$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa File: c59f8dc7-041e-43d0-86e8-47f290f42602.roa (raw, json) Hash identifier: wbGgAQFYclbzPNA8guqxh9QRHYuW+7YWUUi/7Hjusr4= Subject key identifier: 19:74:EA:8C:89:FC:68:3C:3E:47:D4:76:88:AD:56:66:DB:6A:58:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60125BBF9A8EAC383B93FF40CFE71794334F6718 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:12:5b:bf:9a:8e:ac:38:3b:93:ff:40:cf:e7:17:94:33:4f:67:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=598e5b011cd96ca5c8829294abfc7e6ca8a825bebf080ba39cc3677a9d26fafd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fc:bc:80:d1:19:78:5e:35:01:24:54:a3:94: cb:e2:3a:54:e5:34:01:18:19:11:d8:0e:ea:46:64: 20:c2:02:9f:13:7a:9b:57:9e:5f:ed:df:5d:2a:80: d1:7b:ea:0f:80:d4:a0:41:d2:a6:a3:3f:3d:9b:4a: f8:87:61:02:24:99:2d:01:63:73:ca:ea:1b:73:34: 61:ad:7e:49:c2:5b:72:ce:bd:74:4e:d2:6e:fb:77: 40:f5:88:3e:82:47:c1:b2:60:a6:5e:27:f4:10:8f: 8e:3e:77:5a:26:b8:ee:d9:2c:f5:d6:6f:2f:b3:21: 54:a0:16:1b:1a:52:da:76:12:c0:8b:3d:12:de:b8: 0f:bb:7b:fc:19:8e:3a:c4:fc:e0:0b:9e:e9:be:0a: a0:db:2f:33:70:3f:cb:7b:c0:e6:84:34:db:2c:bd: 2d:86:a4:ce:6c:67:07:af:8b:f2:16:60:ad:92:a0: 28:6c:21:99:75:32:13:87:c1:26:6e:1e:24:75:dc: 02:8c:48:e8:77:b4:7c:3c:26:b5:68:fc:32:48:02: f7:be:2a:d4:1f:97:30:65:f5:a1:50:ee:18:e6:84: a6:e5:6f:c8:88:5f:a6:bd:82:d7:8c:5c:f3:c8:0d: a7:a7:73:df:c2:ef:85:44:30:68:56:fe:9f:b1:1a: a7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:74:EA:8C:89:FC:68:3C:3E:47:D4:76:88:AD:56:66:DB:6A:58:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 69:54:3d:fa:e8:8f:7a:74:e4:dd:2d:a0:de:dd:ce:35:04:7a: 60:4d:5b:79:8b:83:b4:b5:50:fa:21:74:fd:83:4f:26:52:67: 84:6c:6e:a3:3c:63:18:40:b8:35:96:08:7f:90:34:69:e3:5c: c9:07:e6:96:dd:d9:20:a2:02:6b:02:cc:d6:aa:96:e2:2d:f4: c4:8b:ce:76:39:e6:88:83:02:ed:33:6b:64:1e:aa:d5:bc:b5: 0b:e7:fa:f8:a4:8b:e9:08:55:62:1c:38:88:e9:ca:15:ce:5a: 7a:3d:eb:51:81:83:2f:a5:1a:60:8c:1f:8b:32:c1:59:2b:78: f8:9d:96:35:6c:40:14:9f:96:9f:3b:75:4b:31:ff:0c:71:77: 1b:e4:4d:7a:c6:e6:67:7a:bf:e3:bc:56:c2:50:ad:93:26:31: 2d:f7:7a:55:d2:61:97:01:e0:9c:03:2c:62:ff:a6:a0:b6:17: 28:7e:03:89:e9:5b:c1:a0:94:09:c6:da:15:6a:f9:c6:39:8d: 50:8b:8b:13:d3:50:90:17:f0:7b:1a:59:8c:27:70:86:80:1a: af:13:dc:44:84:5c:4f:85:31:48:b2:e5:57:7d:fd:4e:c8:e3: b6:4c:cb:05:cc:80:c7:14:ab:a4:4c:30:42:d7:fd:7c:ec:86: d6:b3:8e:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYBJbv5qOrDg7k/9Az+cXlDNPZxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OThlNWIwMTFjZDk2Y2E1Yzg4MjkyOTRhYmZjN2U2Y2E4 YTgyNWJlYmYwODBiYTM5Y2MzNjc3YTlkMjZmYWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV/LyA0Rl4XjUBJFSjlMviOlTlNAEYGRHYDupGZCDCAp8T eptXnl/t310qgNF76g+A1KBB0qajPz2bSviHYQIkmS0BY3PK6htzNGGtfknCW3LO vXRO0m77d0D1iD6CR8GyYKZeJ/QQj44+d1omuO7ZLPXWby+zIVSgFhsaUtp2EsCL PRLeuA+7e/wZjjrE/OALnum+CqDbLzNwP8t7wOaENNssvS2GpM5sZwevi/IWYK2S oChsIZl1MhOHwSZuHiR13AKMSOh3tHw8JrVo/DJIAve+KtQflzBl9aFQ7hjmhKbl b8iIX6a9gteMXPPIDaenc9/C74VEMGhW/p+xGqc9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGXTqjIn8aDw+R9R2iK1WZttqWLgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OWY4ZGM3LTA0MWUtNDNkMC04NmU4LTQ3ZjI5MGY0MjYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjUgAwDQYJKoZIhvcNAQELBQADggEBAGlUPfroj3p05N0toN7dzjUEemBN W3mLg7S1UPohdP2DTyZSZ4RsbqM8YxhAuDWWCH+QNGnjXMkH5pbd2SCiAmsCzNaq luIt9MSLznY55oiDAu0za2QeqtW8tQvn+viki+kIVWIcOIjpyhXOWno961GBgy+l GmCMH4sywVkrePidljVsQBSflp87dUsx/wxxdxvkTXrG5md6v+O8VsJQrZMmMS33 elXSYZcB4JwDLGL/pqC2Fyh+A4npW8GglAnG2hVq+cY5jVCLixPTUJAX8HsaWYwn cIaAGq8T3ESEXE+FMUiy5Vd9/U7I47ZMywXMgMcUq6RMMELX/Xzshtazjs8= -----END CERTIFICATE-----Generated at Fri Sep 22 18:47:36 2023 by rpki-client on console-fra.rpki-client.org