:a6: 23:2d:0b:8b:1e:f7:10:a2:26:01:d9:bd:7b:19:c5: b8:7a:3c:03:3d:3b:b8:c5:29:64:1c:de:71:da:ed: 4d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E2:3E:40:F6:BF:17:23:7F:FD:F3:82:47:45:5E:07:0E:CC:41:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5c5b340-1806-4d78-ab67-39da37d669ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.132.0/23 Signature Algorithm: sha256WithRSAEncryption d7:ef:13:52:4c:d1:a7:84:66:cd:b9:31:50:02:b9:db:ab:fa: 6a:09:15:ca:18:00:2b:04:55:d2:94:7b:dd:23:e2:cd:d7:72: ca:8a:09:d3:7c:11:a4:26:93:de:60:c7:dc:05:fe:80:15:6a: 80:55:e3:2b:cc:88:6d:1e:ac:ee:29:f2:60:f9:0b:8f:df:23: ff:c3:60:7b:b4:25:e4:1b:c6:03:e3:8c:00:4a:fa:45:45:73: 9f:0c:be:ad:71:58:13:7f:b8:08:ef:79:88:65:25:88:57:be: 85:36:80:6a:21:fb:dc:ae:f1:00:72:bb:c0:e1:c6:d6:86:b9: c5:2a:4e:aa:b6:79:f7:65:61:50:40:98:ca:e7:44:55:8c:1a: 5b:61:a4:8d:e3:ae:57:16:87:3e:f8:43:3e:c0:0d:8f:8a:9d: 46:08:36:10:2e:dd:3f:15:64:7d:65:6e:ac:26:db:79:77:68: 9b:83:01:f8:59:a4:cc:7f:5f:c2:e0:fa:fc:b7:33:89:38:6e: 3d:2b:1c:db:94:13:1a:1a:f7:d2:49:4e:28:c8:eb:da:8c:fb: 40:4c:bc:01:01:91:58:51:34:75:8c:3f:0c:24:b6:7e:1e:8a: ff:df:d5:5c:1e:24:48:1f:9a:82:21:54:f3:57:4b:ad:45:23: ee:84:cd:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOd/taS2v4uSDtoum8Q/KUyUOSLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTg0ZWIzNDNmNzAzMTU2ODRjNzE5ZjVkYmRlNjY5ODFi MDFiNTg2YzY4YThkNTcwNjMzZjc3YzlhNDAxNDNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPD+8idQ6FpLuqTy4opPTVxwuzpO8zfxWfViokb33u15JH XN9W8zeCOONFuS9Fn3jk9aPwDCg2eSUDU7BQHj1xqW09EqsAEQvhWqny5djCDYWi DpQAiGP6Ze+f0BKsRt1jououFrcLhLx98b/kq2C/hfEVG8SnsZX1jFuJokE4TlsB RsH8g47p7ia6qb8MLbdYNCuF8s0b3InYg18Gra4QwfllXNWovr+xcxC39jD3ggs0 r/6/ZA62OGgByK8hd6Y+FTaAzm3UWDF5nTfSdlmOk318Q5ktGPRUwui6a+dRpiMt C4se9xCiJgHZvXsZxbh6PAM9O7jFKWQc3nHa7U11AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXOI+QPa/FyN//fOCR0VeBw7MQaAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1YzViMzQwLTE4MDYtNGQ3OC1hYjY3LTM5ZGEzN2Q2NjllZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM34QwDQYJKoZIhvcNAQELBQADggEBANfvE1JM0aeEZs25MVACudur+moJ FcoYACsEVdKUe90j4s3XcsqKCdN8EaQmk95gx9wF/oAVaoBV4yvMiG0erO4p8mD5 C4/fI//DYHu0JeQbxgPjjABK+kVFc58Mvq1xWBN/uAjveYhlJYhXvoU2gGoh+9yu 8QByu8DhxtaGucUqTqq2efdlYVBAmMrnRFWMGlthpI3jrlcWhz74Qz7ADY+KnUYI NhAu3T8VZH1lbqwm23l3aJuDAfhZpMx/X8Lg+vy3M4k4bj0rHNuUExoa99JJTijI 69qM+0BMvAEBkVhRNHWMPwwktn4eiv/f1VweJEgfmoIhVPNXS61FI+6EzXs= -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:08 2023 by rpki-client on console-ams.rpki-client.org