$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa File: c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa (raw, json) Hash identifier: r8o1DMx1dT5A7xDHTHjGcP8FgF/Fc/w5eHWFGTaSzjc= Subject key identifier: 8A:7A:2B:A5:6E:68:D3:DC:E2:39:87:CF:80:AC:8E:64:F2:CE:31:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B84245B9BEDF70B8DA944664DA9836660FA33B1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:84:24:5b:9b:ed:f7:0b:8d:a9:44:66:4d:a9:83:66:60:fa:33:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=8a76fa4ada012451afd77cc2fc9cb42d3bd96e51e025ce20498818d73a89960c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6e:90:7a:71:31:12:5f:f1:6b:7a:be:d9:3d: dd:74:5d:c5:1d:15:1e:22:a3:d1:61:fe:7b:83:69: 54:30:25:fe:aa:62:67:d3:73:54:07:aa:1b:0b:e7: a6:d3:9a:63:45:7c:a6:67:a1:89:98:3d:a7:ec:39: 11:e0:6b:e2:81:43:27:92:c1:46:c6:1b:fc:c7:2d: b5:9c:24:54:96:49:c3:77:a3:c0:ca:89:ae:06:53: 8a:de:4d:28:bd:3b:c5:ab:c0:c0:03:fb:56:1d:33: e8:b8:20:d1:71:3c:d5:ce:b8:ee:7f:f3:e1:0e:08: b7:c3:1b:11:20:5f:3e:af:83:1a:b3:9c:45:d3:99: 39:67:9c:bf:54:09:77:6e:8d:87:c6:11:05:22:c6: 10:0f:8a:73:cc:b6:a7:8a:87:ce:5e:59:59:3d:73: 1c:66:d2:2e:eb:ec:fb:d1:43:2e:c1:9f:56:e5:05: c2:54:a2:fd:90:8b:98:bc:56:db:e6:6d:34:63:04: 6e:e1:ea:a5:78:85:f0:d9:8a:d0:82:31:e4:16:99: 74:80:b8:79:db:b6:21:b6:78:58:b6:88:ea:ca:16: a7:96:2d:e6:ef:3e:3d:c0:7d:bd:ab:da:3b:16:a3: 1a:f5:13:93:24:cf:9b:a7:b3:24:46:8f:e7:62:b8: 7f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7A:2B:A5:6E:68:D3:DC:E2:39:87:CF:80:AC:8E:64:F2:CE:31:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.20.0/22 Signature Algorithm: sha256WithRSAEncryption 34:ec:43:f0:98:8b:b7:2d:86:e8:17:58:6c:35:ac:9a:4a:0b: 30:3c:e7:91:39:cd:33:77:6c:44:dc:42:69:7f:fa:7b:7c:e2: 75:57:94:a2:ca:04:4f:0a:d0:ea:82:35:be:a5:5b:19:43:a8: a3:fd:b2:e6:d7:d3:de:f2:b0:c6:55:22:1c:9a:86:01:4c:df: e3:92:1f:86:c7:fe:12:aa:23:0f:7d:f4:06:19:c3:95:d0:e4: ac:94:f1:37:df:3d:dc:e1:1f:14:9f:73:61:f7:d2:5e:c5:74: 68:ce:34:a1:05:5d:0d:ab:71:7e:8b:49:26:0a:00:af:e7:cc: c3:20:93:6e:86:ec:1c:7b:50:4e:d2:58:de:5d:30:59:87:97: a3:f5:60:fd:65:80:b5:a4:18:87:99:88:9b:3b:ac:02:a9:25: 27:8e:39:ba:d6:05:67:0a:59:3a:a6:08:16:44:bd:e7:f7:38: f0:b6:23:b7:c4:bd:a7:7a:46:46:96:6b:e1:ea:e8:0b:99:74: 82:ca:99:d1:a0:ec:79:9b:0e:c8:d1:36:40:56:73:84:aa:91: 23:c6:5b:48:eb:41:40:44:46:c0:7d:0a:7a:0c:09:30:dd:15: ec:30:26:51:ca:ef:9c:d4:8e:72:75:33:74:32:03:9d:0f:05: 68:55:fa:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe4QkW5vt9wuNqURmTamDZmD6M7EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTc2ZmE0YWRhMDEyNDUxYWZkNzdjYzJmYzljYjQyZDNi ZDk2ZTUxZTAyNWNlMjA0OTg4MThkNzNhODk5NjBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3bpB6cTESX/Frer7ZPd10XcUdFR4io9Fh/nuDaVQwJf6q YmfTc1QHqhsL56bTmmNFfKZnoYmYPafsORHga+KBQyeSwUbGG/zHLbWcJFSWScN3 o8DKia4GU4reTSi9O8WrwMAD+1YdM+i4INFxPNXOuO5/8+EOCLfDGxEgXz6vgxqz nEXTmTlnnL9UCXdujYfGEQUixhAPinPMtqeKh85eWVk9cxxm0i7r7PvRQy7Bn1bl BcJUov2Qi5i8VtvmbTRjBG7h6qV4hfDZitCCMeQWmXSAuHnbtiG2eFi2iOrKFqeW LebvPj3Afb2r2jsWoxr1E5Mkz5unsyRGj+diuH/DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUinorpW5o09ziOYfPgKyOZPLOMREwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdhMGQzLTkyZmQtNDRhZS05MGE2LWE2Y2NmNDkxMzBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEhQwDQYJKoZIhvcNAQELBQADggEBADTsQ/CYi7cthugXWGw1rJpKCzA8 55E5zTN3bETcQml/+nt84nVXlKLKBE8K0OqCNb6lWxlDqKP9subX097ysMZVIhya hgFM3+OSH4bH/hKqIw999AYZw5XQ5KyU8TffPdzhHxSfc2H30l7FdGjONKEFXQ2r cX6LSSYKAK/nzMMgk26G7Bx7UE7SWN5dMFmHl6P1YP1lgLWkGIeZiJs7rAKpJSeO ObrWBWcKWTqmCBZEvef3OPC2I7fEvad6RkaWa+Hq6AuZdILKmdGg7HmbDsjRNkBW c4SqkSPGW0jrQUBERsB9CnoMCTDdFewwJlHK75zUjnJ1M3QyA50PBWhV+nE= -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:06 2023 by rpki-client on console-fra.rpki-client.org