$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa File: c81689da-9859-446e-ac73-705fc08fb300.roa (raw, json) Hash identifier: FMYetAn3Fj4q8BXQfoQOek2aQVA0Xjq95k8c2duPUXk= Subject key identifier: 0D:40:CC:84:EA:97:0B:2C:FE:50:0C:90:72:AA:13:E8:08:0C:DD:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5198948F78FB93DE1603F165DE727BEB0B967F06 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 72.41.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:98:94:8f:78:fb:93:de:16:03:f1:65:de:72:7b:eb:0b:96:7f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=071e2bc2c4dd3c65ceaa40ad109980e434e563ea54dc15481d6f2c2ce686fbf0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:08:25:9b:be:07:4a:34:1d:d3:6b:57:d3:5b: 58:00:cd:c9:09:4c:02:da:ad:34:a6:e2:13:0d:5a: a5:ea:a4:5b:a6:09:b7:d6:7e:b2:5f:05:bd:8e:0d: 06:ed:ac:9c:2e:ac:a4:f4:d9:49:b6:51:24:31:bb: 7a:a2:09:91:a6:c4:da:fe:c4:33:33:b3:ca:e9:52: 5c:0a:c2:82:0e:67:aa:85:17:ae:2a:fa:d2:97:5e: e0:de:32:a4:f7:ab:6f:a8:8a:64:d0:76:2a:41:cb: f5:38:6a:1e:46:65:84:b5:6c:c4:b7:0c:ff:c9:e3: c8:d9:14:01:6f:5e:bd:9a:76:60:1b:80:c1:a9:46: 18:cb:7e:6a:d8:ab:fd:c6:f3:91:42:cf:21:e2:e1: 76:28:87:05:55:04:11:2c:17:d2:9a:85:b8:05:9b: 94:ea:c0:01:6e:e7:9d:0a:02:e4:7f:ac:13:ff:6f: 66:e6:fb:63:ca:db:3b:ea:68:67:1c:9e:f1:3f:96: b7:a2:76:5e:96:31:56:da:03:07:34:5e:9e:22:43: 6a:63:13:33:37:e0:6c:ee:3c:31:b2:ef:b8:69:ea: be:dd:5b:8a:75:84:c1:7c:d7:81:06:47:0c:a7:a3: 31:e9:38:72:4a:9c:87:a7:8c:b4:dd:f2:e5:7f:9b: 09:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:40:CC:84:EA:97:0B:2C:FE:50:0C:90:72:AA:13:E8:08:0C:DD:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.41.0.0/20 Signature Algorithm: sha256WithRSAEncryption ce:29:3a:40:c4:76:c8:8c:c1:b9:6b:08:af:b3:c8:bb:89:57: 9d:31:0f:9e:00:0f:3e:67:42:c4:d0:6f:e0:5d:8e:0c:25:60: 4d:82:72:54:42:a5:38:f9:69:19:2d:d9:2c:b4:bf:ab:ef:ed: f3:fb:0e:ae:a8:ac:a3:12:1d:f8:91:75:b5:7b:63:04:77:a6: 73:c6:a8:90:7c:45:1a:5a:4f:78:12:2c:09:8f:2e:ca:88:75: 55:a2:91:64:71:4f:96:31:da:9b:69:52:32:64:ee:83:ba:13: 62:20:35:0c:ea:4b:c7:4d:29:84:63:26:8d:b1:59:6a:75:c6: 53:ed:05:22:16:40:d1:81:2b:cb:7e:db:05:ab:d3:cb:df:ec: 1e:b5:6f:7d:4f:a7:59:31:4e:fb:58:25:75:09:d3:48:c1:ba: be:98:76:48:a0:1f:c4:84:fd:fd:f4:c5:ff:ad:22:8f:57:ef: 5a:b6:07:06:1b:e8:95:f2:d8:c0:02:a7:4f:52:40:e9:00:41: 22:6f:43:31:6b:57:06:53:d5:d7:e2:06:78:af:88:ae:4c:f6: 94:48:8c:3e:ce:16:f4:8c:ec:cf:5b:00:f9:fe:00:7d:14:74: 8c:b4:ec:7c:a2:be:2b:f9:c5:07:68:fb:28:79:7b:9a:68:ca: 05:64:9e:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUZiUj3j7k94WA/Fl3nJ76wuWfwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzFlMmJjMmM0ZGQzYzY1Y2VhYTQwYWQxMDk5ODBlNDM0 ZTU2M2VhNTRkYzE1NDgxZDZmMmMyY2U2ODZmYmYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8CCWbvgdKNB3Ta1fTW1gAzckJTALarTSm4hMNWqXqpFum CbfWfrJfBb2ODQbtrJwurKT02Um2USQxu3qiCZGmxNr+xDMzs8rpUlwKwoIOZ6qF F64q+tKXXuDeMqT3q2+oimTQdipBy/U4ah5GZYS1bMS3DP/J48jZFAFvXr2admAb gMGpRhjLfmrYq/3G85FCzyHi4XYohwVVBBEsF9KahbgFm5TqwAFu550KAuR/rBP/ b2bm+2PK2zvqaGccnvE/lreidl6WMVbaAwc0Xp4iQ2pjEzM34GzuPDGy77hp6r7d W4p1hMF814EGRwynozHpOHJKnIenjLTd8uV/mwkfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDUDMhOqXCyz+UAyQcqoT6AgM3X8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MTY4OWRhLTk4NTktNDQ2ZS1hYzczLTcwNWZjMDhmYjMwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARIKQAwDQYJKoZIhvcNAQELBQADggEBAM4pOkDEdsiMwblrCK+zyLuJV50x D54ADz5nQsTQb+BdjgwlYE2CclRCpTj5aRkt2Sy0v6vv7fP7Dq6orKMSHfiRdbV7 YwR3pnPGqJB8RRpaT3gSLAmPLsqIdVWikWRxT5Yx2ptpUjJk7oO6E2IgNQzqS8dN KYRjJo2xWWp1xlPtBSIWQNGBK8t+2wWr08vf7B61b31Pp1kxTvtYJXUJ00jBur6Y dkigH8SE/f30xf+tIo9X71q2BwYb6JXy2MACp09SQOkAQSJvQzFrVwZT1dfiBniv iK5M9pRIjD7OFvSM7M9bAPn+AH0UdIy07Hyiviv5xQdo+yh5e5poygVknl8= -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:25 2023 by rpki-client on console-ams.rpki-client.org