$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7c0cb74-fe99-4d60-a3ad-d4c299875974.roa File: b7c0cb74-fe99-4d60-a3ad-d4c299875974.roa (raw, json) Hash identifier: pWyJpyGBfqyqbEuGl/4606VEApkRwVV2vpbp9WxeTW0= Subject key identifier: 99:CB:29:9F:C1:4B:30:E3:E8:EC:0E:34:F1:AE:5E:78:A9:CF:29:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 017F5BC596E757BA05E1DC1DE07E4C8378A97BCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7c0cb74-fe99-4d60-a3ad-d4c299875974.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 204.130.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:7f:5b:c5:96:e7:57:ba:05:e1:dc:1d:e0:7e:4c:83:78:a9:7b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=8790e2cae9be6b68115779eee940d74f3b5ecd8f98aaddc91ae59b61263feebf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a1:82:4d:0c:77:9f:6f:8a:83:36:9d:4f:21: 32:75:a4:db:bb:4b:1e:fc:3d:a4:19:e6:cc:7e:a3: 91:fc:a1:39:ed:0e:6f:dc:c5:8e:8c:ca:f6:18:93: 6b:25:e6:73:02:ca:72:6d:ee:36:43:2b:15:07:54: 4f:ae:bc:6a:81:29:2d:8e:70:68:a4:f6:f8:e7:2b: c5:5f:12:64:3b:ac:76:6f:97:67:96:e6:04:ab:ab: ba:64:4b:66:8d:a0:d8:99:f7:c0:43:32:b2:3e:fa: c5:dc:6e:a1:3a:b0:bf:3d:e0:f6:1c:08:9b:cc:ff: 47:aa:8c:b5:b1:9e:df:5c:90:88:73:50:48:86:7d: 7d:a4:4a:d0:c9:c9:8d:f7:15:63:2b:53:a7:51:f0: 51:3e:25:13:19:29:27:9c:94:f3:48:d0:f9:92:fe: db:02:64:aa:32:a9:c0:10:d5:8a:32:29:57:fa:08: d4:0a:88:46:70:7a:c2:06:84:f9:78:53:23:b6:ef: 63:d0:a7:04:df:33:f7:9e:fe:81:e4:d0:03:4e:86: 78:9b:9e:8b:0f:c3:d3:35:a9:7d:45:b6:47:8c:39: ad:8d:2a:ed:c6:51:b8:85:2f:87:49:c7:70:7b:a7: a6:a3:48:9e:6b:f5:e5:6f:00:84:8a:7d:ef:c2:16: 0a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CB:29:9F:C1:4B:30:E3:E8:EC:0E:34:F1:AE:5E:78:A9:CF:29:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7c0cb74-fe99-4d60-a3ad-d4c299875974.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.130.202.0/24 Signature Algorithm: sha256WithRSAEncryption d3:00:66:2c:67:75:96:be:dd:b7:25:2d:07:a4:2f:2c:b8:17: 5f:fd:9c:54:79:b0:74:78:fc:7f:df:4c:0f:d8:1c:60:10:1b: d5:7b:53:e8:48:a4:d3:57:43:c3:de:d5:0f:b5:a5:31:9b:1d: 6f:74:fc:9e:60:7e:2a:bb:e3:88:5b:97:c3:d2:34:9d:51:c6: 4e:56:93:c4:ae:28:a5:e6:77:d6:ba:6a:5c:18:e6:b8:23:c3: 02:05:09:1f:21:bc:d1:18:c9:05:a5:42:0c:a4:78:ea:a3:cb: 30:47:fb:cd:47:ef:44:4e:57:89:bf:f1:45:a2:3f:95:6d:8b: 43:46:b5:8f:95:0f:ee:ea:25:38:51:af:9a:86:49:de:15:c3: 05:bc:20:7e:a5:dd:e0:77:30:d2:56:b0:57:57:4e:7b:4e:fb: e1:1a:90:02:87:45:1e:b5:95:60:5a:39:79:e4:ea:d8:23:14: 21:a1:69:b8:d2:53:8a:a4:3a:af:eb:73:50:37:54:0c:46:1f: 9b:22:03:da:86:a7:80:08:d5:d4:c2:c8:90:45:bf:84:1c:96: 35:94:38:5d:54:0f:97:0f:f6:e4:4c:7f:b4:89:c6:7d:b1:91: ad:14:71:b4:96:4e:74:1c:96:f8:b2:3c:3f:fa:8e:a0:d9:39: ed:8b:ee:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAX9bxZbnV7oF4dwd4H5Mg3ipe80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzkwZTJjYWU5YmU2YjY4MTE1Nzc5ZWVlOTQwZDc0ZjNi NWVjZDhmOThhYWRkYzkxYWU1OWI2MTI2M2ZlZWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXoYJNDHefb4qDNp1PITJ1pNu7Sx78PaQZ5sx+o5H8oTnt Dm/cxY6MyvYYk2sl5nMCynJt7jZDKxUHVE+uvGqBKS2OcGik9vjnK8VfEmQ7rHZv l2eW5gSrq7pkS2aNoNiZ98BDMrI++sXcbqE6sL894PYcCJvM/0eqjLWxnt9ckIhz UEiGfX2kStDJyY33FWMrU6dR8FE+JRMZKSeclPNI0PmS/tsCZKoyqcAQ1YoyKVf6 CNQKiEZwesIGhPl4UyO272PQpwTfM/ee/oHk0ANOhnibnosPw9M1qX1FtkeMOa2N Ku3GUbiFL4dJx3B7p6ajSJ5r9eVvAISKfe/CFgppAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmcspn8FLMOPo7A408a5eeKnPKYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3YzBjYjc0LWZlOTktNGQ2MC1hM2FkLWQ0YzI5OTg3NTk3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADMgsowDQYJKoZIhvcNAQELBQADggEBANMAZixndZa+3bclLQekLyy4F1/9 nFR5sHR4/H/fTA/YHGAQG9V7U+hIpNNXQ8Pe1Q+1pTGbHW90/J5gfiq744hbl8PS NJ1Rxk5Wk8SuKKXmd9a6alwY5rgjwwIFCR8hvNEYyQWlQgykeOqjyzBH+81H70RO V4m/8UWiP5Vti0NGtY+VD+7qJThRr5qGSd4VwwW8IH6l3eB3MNJWsFdXTntO++Ea kAKHRR61lWBaOXnk6tgjFCGhabjSU4qkOq/rc1A3VAxGH5siA9qGp4AI1dTCyJBF v4QcljWUOF1UD5cP9uRMf7SJxn2xka0UcbSWTnQclviyPD/6jqDZOe2L7sw= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org