$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb19de45-323a-4e77-a9ad-012c92b7c91d.roa File: cb19de45-323a-4e77-a9ad-012c92b7c91d.roa (raw, json) Hash identifier: C3bMjLt/q7UnqJezYt3igVlTiQE1Cph4r2sQgfp93JI= Subject key identifier: 45:B9:1C:7F:F6:01:CF:0A:7A:77:C8:75:0F:A8:E9:AC:A8:39:44:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42D1F38F0AA1CADD685836A11AB7158BE6581494 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb19de45-323a-4e77-a9ad-012c92b7c91d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d1:f3:8f:0a:a1:ca:dd:68:58:36:a1:1a:b7:15:8b:e6:58:14:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7eaa38d42840c970f1ae586a20d8f5d0aee2c9635250605b29e34ad9a8828ead, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:93:51:fd:d2:7d:1b:b7:10:39:83:8d:bd: 45:6c:ad:67:7b:bb:8a:f9:49:2e:2e:9a:8e:cf:ba: b9:bf:38:51:1f:7d:41:39:c4:3d:a8:87:7c:43:50: c8:a0:93:b9:0e:82:38:36:b8:d3:ee:8b:22:e1:60: 9f:1a:9d:d8:4c:6d:2c:16:75:5c:42:cb:f8:a1:43: 0d:91:22:8f:e5:02:48:e5:d4:7c:ab:7e:87:3a:b8: fc:e5:05:40:8c:e3:5c:fe:2e:dc:d1:b6:3a:bb:33: f0:6a:68:bf:04:68:4f:f2:73:dd:8b:2f:fe:55:bb: 9e:58:5c:e6:af:32:5a:cb:c5:5f:5c:62:c1:d8:3b: 07:d7:8f:ac:4b:cd:e0:91:4e:3c:0b:51:76:a9:fc: b6:14:13:00:dc:dd:13:26:5a:b1:27:db:de:52:97: 72:5c:69:18:f6:9b:d4:36:d9:4f:9b:0d:49:35:2b: b5:5d:28:e2:43:19:eb:99:66:01:36:ee:26:a6:94: 60:c9:71:99:98:33:63:d3:7a:6a:8c:36:88:78:5b: d8:8e:5b:0a:32:e9:42:21:2b:a6:36:fb:2e:24:a0: f9:69:b4:16:01:56:b3:1d:80:37:f1:d9:59:2e:fa: a7:35:dc:37:5d:3b:90:b9:3c:cd:20:c6:49:63:c4: 44:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B9:1C:7F:F6:01:CF:0A:7A:77:C8:75:0F:A8:E9:AC:A8:39:44:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb19de45-323a-4e77-a9ad-012c92b7c91d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.118.0/24 Signature Algorithm: sha256WithRSAEncryption c7:64:33:9b:c0:29:35:67:fe:21:bb:6a:b2:1e:79:30:a6:cd: b2:59:0c:3d:6a:55:74:33:90:99:fd:54:c5:00:8c:8b:59:dd: c0:58:14:ca:64:be:49:80:ca:e2:26:c5:39:a2:38:c0:33:28: 52:ff:a2:c0:57:f1:a1:2a:36:d5:bf:7b:66:d4:64:94:d5:f0: 99:43:0b:38:e8:de:76:59:3a:9f:e7:ee:20:5c:38:ad:a7:2d: 7c:02:23:2a:52:b0:4b:ec:80:e3:34:71:5b:14:71:bb:5c:cd: 05:c0:2f:0c:9f:93:5e:b5:c2:a4:ea:dc:41:c9:cb:fc:9a:82: 99:fb:43:e8:37:1f:24:4e:d1:0a:6d:b9:f6:9d:37:57:82:b0: cc:ba:95:b6:93:c2:f2:7d:3c:68:2f:b9:ae:38:f1:e4:e4:c8: 1a:9f:d9:c3:94:7f:ee:4b:60:89:20:ae:76:cd:79:18:ca:a3: e0:82:c0:37:da:8d:7d:1f:fb:92:d8:2c:33:cd:88:98:25:6b: ae:98:81:d2:11:56:3a:a3:9d:59:4a:5f:58:ce:0e:7b:64:cf: b1:79:33:74:ae:2d:07:d2:55:7b:22:55:06:cb:e9:5c:52:e9: 4f:ed:58:ee:68:58:59:9c:da:5a:ca:0c:9b:a8:3f:70:a3:f6: c0:b2:5d:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQtHzjwqhyt1oWDahGrcVi+ZYFJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWFhMzhkNDI4NDBjOTcwZjFhZTU4NmEyMGQ4ZjVkMGFl ZTJjOTYzNTI1MDYwNWIyOWUzNGFkOWE4ODI4ZWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrvpNR/dJ9G7cQOYONvUVsrWd7u4r5SS4umo7Purm/OFEf fUE5xD2oh3xDUMigk7kOgjg2uNPuiyLhYJ8andhMbSwWdVxCy/ihQw2RIo/lAkjl 1Hyrfoc6uPzlBUCM41z+LtzRtjq7M/BqaL8EaE/yc92LL/5Vu55YXOavMlrLxV9c YsHYOwfXj6xLzeCRTjwLUXap/LYUEwDc3RMmWrEn295Sl3JcaRj2m9Q22U+bDUk1 K7VdKOJDGeuZZgE27iamlGDJcZmYM2PTemqMNoh4W9iOWwoy6UIhK6Y2+y4koPlp tBYBVrMdgDfx2Vku+qc13DddO5C5PM0gxkljxESLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURbkcf/YBzwp6d8h1D6jprKg5RJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiMTlkZTQ1LTMyM2EtNGU3Ny1hOWFkLTAxMmM5MmI3YzkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nYwDQYJKoZIhvcNAQELBQADggEBAMdkM5vAKTVn/iG7arIeeTCmzbJZ DD1qVXQzkJn9VMUAjItZ3cBYFMpkvkmAyuImxTmiOMAzKFL/osBX8aEqNtW/e2bU ZJTV8JlDCzjo3nZZOp/n7iBcOK2nLXwCIypSsEvsgOM0cVsUcbtczQXALwyfk161 wqTq3EHJy/yagpn7Q+g3HyRO0QptufadN1eCsMy6lbaTwvJ9PGgvua448eTkyBqf 2cOUf+5LYIkgrnbNeRjKo+CCwDfajX0f+5LYLDPNiJgla66YgdIRVjqjnVlKX1jO Dntkz7F5M3SuLQfSVXsiVQbL6VxS6U/tWO5oWFmc2lrKDJuoP3Cj9sCyXWo= -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:25 2023 by rpki-client on console-ams.rpki-client.org