$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3c76e72-5a35-49a7-b084-28f3969b5618.roa File: c3c76e72-5a35-49a7-b084-28f3969b5618.roa (raw, json) Hash identifier: pTznQMZ/Mvi0W3TBsc8IEMqMpxMv/M4lObObiAgq2j8= Subject key identifier: BD:CC:49:F2:7F:CA:5A:EE:A0:00:49:A5:24:2B:9A:D1:7F:3E:DE:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DC4BF1D32D8D6DFFF49805BE0D82397CDCC189B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3c76e72-5a35-49a7-b084-28f3969b5618.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c4:bf:1d:32:d8:d6:df:ff:49:80:5b:e0:d8:23:97:cd:cc:18:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3fc6a2588acb6bb9b83cede209f6fee34e458ff67cf67a758cd54128a877d615, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:88:06:ce:f3:d9:35:82:e6:63:e6:f3:b9: f3:6b:25:a6:6a:bf:1b:6c:56:7a:66:ae:f5:ce:5e: 28:08:a3:73:04:a7:11:7a:27:0a:75:41:ab:41:18: 9f:73:c5:f3:18:3c:a1:8d:8d:36:fb:44:9f:52:f8: 79:65:51:0d:38:b7:14:c9:83:c0:97:13:7c:ac:2c: 0d:52:c2:a9:ff:f8:76:cb:74:3c:2b:ce:30:dd:36: 9b:d6:7d:a5:22:27:f9:42:cc:02:9d:2f:35:f1:59: e5:a2:49:ef:0e:9d:e5:a5:4c:90:ff:06:67:46:d1: 17:c3:46:52:b6:03:c4:47:af:7f:e0:81:67:65:7a: a2:dc:0f:c7:b3:4c:ae:fe:bf:c0:25:1a:2b:6d:f9: 64:ec:7f:9d:44:10:13:cc:93:83:be:a8:7a:1e:9e: af:84:15:e4:be:f5:0e:5a:fb:66:a1:3c:81:a5:d1: 33:e3:f6:6a:4b:89:68:22:8e:27:c5:cf:f5:c1:80: 9a:42:cc:ac:eb:48:fe:78:0e:28:3f:04:c5:d7:b5: 1c:1b:10:87:94:c4:f0:f2:93:de:62:db:77:5a:22: 8f:cd:78:61:be:11:f1:d5:e2:9a:6e:e2:e9:52:db: c2:05:61:c3:c8:dd:91:3c:68:6b:22:07:05:f7:7f: ef:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CC:49:F2:7F:CA:5A:EE:A0:00:49:A5:24:2B:9A:D1:7F:3E:DE:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3c76e72-5a35-49a7-b084-28f3969b5618.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.160.0/24 Signature Algorithm: sha256WithRSAEncryption 10:43:ff:a3:6b:49:ad:8d:7f:98:23:a2:78:34:a8:a9:9d:eb: f4:67:97:f1:ef:4d:89:3a:b4:c6:fd:fa:8e:41:1c:9a:2f:8f: 8a:23:68:93:62:81:7b:b5:73:8a:38:23:5e:76:9a:ae:68:45: 8b:d3:84:4e:b4:e5:e5:88:f5:71:41:53:ca:43:84:a1:48:e2: 73:71:93:04:6b:b5:77:97:db:0e:d8:63:9b:35:0c:ab:ff:7d: e9:fa:1d:5b:36:f1:8a:19:f1:57:bc:a1:fd:84:e6:14:cf:ba: 0f:6b:7d:56:40:2e:90:94:54:3d:e3:e7:82:8d:97:7b:d3:f8: c8:e5:55:8b:c3:fa:d6:19:7d:fb:c7:ec:4b:78:ba:72:e9:46: 5d:ca:01:c3:b4:e9:43:d5:e0:c3:73:16:ba:70:c8:c8:4d:a5: 2e:1b:25:cc:14:c4:90:ac:5b:a7:c7:d5:2f:ef:6d:76:0e:5d: 97:9f:50:a5:6f:ad:a0:87:5a:7f:44:86:43:ef:e5:b5:52:39: 03:a5:da:2b:89:b0:65:ce:f5:57:1c:d8:19:d4:7d:ed:a5:4b: 07:93:23:64:49:e0:e7:1c:bb:e5:80:57:bc:9f:b2:dd:c3:0c: 8c:e6:fe:80:b3:46:00:4b:8f:16:b8:48:af:96:68:5d:ec:c3: 07:c4:e8:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTcS/HTLY1t//SYBb4Ngjl83MGJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmM2YTI1ODhhY2I2YmI5YjgzY2VkZTIwOWY2ZmVlMzRl NDU4ZmY2N2NmNjdhNzU4Y2Q1NDEyOGE4NzdkNjE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgHogGzvPZNYLmY+bzufNrJaZqvxtsVnpmrvXOXigIo3ME pxF6Jwp1QatBGJ9zxfMYPKGNjTb7RJ9S+HllUQ04txTJg8CXE3ysLA1Swqn/+HbL dDwrzjDdNpvWfaUiJ/lCzAKdLzXxWeWiSe8OneWlTJD/BmdG0RfDRlK2A8RHr3/g gWdleqLcD8ezTK7+v8AlGitt+WTsf51EEBPMk4O+qHoenq+EFeS+9Q5a+2ahPIGl 0TPj9mpLiWgijifFz/XBgJpCzKzrSP54Dig/BMXXtRwbEIeUxPDyk95i23daIo/N eGG+EfHV4ppu4ulS28IFYcPI3ZE8aGsiBwX3f+8LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvcxJ8n/KWu6gAEmlJCua0X8+3t4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzYzc2ZTcyLTVhMzUtNDlhNy1iMDg0LTI4ZjM5NjliNTYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjUqAwDQYJKoZIhvcNAQELBQADggEBABBD/6NrSa2Nf5gjong0qKmd6/Rn l/HvTYk6tMb9+o5BHJovj4ojaJNigXu1c4o4I152mq5oRYvThE605eWI9XFBU8pD hKFI4nNxkwRrtXeX2w7YY5s1DKv/fen6HVs28YoZ8Ve8of2E5hTPug9rfVZALpCU VD3j54KNl3vT+MjlVYvD+tYZffvH7Et4unLpRl3KAcO06UPV4MNzFrpwyMhNpS4b JcwUxJCsW6fH1S/vbXYOXZefUKVvraCHWn9EhkPv5bVSOQOl2iuJsGXO9Vcc2BnU fe2lSweTI2RJ4Occu+WAV7yfst3DDIzm/oCzRgBLjxa4SK+WaF3swwfE6Hw= -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:16 2023 by rpki-client on console-fra.rpki-client.org