$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca936afe-73ab-400a-b6cc-2636c1dd0071.roa File: ca936afe-73ab-400a-b6cc-2636c1dd0071.roa (raw, json) Hash identifier: n8MFitbEAAMQNV+UlvqAq0k5hKYlms76gkvaY3isw6w= Subject key identifier: 5A:05:04:6E:CC:F8:5D:CD:9F:05:E0:69:20:F1:1E:5C:31:5D:8A:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FC03F1E7BFE707152E9598B2A4C9F2B5A2FC402 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca936afe-73ab-400a-b6cc-2636c1dd0071.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 69.210.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c0:3f:1e:7b:fe:70:71:52:e9:59:8b:2a:4c:9f:2b:5a:2f:c4:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=66dc346f2b096da4a57d7f50977b57cd622dd231bd682f8fc333a1cba7385eea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1c:a5:5e:d1:0f:61:7d:e7:01:72:35:4f:48: 73:68:12:e0:67:1c:6c:27:31:c5:a7:03:c8:cc:fc: d9:62:e8:e2:1c:95:38:1d:b8:37:b7:37:cf:11:3b: ee:8a:13:0a:b8:23:24:9f:13:f6:26:4c:b2:3c:0e: 90:d9:e7:77:4d:56:cd:a0:5b:02:f9:83:a2:62:df: dd:9a:c7:9c:79:17:e5:b5:f7:e4:72:d3:19:d3:39: 66:fb:a3:83:7a:f3:9c:b9:54:a5:ea:d4:0e:c5:4b: 34:31:58:f4:4b:61:cb:b3:1c:a5:b7:28:d1:39:2d: 8b:a7:62:e4:dc:ff:13:52:a7:76:5c:ef:62:81:c3: ee:cb:c7:db:af:4a:6a:9a:ba:fa:20:06:47:a1:ce: c1:78:a4:d1:77:e4:16:a7:e8:d6:d1:9d:52:51:6b: 0d:a8:69:da:ba:59:d1:97:be:7e:d7:05:12:46:af: df:cc:d8:b4:24:fe:2e:51:c7:de:d6:22:a7:bc:93: f9:5c:6e:e4:79:e1:a0:52:75:8d:ed:32:71:54:54: 09:67:bc:0f:19:f9:ca:35:be:26:d4:de:45:f8:01: 44:01:1c:9d:b0:30:a7:45:23:c6:dc:ef:28:92:2d: e7:f9:2a:0b:e3:74:e6:25:ac:e2:d4:9b:10:a6:0d: c4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:05:04:6E:CC:F8:5D:CD:9F:05:E0:69:20:F1:1E:5C:31:5D:8A:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca936afe-73ab-400a-b6cc-2636c1dd0071.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.210.72.0/22 Signature Algorithm: sha256WithRSAEncryption 97:0f:3b:88:f6:ce:b8:12:d1:0d:56:e8:0b:4e:0f:9b:26:c0: a5:41:ad:59:05:a1:29:c0:47:0f:f0:94:aa:bb:63:31:e3:51: 1a:13:34:d1:24:22:2a:1c:2b:c3:77:0f:a1:a5:96:68:1f:82: 36:78:2e:1f:a5:f1:b5:4a:a0:0f:9d:30:b2:22:00:5d:bb:6f: 42:5f:d9:9e:78:a1:ea:58:94:c5:68:08:8c:d5:c8:36:8b:4c: fa:c2:b4:1f:01:40:f1:b2:d5:d2:cd:bf:9e:b7:b7:20:c0:33: d7:5e:15:30:d4:bc:92:e6:12:19:20:2e:f2:e4:63:1d:02:0a: d3:75:75:78:8f:6e:13:8b:b7:a4:71:db:26:56:fa:2b:eb:03: d1:0d:94:b1:40:b8:75:a0:85:0b:c7:42:a0:d0:72:04:82:68: 17:cd:1d:a2:cf:29:51:cf:47:56:1f:1a:53:bd:e7:a1:d9:29: 62:a1:9e:96:a4:73:0e:32:72:38:9e:a7:e0:d4:62:71:06:66: 9f:3e:42:37:d7:c7:e4:56:2d:1b:05:18:e6:8f:d2:f5:c5:61: 86:37:c3:49:89:10:88:85:5e:a5:64:98:91:b5:1d:dc:bd:66: e8:76:6b:10:f6:e5:48:d6:f2:17:88:34:93:ef:f7:4b:e9:ac: 41:15:02:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb8A/Hnv+cHFS6VmLKkyfK1ovxAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmRjMzQ2ZjJiMDk2ZGE0YTU3ZDdmNTA5NzdiNTdjZDYy MmRkMjMxYmQ2ODJmOGZjMzMzYTFjYmE3Mzg1ZWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNHKVe0Q9hfecBcjVPSHNoEuBnHGwnMcWnA8jM/Nli6OIc lTgduDe3N88RO+6KEwq4IySfE/YmTLI8DpDZ53dNVs2gWwL5g6Ji392ax5x5F+W1 9+Ry0xnTOWb7o4N685y5VKXq1A7FSzQxWPRLYcuzHKW3KNE5LYunYuTc/xNSp3Zc 72KBw+7Lx9uvSmqauvogBkehzsF4pNF35Ban6NbRnVJRaw2oadq6WdGXvn7XBRJG r9/M2LQk/i5Rx97WIqe8k/lcbuR54aBSdY3tMnFUVAlnvA8Z+co1vibU3kX4AUQB HJ2wMKdFI8bc7yiSLef5KgvjdOYlrOLUmxCmDcRfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWgUEbsz4Xc2fBeBpIPEeXDFdioQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhOTM2YWZlLTczYWItNDAwYS1iNmNjLTI2MzZjMWRkMDA3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJF0kgwDQYJKoZIhvcNAQELBQADggEBAJcPO4j2zrgS0Q1W6AtOD5smwKVB rVkFoSnARw/wlKq7YzHjURoTNNEkIiocK8N3D6GllmgfgjZ4Lh+l8bVKoA+dMLIi AF27b0Jf2Z54oepYlMVoCIzVyDaLTPrCtB8BQPGy1dLNv563tyDAM9deFTDUvJLm EhkgLvLkYx0CCtN1dXiPbhOLt6Rx2yZW+ivrA9ENlLFAuHWghQvHQqDQcgSCaBfN HaLPKVHPR1YfGlO956HZKWKhnpakcw4ycjiep+DUYnEGZp8+QjfXx+RWLRsFGOaP 0vXFYYY3w0mJEIiFXqVkmJG1Hdy9Zuh2axD25UjW8heINJPv90vprEEVAkI= -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:43 2023 by rpki-client on console-fra.rpki-client.org