$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf03db45-834d-4676-82d4-32f14b5b14f9.roa File: cf03db45-834d-4676-82d4-32f14b5b14f9.roa (raw, json) Hash identifier: qEzIvY+tkRfhHSFHeiPJc2IfpHOELA96Qs4TPDdFco0= Subject key identifier: 1B:88:F4:DE:02:2B:E3:3F:34:05:E4:CC:48:F6:9C:0E:ED:29:AF:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C5872533BFAF15E66E22B339C034B51A5F8B0EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf03db45-834d-4676-82d4-32f14b5b14f9.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 67.202.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:58:72:53:3b:fa:f1:5e:66:e2:2b:33:9c:03:4b:51:a5:f8:b0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3abf077dfaf76ec30770d65e1836ae3de387ac067c6ee53aefee9cbd6858e376, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:41:98:a5:5d:68:67:72:35:d5:b1:4e:ab: ef:60:bd:0f:3b:ce:2c:ec:db:98:37:fd:95:a5:8c: 43:ce:06:d9:f2:89:8c:83:e2:40:89:d2:6f:97:3c: d2:76:a4:b0:2d:ea:74:56:bf:b5:94:c7:56:37:bb: b9:6f:3a:2f:eb:94:e1:be:10:e6:bf:d8:2d:5f:f3: 32:68:2c:8f:e7:55:71:32:27:c7:28:bf:58:86:f5: 2e:db:c8:1b:be:24:c1:4e:33:e0:4a:fa:60:fd:93: fd:b5:3d:ab:17:52:e7:7b:08:38:c6:ed:6d:c2:f6: 60:46:b2:45:ab:7d:a0:fc:9f:2b:c9:26:fd:a7:08: 71:4f:67:52:f7:cb:ce:34:40:48:57:ab:08:ed:d2: 0c:26:74:e5:cb:c2:24:5a:a4:82:2b:8c:08:94:5c: 0c:23:db:03:78:fe:8d:52:f3:85:dd:bd:32:51:d1: 9d:ee:48:86:8a:90:31:9d:06:0e:c9:2a:69:d0:ae: e8:ff:55:2e:e8:37:3a:07:bf:60:e8:3f:cf:18:f0: 7a:dd:01:85:d5:09:6c:43:32:80:8a:1f:84:d2:88: 7f:d5:24:b4:99:0f:db:cb:b1:f2:3c:af:67:73:cc: d2:33:00:84:2b:6b:cc:cc:a2:4e:ba:21:cb:6a:99: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:88:F4:DE:02:2B:E3:3F:34:05:E4:CC:48:F6:9C:0E:ED:29:AF:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf03db45-834d-4676-82d4-32f14b5b14f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption c9:9f:9b:e4:56:59:25:be:1b:3e:64:c2:ba:72:14:7f:51:65: 35:43:07:dd:7e:eb:e9:0e:c4:6a:48:3b:7e:4a:c6:a8:84:b8: 63:2e:de:e3:f9:af:81:3e:6c:4f:c8:eb:e2:3a:ce:40:94:97: 3e:e5:50:80:05:9a:10:bb:07:78:2a:5f:e0:a8:ac:6a:2e:12: fb:83:cf:5b:4d:7b:d6:e5:52:be:d5:28:fc:37:0a:b1:ae:0b: bb:83:91:c7:a7:57:e5:02:65:df:6c:9d:fc:d3:8c:c5:ee:38: 44:5f:ef:c2:57:a4:ac:06:a0:22:89:cb:1f:b6:86:44:21:be: a0:97:79:a9:93:71:be:5e:1d:91:8b:b0:fc:bf:f3:9b:33:1a: 84:bf:60:cb:ff:d2:2a:96:0f:a3:a2:f9:36:7f:ad:38:4b:b3: 0d:eb:88:a5:37:74:34:1e:0b:bf:35:a6:b2:a1:6f:d2:6c:ec: 37:90:5b:ed:0e:86:6c:a6:67:f6:aa:50:18:73:1b:2b:4a:52: cf:55:5c:73:1b:70:c3:4b:be:e4:ef:df:4b:ce:23:44:40:2d: df:6b:52:fd:cb:51:3d:d3:e6:70:43:39:5c:50:fa:b6:85:c8: d2:5e:be:4a:ad:5d:4b:d5:96:86:a7:eb:12:3e:78:d8:75:26: 47:15:70:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDFhyUzv68V5m4isznANLUaX4sOswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWJmMDc3ZGZhZjc2ZWMzMDc3MGQ2NWUxODM2YWUzZGUz ODdhYzA2N2M2ZWU1M2FlZmVlOWNiZDY4NThlMzc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3ikGYpV1oZ3I11bFOq+9gvQ87zizs25g3/ZWljEPOBtny iYyD4kCJ0m+XPNJ2pLAt6nRWv7WUx1Y3u7lvOi/rlOG+EOa/2C1f8zJoLI/nVXEy J8cov1iG9S7byBu+JMFOM+BK+mD9k/21PasXUud7CDjG7W3C9mBGskWrfaD8nyvJ Jv2nCHFPZ1L3y840QEhXqwjt0gwmdOXLwiRapIIrjAiUXAwj2wN4/o1S84XdvTJR 0Z3uSIaKkDGdBg7JKmnQruj/VS7oNzoHv2DoP88Y8HrdAYXVCWxDMoCKH4TSiH/V JLSZD9vLsfI8r2dzzNIzAIQra8zMok66IctqmQ7RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG4j03gIr4z80BeTMSPacDu0prwEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMDNkYjQ1LTgzNGQtNDY3Ni04MmQ0LTMyZjE0YjViMTRmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAMmfm+RWWSW+Gz5kwrpyFH9RZTVD B91+6+kOxGpIO35KxqiEuGMu3uP5r4E+bE/I6+I6zkCUlz7lUIAFmhC7B3gqX+Co rGouEvuDz1tNe9blUr7VKPw3CrGuC7uDkcenV+UCZd9snfzTjMXuOERf78JXpKwG oCKJyx+2hkQhvqCXeamTcb5eHZGLsPy/85szGoS/YMv/0iqWD6Oi+TZ/rThLsw3r iKU3dDQeC781prKhb9Js7DeQW+0OhmymZ/aqUBhzGytKUs9VXHMbcMNLvuTv30vO I0RALd9rUv3LUT3T5nBDOVxQ+raFyNJevkqtXUvVloan6xI+eNh1JkcVcHM= -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:03 2023 by rpki-client on console-fra.rpki-client.org