$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa File: bc24592b-b837-4433-a01c-d44a5b7e6a34.roa (raw, json) Hash identifier: EgGPkOjPMHpWDjktYLBl4KDVbHpvwejvlaVCXX6KKc8= Subject key identifier: 08:E1:80:3F:E0:C1:3E:4A:69:C1:6F:1B:5A:B1:2D:8F:6F:90:C4:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DE874E8E0F162C26D727B49F37D44E79F7B2471 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e8:74:e8:e0:f1:62:c2:6d:72:7b:49:f3:7d:44:e7:9f:7b:24:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3a4c644f20c4195738215ae69d5281de0aa63acea0b4d1d3ea46ea8e9f9ad09c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:75:20:bc:d7:ab:22:65:9e:71:96:99:63:6c: a3:49:2c:bd:10:07:75:79:5e:95:56:80:e7:da:41: d9:9d:07:7f:fe:58:a7:9e:60:ca:91:d9:11:0c:00: 70:ea:47:96:9b:d8:0d:99:be:66:30:4a:70:f6:1f: 93:c9:b8:50:33:ad:2e:8d:d3:ae:ec:86:c1:ae:73: 33:1d:65:0b:0f:83:f0:f4:9b:93:da:4b:41:fc:7c: 5b:59:ea:46:76:63:25:60:f7:fa:cf:e9:e2:dd:70: 26:37:bf:30:e8:46:25:83:88:87:76:09:ad:5e:58: ac:b8:d8:6f:0e:71:2c:7c:50:cc:69:aa:fd:25:ec: 09:8f:be:07:3d:e0:df:e9:a2:5f:ce:b7:44:40:a4: ed:e9:f4:b9:d2:be:72:de:49:65:4a:d2:41:a8:30: 22:dd:ab:0f:55:96:0f:3d:89:ba:88:07:ff:29:f2: 6b:f3:3b:dd:04:91:13:d6:bc:e0:37:0f:db:06:dc: 49:42:b2:76:2d:72:86:fb:13:ee:fe:2f:7f:16:ea: b3:b8:4a:33:40:71:71:03:4e:70:ad:92:b8:10:bf: 40:19:9e:57:76:7d:46:5a:b5:01:12:05:e2:c9:12: 20:b7:12:e5:07:d5:b7:26:c4:f9:3e:3b:49:82:e7: 5e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E1:80:3F:E0:C1:3E:4A:69:C1:6F:1B:5A:B1:2D:8F:6F:90:C4:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption c1:be:8a:8f:b8:82:7b:40:7d:5b:b2:4c:a7:23:10:b1:ae:7a: d0:01:bc:39:6a:70:44:25:83:e2:77:be:c6:97:a2:4f:c9:5b: b4:d5:23:7d:a3:6a:d6:49:d3:6e:dc:07:95:5b:e3:49:0d:81: ee:96:da:0f:5e:dd:78:aa:52:3c:13:a8:f4:f4:43:30:90:45: a4:93:d3:8f:68:6c:4e:76:8c:ec:ed:cf:ad:46:6b:fd:15:6b: 98:e5:2f:31:f5:13:c4:09:8f:db:1e:68:f9:b8:11:97:58:88: 0b:bb:ae:fb:ad:19:ad:af:b3:94:9c:ef:d5:fd:72:48:4a:80: 8e:2b:b6:b8:60:72:ed:dc:79:40:7c:0e:50:b9:f3:a2:ba:d9: ba:af:fe:90:1b:32:90:c4:92:71:ca:18:4e:15:2e:98:e9:f8: c5:c3:5c:dd:bb:eb:a7:85:b3:5d:c9:0a:f1:34:ba:bc:86:6a: a1:36:1c:48:e4:24:48:c9:50:1a:92:20:ed:fc:98:46:7c:0f: 03:db:5e:bf:b2:33:d2:49:c6:69:59:1c:05:c6:12:89:c1:69: ae:cf:11:e6:71:0c:9b:27:57:b4:56:b2:cf:27:74:0f:b3:8a: 09:da:45:78:b9:5f:52:88:9b:eb:f8:37:38:74:47:a2:c6:7e: 80:05:48:93 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXeh06ODxYsJtcntJ831E5597JHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTRjNjQ0ZjIwYzQxOTU3MzgyMTVhZTY5ZDUyODFkZTBh YTYzYWNlYTBiNGQxZDNlYTQ2ZWE4ZTlmOWFkMDljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYdSC816siZZ5xlpljbKNJLL0QB3V5XpVWgOfaQdmdB3/+ WKeeYMqR2REMAHDqR5ab2A2ZvmYwSnD2H5PJuFAzrS6N067shsGuczMdZQsPg/D0 m5PaS0H8fFtZ6kZ2YyVg9/rP6eLdcCY3vzDoRiWDiId2Ca1eWKy42G8OcSx8UMxp qv0l7AmPvgc94N/pol/Ot0RApO3p9LnSvnLeSWVK0kGoMCLdqw9Vlg89ibqIB/8p 8mvzO90EkRPWvOA3D9sG3ElCsnYtcob7E+7+L38W6rO4SjNAcXEDTnCtkrgQv0AZ nld2fUZatQESBeLJEiC3EuUH1bcmxPk+O0mC515lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCOGAP+DBPkppwW8bWrEtj2+QxBAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjMjQ1OTJiLWI4MzctNDQzMy1hMDFjLWQ0NGE1YjdlNmEzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdrzANBgkqhkiG9w0BAQsFAAOCAQEAwb6Kj7iCe0B9W7JMpyMQsa560AG8 OWpwRCWD4ne+xpeiT8lbtNUjfaNq1knTbtwHlVvjSQ2B7pbaD17deKpSPBOo9PRD MJBFpJPTj2hsTnaM7O3PrUZr/RVrmOUvMfUTxAmP2x5o+bgRl1iIC7uu+60Zra+z lJzv1f1ySEqAjiu2uGBy7dx5QHwOULnzorrZuq/+kBsykMSSccoYThUumOn4xcNc 3bvrp4WzXckK8TS6vIZqoTYcSOQkSMlQGpIg7fyYRnwPA9tev7Iz0knGaVkcBcYS icFprs8R5nEMmydXtFayzyd0D7OKCdpFeLlfUoib6/g3OHRHosZ+gAVIkw== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org