$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa File: c1007d85-fbf5-45da-82c5-653042baeda9.roa (raw, json) Hash identifier: qSsBVSZeINdHT36PClTdRP19ET5IHiZaRu+yh3H5bCM= Subject key identifier: 4E:29:E9:51:1F:46:FB:A1:DE:34:97:C2:14:7A:F5:2E:38:BC:6A:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BDB350BBD5E0DEC12B924DE92A1A0F16FA39E02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:db:35:0b:bd:5e:0d:ec:12:b9:24:de:92:a1:a0:f1:6f:a3:9e:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=828d5e2f466ce0e26f89d8a9eaebe2f461c6d98585af83d1cef661d6d684c0ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:20:9c:fd:d6:61:72:c0:ce:35:5d:62:b9: 73:88:00:b6:24:d1:de:1e:84:7c:13:58:8b:2a:38: 77:87:7a:6d:f8:e4:6d:d5:fc:15:e4:47:be:15:a5: 09:a1:c5:56:14:89:82:eb:80:8d:95:e4:68:12:eb: d6:3c:c6:cf:4b:4c:db:97:77:20:fa:99:d1:02:2e: 7e:c5:0c:94:b3:67:f6:78:22:07:d0:d7:3c:48:2a: a8:08:1c:75:0c:5d:fa:8d:17:e4:a7:11:c0:3b:47: 17:bd:a4:04:c1:3e:16:dc:b7:1b:81:08:36:26:e7: 03:48:ca:09:06:db:07:02:c9:88:88:06:c5:2b:5c: 2f:52:c4:be:70:7e:a1:da:05:53:18:13:47:bb:21: dd:8d:4b:fd:b0:e0:78:b8:16:35:05:f1:d7:19:9e: 73:dd:6d:fd:52:e5:75:59:f0:39:27:de:88:3d:73: 01:17:88:e5:b5:45:1e:76:69:3d:f7:a1:46:75:ed: 3f:30:6b:b1:6e:0e:de:db:78:6e:df:e5:96:7f:c0: 8c:0d:eb:d4:1c:29:04:da:0f:95:b0:1b:6b:25:6d: e1:ed:02:1f:de:81:af:ad:8a:5d:bd:2d:6a:a2:a3: db:0a:e3:e6:46:65:1c:3a:c2:11:e9:1f:e1:53:dd: d2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:29:E9:51:1F:46:FB:A1:DE:34:97:C2:14:7A:F5:2E:38:BC:6A:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:1f:30:f6:07:53:6b:87:27:0e:dd:4c:08:9b:e3:7c:9a:4f: a3:86:3b:56:4d:44:a4:03:08:22:da:32:42:e8:48:71:9d:bd: 12:8d:51:e3:07:fb:23:c6:e5:5d:b9:fc:b9:55:8c:cf:1b:46: 3c:42:75:fd:39:11:9a:21:15:32:bc:95:52:d1:b2:56:0e:5c: ba:b7:c9:11:6f:ec:a9:49:e6:27:47:4f:bc:43:f1:b5:c4:a4: 69:65:6c:45:bf:17:4c:74:da:60:e6:6e:89:1b:11:13:60:15: 75:c7:93:8f:11:59:f7:11:aa:5a:db:80:8f:3a:34:36:dc:5c: 38:0d:61:2b:ec:b2:8a:28:88:b4:93:32:95:7c:37:f9:bf:01: ae:ce:24:8c:a7:38:1f:35:d7:b2:51:c8:6a:88:bd:dd:1f:f3: 13:19:58:2f:b8:3a:ce:f6:9d:eb:48:33:2d:8a:5d:7b:ce:40: 36:3d:87:b0:d5:2c:01:3e:53:6c:dd:6e:5e:59:49:56:e2:f1: 2a:1e:fc:54:5f:df:eb:7b:95:a2:00:ff:71:5b:14:c8:da:5d: 9d:0f:45:12:25:b0:88:8f:30:2f:e1:fa:53:9f:98:b4:9d:c2: c5:cb:8b:eb:55:17:3b:4d:13:5b:70:23:8b:19:46:50:c2:0b: c3:da:96:dd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa9s1C71eDewSuSTekqGg8W+jngIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjhkNWUyZjQ2NmNlMGUyNmY4OWQ4YTllYWViZTJmNDYx YzZkOTg1ODVhZjgzZDFjZWY2NjFkNmQ2ODRjMGFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU/iCc/dZhcsDONV1iuXOIALYk0d4ehHwTWIsqOHeHem34 5G3V/BXkR74VpQmhxVYUiYLrgI2V5GgS69Y8xs9LTNuXdyD6mdECLn7FDJSzZ/Z4 IgfQ1zxIKqgIHHUMXfqNF+SnEcA7Rxe9pATBPhbctxuBCDYm5wNIygkG2wcCyYiI BsUrXC9SxL5wfqHaBVMYE0e7Id2NS/2w4Hi4FjUF8dcZnnPdbf1S5XVZ8Dkn3og9 cwEXiOW1RR52aT33oUZ17T8wa7FuDt7beG7f5ZZ/wIwN69QcKQTaD5WwG2slbeHt Ah/ega+til29LWqio9sK4+ZGZRw6whHpH+FT3dIRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTinpUR9G+6HeNJfCFHr1Lji8alcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMDA3ZDg1LWZiZjUtNDVkYS04MmM1LTY1MzA0MmJhZWRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAYR8w9gdTa4cnDt1MCJvjfJpPo4Y7 Vk1EpAMIItoyQuhIcZ29Eo1R4wf7I8blXbn8uVWMzxtGPEJ1/TkRmiEVMryVUtGy Vg5curfJEW/sqUnmJ0dPvEPxtcSkaWVsRb8XTHTaYOZuiRsRE2AVdceTjxFZ9xGq WtuAjzo0NtxcOA1hK+yyiiiItJMylXw3+b8Brs4kjKc4HzXXslHIaoi93R/zExlY L7g6zvad60gzLYpde85ANj2HsNUsAT5TbN1uXllJVuLxKh78VF/f63uVogD/cVsU yNpdnQ9FEiWwiI8wL+H6U5+YtJ3CxcuL61UXO00TW3AjixlGUMILw9qW3Q== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org