$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa File: b7f92332-54db-4d66-be7a-cf76fc42d00c.roa (raw, json) Hash identifier: HHLhwsCGWAcHQSjNmY6j2+JFlUF2rdSax/W/Cyy9DFA= Subject key identifier: 44:29:AA:C1:AB:50:F1:DA:72:59:7E:B2:BF:C0:66:1A:2F:38:B2:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 038B0D14E6359D7842FD6521121BB6422A3B2417 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:8b:0d:14:e6:35:9d:78:42:fd:65:21:12:1b:b6:42:2a:3b:24:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=ed12d0286842237e6b642a2d6fed4c4bebdffbd2ae4928d1d5edb81754d278a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a5:34:fd:c4:01:4d:f4:cf:6b:23:93:a8:5e: 17:db:0d:31:f3:c5:76:b7:9b:6d:5d:0e:6a:1c:5a: 1c:26:b4:e4:10:a2:e5:24:4b:04:1c:7d:d4:ed:35: 00:e0:68:40:85:01:37:d6:69:e2:d6:41:af:d8:49: d8:20:49:35:82:85:27:f0:8c:9e:8d:4a:1c:ba:89: 8e:e4:ef:51:bc:74:b1:f7:0d:a3:c2:f3:9f:00:56: e7:72:4e:5b:71:e3:8f:c3:10:0a:f0:0f:c8:16:74: fe:b8:88:a6:12:07:8c:a3:d8:6e:6f:20:63:54:5f: 9c:5c:0c:ad:80:9d:5b:fd:54:de:f6:3e:2b:09:3b: 88:9a:39:f8:65:c6:20:de:24:52:a4:fd:51:80:9d: 9c:c3:e0:1c:15:45:aa:05:f0:b6:d9:4d:20:73:59: c3:87:39:c7:2f:69:99:ea:fd:64:79:1b:7e:0f:91: 9b:44:3a:13:12:59:b5:ad:d0:32:92:1f:4f:75:bd: d8:de:10:26:f9:d3:26:c6:26:61:4f:16:a3:9c:61: 18:f5:da:12:33:ad:d7:b3:99:82:b6:bb:49:75:f4: ee:78:6b:1b:e9:c5:e4:f9:f1:5c:71:65:a1:c5:0e: df:1b:af:97:d6:ea:6d:40:1a:e9:f0:50:85:a0:48: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:29:AA:C1:AB:50:F1:DA:72:59:7E:B2:BF:C0:66:1A:2F:38:B2:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:c5:0c:b6:56:80:39:ba:0e:b4:34:ac:98:5a:e0:b9:d4:57: cb:0d:ee:81:22:e2:e6:6d:e7:05:93:97:9c:36:b1:ef:1d:d0: fd:cb:ad:90:3c:2e:95:b6:4b:d4:21:bc:92:db:69:fb:0f:f5: 5e:c5:bc:7f:f9:30:60:52:8d:e1:4b:5e:6d:38:fb:85:da:1c: a4:50:e5:f4:bf:0f:45:c8:2c:03:5d:0d:31:48:28:60:af:d8: bf:f7:0c:0c:0c:c5:35:32:a4:7f:a9:1f:77:c4:0f:26:02:65: 51:dc:3a:61:4f:01:6b:ab:74:09:90:42:98:96:d4:e6:41:61: 74:da:fd:ba:6b:a7:fe:ed:46:ed:c3:12:49:2d:f6:7d:49:b0: a3:0c:bd:77:f4:21:4f:49:cc:76:5a:99:2e:c8:b4:a6:c4:36: 53:10:16:9e:2d:6a:7d:89:ff:9a:83:c2:88:7c:a0:5c:6f:43: 1f:2f:08:b4:b5:3e:fc:d4:57:ef:74:02:9d:1e:3e:00:6e:48: 2a:98:fe:9e:85:2a:36:fe:b3:f6:5b:ff:af:e0:76:df:2a:1c: d5:40:ad:31:49:1e:be:d5:24:ab:32:62:82:84:85:fa:34:3d: 0b:fc:30:eb:9b:0d:53:10:4b:6c:e9:15:bf:67:87:6e:37:be: 26:09:25:ad -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA4sNFOY1nXhC/WUhEhu2Qio7JBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDEyZDAyODY4NDIyMzdlNmI2NDJhMmQ2ZmVkNGM0YmVi ZGZmYmQyYWU0OTI4ZDFkNWVkYjgxNzU0ZDI3OGEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIpTT9xAFN9M9rI5OoXhfbDTHzxXa3m21dDmocWhwmtOQQ ouUkSwQcfdTtNQDgaECFATfWaeLWQa/YSdggSTWChSfwjJ6NShy6iY7k71G8dLH3 DaPC858AVudyTltx44/DEArwD8gWdP64iKYSB4yj2G5vIGNUX5xcDK2AnVv9VN72 PisJO4iaOfhlxiDeJFKk/VGAnZzD4BwVRaoF8LbZTSBzWcOHOccvaZnq/WR5G34P kZtEOhMSWbWt0DKSH091vdjeECb50ybGJmFPFqOcYRj12hIzrdezmYK2u0l19O54 axvpxeT58VxxZaHFDt8br5fW6m1AGunwUIWgSNzbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURCmqwatQ8dpyWX6yv8BmGi84siowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3ZjkyMzMyLTU0ZGItNGQ2Ni1iZTdhLWNmNzZmYzQyZDAwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA48TANBgkqhkiG9w0BAQsFAAOCAQEAicUMtlaAOboOtDSsmFrgudRXyw3u gSLi5m3nBZOXnDax7x3Q/cutkDwulbZL1CG8kttp+w/1XsW8f/kwYFKN4UtebTj7 hdocpFDl9L8PRcgsA10NMUgoYK/Yv/cMDAzFNTKkf6kfd8QPJgJlUdw6YU8Ba6t0 CZBCmJbU5kFhdNr9umun/u1G7cMSSS32fUmwowy9d/QhT0nMdlqZLsi0psQ2UxAW ni1qfYn/moPCiHygXG9DHy8ItLU+/NRX73QCnR4+AG5IKpj+noUqNv6z9lv/r+B2 3yoc1UCtMUkevtUkqzJigoSF+jQ9C/ww65sNUxBLbOkVv2eHbje+JgklrQ== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:53 2023 by rpki-client on console-fra.rpki-client.org