$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8b1a1ae-3f57-49cf-8741-42fded1d3af3.roa File: b8b1a1ae-3f57-49cf-8741-42fded1d3af3.roa (raw, json) Hash identifier: XAZeFYmmpGOWQd+6XnW8WctVMvVNmU7MlUVzlFP5Je0= Subject key identifier: 47:63:27:FB:3E:37:D6:88:A8:65:E9:B3:6F:BF:B8:8D:59:DF:0A:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 346C601C8B0D98424DFC9FEC11CB4BA944F0EDF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8b1a1ae-3f57-49cf-8741-42fded1d3af3.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.78.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6c:60:1c:8b:0d:98:42:4d:fc:9f:ec:11:cb:4b:a9:44:f0:ed:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c03cfd632886c6c49a783039e829cfa59dabff5eeb5ecf9098f7f3cf3d60c2d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ac:9e:fa:20:31:28:fe:32:77:e1:74:d4:dc: 15:9f:84:7c:10:e2:1c:d9:8d:f2:14:ba:fc:ae:19: 3a:a6:d9:0a:41:45:15:6f:92:3d:b9:62:43:e2:66: da:17:62:79:d6:ae:76:25:22:a9:0f:cf:83:a3:17: c2:1b:27:1d:3f:5c:86:36:c6:10:7d:be:71:9b:3f: 67:e2:97:43:f7:eb:9e:1a:26:da:dc:18:fd:17:36: 29:34:2d:66:aa:01:f4:6b:70:fc:60:98:09:19:5c: d7:dc:b7:82:d7:56:d2:6d:84:40:cc:58:61:f9:de: 54:2d:5a:46:13:a6:4a:82:82:2c:e6:30:ee:50:d8: f6:27:59:8a:23:e4:2b:56:a0:f2:46:21:84:6b:d2: 40:fb:54:fe:80:27:0d:e5:76:18:29:7e:25:ec:67: 60:b9:b3:f1:b9:7b:be:97:ac:e3:cc:8c:d7:04:4e: b1:92:19:e3:53:14:14:3c:52:96:e6:86:8a:c3:a4: 1f:79:0e:67:6d:f3:dc:4f:77:37:30:86:d4:e6:07: 72:97:40:91:94:0d:5e:77:60:34:d1:be:11:63:9d: 99:90:68:6d:6a:cc:6b:ca:f2:20:69:21:15:dc:19: b0:df:3c:ca:0e:da:b5:2e:76:70:dd:76:96:30:2e: 38:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:63:27:FB:3E:37:D6:88:A8:65:E9:B3:6F:BF:B8:8D:59:DF:0A:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8b1a1ae-3f57-49cf-8741-42fded1d3af3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.78.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:04:fe:0c:eb:9a:4e:92:ef:f7:a1:52:f3:82:9d:c9:48:db: 32:7c:36:f8:1e:cd:23:e5:59:e0:4d:46:92:74:01:78:fb:89: 39:f1:a2:2c:5f:4e:f9:3b:6d:00:c4:91:35:76:2c:90:17:47: 3f:7c:d4:bf:78:a6:e5:45:f7:14:67:65:f5:32:da:5a:9b:57: ec:5e:25:f7:20:8b:0d:a1:51:cf:75:20:f3:d1:83:3d:97:24: f4:6e:9d:df:63:cd:75:10:6f:e2:f1:79:bb:d4:ec:8f:d2:00: 2e:f8:4d:dc:3c:a8:8c:37:b3:45:4c:e9:83:bf:c4:7f:bb:09: 76:92:1d:0e:8a:60:2e:79:eb:55:75:51:f1:6a:8f:98:ca:15: 69:c9:7b:a6:3c:51:94:73:a1:64:fb:17:e6:10:04:78:71:e4: 97:98:30:52:39:24:25:9d:41:05:d5:d3:06:77:e0:35:0c:a8: 72:b5:64:bc:ef:7f:cd:f3:1e:50:48:cf:41:f2:ea:fa:73:dd: cf:f8:88:30:43:f5:e3:2d:7d:2a:9b:80:b8:e2:13:8e:44:4b: 69:86:92:c5:f2:1f:0c:0e:20:f1:d7:ca:ec:ed:c3:81:c0:06: c9:03:fb:78:46:2e:2b:f6:5f:1f:31:dd:d1:08:6f:67:02:e0: 20:ba:74:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNGxgHIsNmEJN/J/sEctLqUTw7fYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDNjZmQ2MzI4ODZjNmM0OWE3ODMwMzllODI5Y2ZhNTlk YWJmZjVlZWI1ZWNmOTA5OGY3ZjNjZjNkNjBjMmQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsrJ76IDEo/jJ34XTU3BWfhHwQ4hzZjfIUuvyuGTqm2QpB RRVvkj25YkPiZtoXYnnWrnYlIqkPz4OjF8IbJx0/XIY2xhB9vnGbP2fil0P3654a JtrcGP0XNik0LWaqAfRrcPxgmAkZXNfct4LXVtJthEDMWGH53lQtWkYTpkqCgizm MO5Q2PYnWYoj5CtWoPJGIYRr0kD7VP6AJw3ldhgpfiXsZ2C5s/G5e76XrOPMjNcE TrGSGeNTFBQ8UpbmhorDpB95Dmdt89xPdzcwhtTmB3KXQJGUDV53YDTRvhFjnZmQ aG1qzGvK8iBpIRXcGbDfPMoO2rUudnDddpYwLjhFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUR2Mn+z431oioZemzb7+4jVnfChEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4YjFhMWFlLTNmNTctNDljZi04NzQxLTQyZmRlZDFkM2FmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQTjANBgkqhkiG9w0BAQsFAAOCAQEAfQT+DOuaTpLv96FS84KdyUjbMnw2 +B7NI+VZ4E1GknQBePuJOfGiLF9O+TttAMSRNXYskBdHP3zUv3im5UX3FGdl9TLa WptX7F4l9yCLDaFRz3Ug89GDPZck9G6d32PNdRBv4vF5u9Tsj9IALvhN3DyojDez RUzpg7/Ef7sJdpIdDopgLnnrVXVR8WqPmMoVacl7pjxRlHOhZPsX5hAEeHHkl5gw UjkkJZ1BBdXTBnfgNQyocrVkvO9/zfMeUEjPQfLq+nPdz/iIMEP14y19KpuAuOIT jkRLaYaSxfIfDA4g8dfK7O3DgcAGyQP7eEYuK/ZfHzHd0QhvZwLgILp0cQ== -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org