$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa File: c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa (raw, json) Hash identifier: QoHojjwkzcXuOSnS3dhBD936zZI+6tApLmm2RBVcR2Q= Subject key identifier: B8:8D:2F:0C:7A:52:3A:F4:2F:12:BF:A9:A2:18:21:16:2F:95:61:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CF014D7AAFBCA1CC47B8B638628EB115975DC86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f0:14:d7:aa:fb:ca:1c:c4:7b:8b:63:86:28:eb:11:59:75:dc:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=6b7008fac611bc2db69cbe3f6529890f223c56718f24cc380c82c2dbbb786bd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f4:0c:65:62:cd:36:93:94:b7:5e:3f:94:13: 17:8d:62:46:d7:5c:54:c0:6c:23:ff:9e:30:8e:17: 2f:73:15:19:e2:7f:4f:57:bd:3d:1a:ef:01:ae:5c: 02:bc:45:77:64:f6:77:52:6d:22:ba:6a:a1:f0:75: 33:1c:e6:e9:da:80:da:ae:49:e2:a5:e3:ab:d8:ba: 0e:76:0b:4d:3d:e6:8a:bf:c5:77:04:2f:5b:14:48: ee:ed:3d:01:6f:52:59:f6:f0:92:dc:2e:a0:a0:5f: a8:a2:15:88:1a:b3:1d:7f:fa:95:c9:e5:01:43:bb: ab:74:23:a1:55:80:11:80:38:fe:6d:45:15:1a:dd: 3e:4d:5f:ef:ab:d0:52:7f:80:bb:9d:55:7e:f8:64: b3:0f:d1:8e:ba:de:71:8b:3b:d7:23:7a:0e:6a:9f: ba:03:72:48:79:87:ba:32:d6:85:15:92:ce:39:62: 4b:e7:7c:a1:82:b9:44:a8:57:10:a2:e8:73:cf:c2: 11:aa:00:6d:cb:68:7f:5e:76:40:d5:e1:cf:13:bf: 73:7c:0d:72:80:02:49:f4:c5:c4:59:fe:c7:aa:20: b9:cf:44:e2:30:5a:b3:45:a5:0c:df:ec:e3:59:20: bd:16:c7:5a:97:cb:f4:11:8a:bf:c1:5d:fe:74:6b: fc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8D:2F:0C:7A:52:3A:F4:2F:12:BF:A9:A2:18:21:16:2F:95:61:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.120.0/21 Signature Algorithm: sha256WithRSAEncryption 03:54:13:c7:36:0a:f9:fa:4f:ba:3f:4f:76:11:91:7d:9b:10: 8d:e5:45:70:2b:77:27:d3:73:0b:fb:fc:ac:70:4b:2a:ae:de: bf:81:43:5d:a5:b5:31:60:1c:15:95:46:2b:63:ef:7c:35:9e: 47:5f:a7:b6:16:aa:e6:f0:7c:80:d4:86:15:93:27:0f:02:e9: 0b:4a:a9:4e:0f:88:e0:3c:a4:62:b7:99:a8:9f:67:7e:77:00: 57:18:f5:85:4c:4c:96:e6:99:ba:5e:08:3d:71:af:18:58:dd: c4:da:b5:85:32:70:f5:f2:b9:b5:9c:df:c1:e3:05:42:c4:4a: 4e:ea:8d:9c:6e:ed:eb:84:f8:ee:c6:47:10:38:ea:b3:3b:94: aa:e6:14:79:7e:9c:f4:41:1f:c2:3c:f1:87:87:f9:5c:64:54: 4a:93:3e:9f:aa:28:95:5a:a2:64:3a:bb:a7:ec:fa:75:93:aa: e4:e2:e4:83:aa:a3:8f:ba:32:da:02:a9:ca:d1:89:94:36:ad: ef:fd:37:4a:98:7f:fe:e3:8f:aa:ea:a8:cb:ba:cf:70:63:57: 34:aa:4e:e6:e6:a9:fb:1b:24:0f:18:43:d4:d6:a2:e5:c6:9d: 63:36:9e:53:80:ed:51:85:b1:41:2e:8a:38:8d:04:32:4b:2d: 14:31:3c:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHPAU16r7yhzEe4tjhijrEVl13IYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjcwMDhmYWM2MTFiYzJkYjY5Y2JlM2Y2NTI5ODkwZjIy M2M1NjcxOGYyNGNjMzgwYzgyYzJkYmJiNzg2YmQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU9AxlYs02k5S3Xj+UExeNYkbXXFTAbCP/njCOFy9zFRni f09XvT0a7wGuXAK8RXdk9ndSbSK6aqHwdTMc5unagNquSeKl46vYug52C0095oq/ xXcEL1sUSO7tPQFvUln28JLcLqCgX6iiFYgasx1/+pXJ5QFDu6t0I6FVgBGAOP5t RRUa3T5NX++r0FJ/gLudVX74ZLMP0Y663nGLO9cjeg5qn7oDckh5h7oy1oUVks45 YkvnfKGCuUSoVxCi6HPPwhGqAG3LaH9edkDV4c8Tv3N8DXKAAkn0xcRZ/seqILnP ROIwWrNFpQzf7ONZIL0Wx1qXy/QRir/BXf50a/yjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuI0vDHpSOvQvEr+pohghFi+VYb8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5ZjY1YmVhLThjYTMtNDE1ZC1iMGUzLTZiNTY4ZjhlMDFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgAHgwDQYJKoZIhvcNAQELBQADggEBAANUE8c2Cvn6T7o/T3YRkX2bEI3l RXArdyfTcwv7/KxwSyqu3r+BQ12ltTFgHBWVRitj73w1nkdfp7YWqubwfIDUhhWT Jw8C6QtKqU4PiOA8pGK3maifZ353AFcY9YVMTJbmmbpeCD1xrxhY3cTatYUycPXy ubWc38HjBULESk7qjZxu7euE+O7GRxA46rM7lKrmFHl+nPRBH8I88YeH+VxkVEqT Pp+qKJVaomQ6u6fs+nWTquTi5IOqo4+6MtoCqcrRiZQ2re/9N0qYf/7jj6rqqMu6 z3BjVzSqTubmqfsbJA8YQ9TWouXGnWM2nlOA7VGFsUEuijiNBDJLLRQxPBk= -----END CERTIFICATE-----Generated at Mon Aug 28 23:46:45 2023 by rpki-client on console-ams.rpki-client.org