$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa File: ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa (raw, json) Hash identifier: Zobzv8UTJfveNpG9v3qXwcoVFM6OgE5ioygegNYRwwU= Subject key identifier: 33:FB:53:66:6A:F8:66:7B:C3:E8:2C:4B:0D:29:DE:0F:D3:0B:1C:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16C35F5970BCF15E90F9259144035F0D9BA9F508 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:c3:5f:59:70:bc:f1:5e:90:f9:25:91:44:03:5f:0d:9b:a9:f5:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=bfe81838cc60a45d57d2a8df07bef415d43a5332f0942a714c621de43e323c4b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:67:18:02:44:d8:5f:59:52:eb:30:e7:0f:1d: 97:42:16:b8:a5:07:80:a8:6e:9d:dc:a6:6a:39:af: bb:d9:64:ad:98:1a:36:a6:36:fd:55:44:82:b7:79: 81:2c:f8:0d:06:2b:0c:44:a8:d4:ca:95:76:8f:15: 72:dc:23:76:28:58:29:66:35:87:e0:d4:a7:91:d8: 60:6f:b2:e1:cb:f8:59:df:0c:8f:fc:d1:18:0c:19: 69:0e:83:99:f6:12:be:9f:5a:25:e3:27:20:a4:69: 3e:cd:c7:e3:4a:f7:7e:69:6e:cf:38:f3:37:f4:53: 7c:42:c5:08:e8:21:ab:45:3c:d0:e9:5d:33:76:ed: ec:a5:27:37:3b:4b:de:d7:d5:e2:53:bb:74:68:31: a5:b3:d2:2f:d1:ba:57:68:0b:8d:fc:6d:9f:88:04: 16:c0:49:72:bd:fa:13:27:f7:f5:1e:66:3d:57:7d: 42:59:0f:fd:49:36:af:54:66:e0:f5:d6:31:64:82: 63:8a:75:28:60:1e:68:66:4c:6e:3a:a0:c8:7f:4d: 2c:70:11:29:95:32:7d:0d:05:b2:8a:20:50:60:44: fa:33:f2:5a:a6:db:56:5e:2e:af:d5:64:7c:55:95: 07:37:1d:05:56:a6:77:97:4c:2c:8b:e7:d3:44:dd: c0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FB:53:66:6A:F8:66:7B:C3:E8:2C:4B:0D:29:DE:0F:D3:0B:1C:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba99cf2b-f98d-456e-a185-f4f0abf4c5a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.112.0/21 Signature Algorithm: sha256WithRSAEncryption 46:f7:9b:ec:c1:58:26:31:db:c1:3e:4e:10:33:5b:c1:30:fd: 48:b0:0b:a0:f9:ba:94:08:ad:bd:80:15:d8:b8:10:e4:6e:a5: ea:d0:04:26:ed:20:f0:84:9e:3a:fa:4d:69:74:3f:28:e1:8e: c5:a0:e3:10:dd:ce:f9:6f:eb:b6:cb:f0:18:2c:03:cc:2c:52: e3:57:34:6e:05:27:6c:94:6f:66:40:b1:e8:b1:5b:88:3d:7a: 8f:0b:ae:b0:d1:65:fe:a0:ff:91:88:2c:41:a7:b2:66:5c:d7: 93:93:cb:75:38:a7:aa:2f:e5:1c:73:1e:4f:13:74:78:90:98: 04:4b:46:3f:10:32:c2:15:fd:ab:51:da:1f:68:99:a7:65:ef: 5b:f7:56:ae:c0:47:0e:21:1d:1d:5c:52:1a:ce:ff:50:78:e8: 3a:14:cc:7e:c4:52:c1:79:b4:65:b7:48:e7:99:b4:d6:a1:5f: 47:1a:1f:bc:22:c0:f2:cb:5c:72:09:a9:ab:53:0e:1f:79:f4: e2:61:bd:0a:71:95:de:6c:12:a7:a6:e4:4c:65:ec:30:f8:33: dd:b3:76:aa:98:15:d1:b2:f0:e6:e0:50:83:06:18:c1:a0:02: e0:be:81:95:45:94:45:ea:f8:d9:df:17:51:02:d1:61:82:28: bb:89:fd:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFsNfWXC88V6Q+SWRRANfDZup9QgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmU4MTgzOGNjNjBhNDVkNTdkMmE4ZGYwN2JlZjQxNWQ0 M2E1MzMyZjA5NDJhNzE0YzYyMWRlNDNlMzIzYzRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9ZxgCRNhfWVLrMOcPHZdCFrilB4Cobp3cpmo5r7vZZK2Y GjamNv1VRIK3eYEs+A0GKwxEqNTKlXaPFXLcI3YoWClmNYfg1KeR2GBvsuHL+Fnf DI/80RgMGWkOg5n2Er6fWiXjJyCkaT7Nx+NK935pbs848zf0U3xCxQjoIatFPNDp XTN27eylJzc7S97X1eJTu3RoMaWz0i/RuldoC438bZ+IBBbASXK9+hMn9/UeZj1X fUJZD/1JNq9UZuD11jFkgmOKdShgHmhmTG46oMh/TSxwESmVMn0NBbKKIFBgRPoz 8lqm21ZeLq/VZHxVlQc3HQVWpneXTCyL59NE3cA/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM/tTZmr4ZnvD6CxLDSneD9MLHAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTljZjJiLWY5OGQtNDU2ZS1hMTg1LWY0ZjBhYmY0YzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6HAwDQYJKoZIhvcNAQELBQADggEBAEb3m+zBWCYx28E+ThAzW8Ew/Uiw C6D5upQIrb2AFdi4EORuperQBCbtIPCEnjr6TWl0PyjhjsWg4xDdzvlv67bL8Bgs A8wsUuNXNG4FJ2yUb2ZAseixW4g9eo8LrrDRZf6g/5GILEGnsmZc15OTy3U4p6ov 5RxzHk8TdHiQmARLRj8QMsIV/atR2h9omadl71v3Vq7ARw4hHR1cUhrO/1B46DoU zH7EUsF5tGW3SOeZtNahX0caH7wiwPLLXHIJqatTDh959OJhvQpxld5sEqem5Exl 7DD4M92zdqqYFdGy8ObgUIMGGMGgAuC+gZVFlEXq+NnfF1EC0WGCKLuJ/Xw= -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:08 2023 by rpki-client on console-ams.rpki-client.org