$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbe461a7-218b-4353-a342-082f74b7f2fc.roa File: cbe461a7-218b-4353-a342-082f74b7f2fc.roa (raw, json) Hash identifier: MGe7gpYtRD5iDiu26xYeLSzElZQB9jE7HQxIYbgaBpQ= Subject key identifier: 82:78:07:BC:F7:41:17:74:5F:BA:FA:82:59:12:7B:C6:AB:B4:ED:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31B6C2AF686297FA04C377670945B710CDECCEB9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbe461a7-218b-4353-a342-082f74b7f2fc.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 108.136.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b6:c2:af:68:62:97:fa:04:c3:77:67:09:45:b7:10:cd:ec:ce:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=bd7fcb44f6bf06e69778f218f229c9f0488766bb05a1877ef034e7e6f26cb6d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8f:d6:a8:c2:44:ea:48:96:89:ed:06:98:38: 5a:0f:b6:9b:27:ac:d4:8d:ab:c4:b2:be:8d:09:69: b2:7d:84:96:6a:38:90:18:53:52:23:13:58:7a:22: 11:0a:19:47:b8:b6:16:ae:98:47:98:6c:d7:1e:c8: 8f:3e:17:85:39:cd:6a:78:b5:5e:f8:78:79:31:14: e6:25:0a:60:9b:dc:fe:86:56:d5:37:bc:53:f4:60: 62:f6:cf:4d:ab:4e:8a:57:5f:73:fa:66:a7:66:36: b4:5f:37:71:85:35:75:28:a0:b7:51:98:3f:36:b5: a7:46:6f:6d:f9:2c:46:15:37:f2:f0:6a:ce:36:13: ba:68:a5:b0:7f:41:d7:6a:e8:e1:4b:f0:53:41:e6: 8e:28:02:6d:16:0e:0e:f1:e3:87:f7:08:d6:9b:6b: a1:4f:a7:b0:ee:97:f1:0a:a4:b6:a2:1e:81:87:5d: 47:2c:23:98:5c:e8:86:88:3e:9f:13:fe:eb:fd:f7: 41:3d:3c:1b:17:c9:ec:e7:07:ea:d3:72:98:33:2e: 82:8c:f4:8e:f6:13:cf:f9:22:07:33:bb:2e:b7:7e: d3:df:37:07:b2:01:97:d8:24:93:01:7a:0e:f9:3e: e1:b8:a7:d8:5c:af:37:47:48:ad:ba:62:a9:a7:e4: c2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:78:07:BC:F7:41:17:74:5F:BA:FA:82:59:12:7B:C6:AB:B4:ED:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbe461a7-218b-4353-a342-082f74b7f2fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9f:cc:28:3f:6d:f7:8d:fe:f8:bd:c6:65:74:49:d8:02:94:09: 29:b8:28:3c:61:72:ee:61:0d:45:a1:3a:29:bc:1f:4c:fd:b3: ed:cd:d1:69:b0:01:80:f1:17:3f:8e:2c:1f:2e:3b:2a:1b:30: 9e:aa:55:cf:4f:84:ae:ae:4e:5d:41:3e:52:ab:5d:39:42:8e: b6:52:0e:50:54:3e:68:f9:9d:85:1a:3f:dd:bc:67:78:1a:e7: 04:d4:f3:50:81:fb:da:d1:94:e2:91:c7:68:b1:88:ed:4a:e3: a8:f1:aa:2b:da:02:f6:81:75:5f:23:dd:0e:63:e7:fc:a0:54: f5:e4:78:62:7d:3a:78:14:58:d4:6f:ed:a7:4d:70:78:ed:9e: 3e:7b:f2:e8:4e:26:2d:85:4d:96:d9:a9:46:15:bf:7d:93:b1: b7:e8:06:08:49:ee:96:92:cd:45:4d:bc:7f:45:6a:31:4b:a4: 8f:fc:17:aa:54:0b:98:f7:81:b4:29:78:3e:b3:92:31:9e:7f: 6d:f7:54:cd:c2:fa:ab:25:4f:fc:33:46:ed:32:33:9c:a5:1f: 60:28:a4:a3:37:09:01:51:bb:f1:e2:28:55:6d:23:ac:81:69: e9:61:13:95:46:a4:b8:ba:14:97:b3:83:3b:c8:22:b4:65:6a: 46:43:ef:cd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMbbCr2hil/oEw3dnCUW3EM3szrkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDdmY2I0NGY2YmYwNmU2OTc3OGYyMThmMjI5YzlmMDQ4 ODc2NmJiMDVhMTg3N2VmMDM0ZTdlNmYyNmNiNmQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaj9aowkTqSJaJ7QaYOFoPtpsnrNSNq8Syvo0JabJ9hJZq OJAYU1IjE1h6IhEKGUe4thaumEeYbNceyI8+F4U5zWp4tV74eHkxFOYlCmCb3P6G VtU3vFP0YGL2z02rTopXX3P6ZqdmNrRfN3GFNXUooLdRmD82tadGb235LEYVN/Lw as42E7popbB/Qddq6OFL8FNB5o4oAm0WDg7x44f3CNaba6FPp7Dul/EKpLaiHoGH XUcsI5hc6IaIPp8T/uv990E9PBsXyeznB+rTcpgzLoKM9I72E8/5Igczuy63ftPf NweyAZfYJJMBeg75PuG4p9hcrzdHSK26Yqmn5MKBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgngHvPdBF3RfuvqCWRJ7xqu07RAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiZTQ2MWE3LTIxOGItNDM1My1hMzQyLTA4MmY3NGI3ZjJmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJsiDANBgkqhkiG9w0BAQsFAAOCAQEAn8woP233jf74vcZldEnYApQJKbgo PGFy7mENRaE6KbwfTP2z7c3RabABgPEXP44sHy47KhswnqpVz0+Erq5OXUE+Uqtd OUKOtlIOUFQ+aPmdhRo/3bxneBrnBNTzUIH72tGU4pHHaLGI7UrjqPGqK9oC9oF1 XyPdDmPn/KBU9eR4Yn06eBRY1G/tp01weO2ePnvy6E4mLYVNltmpRhW/fZOxt+gG CEnulpLNRU28f0VqMUukj/wXqlQLmPeBtCl4PrOSMZ5/bfdUzcL6qyVP/DNG7TIz nKUfYCikozcJAVG78eIoVW0jrIFp6WETlUakuLoUl7ODO8gitGVqRkPvzQ== -----END CERTIFICATE-----Generated at Fri Sep 22 19:51:41 2023 by rpki-client on console-ams.rpki-client.org