$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa File: d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa (raw, json) Hash identifier: r3SpTh4cIAEpi42Fi9qSO8Z+7VHswcjm+84zdGD6ikA= Subject key identifier: 56:78:22:8C:EF:C6:AA:8C:84:2C:A8:BD:1A:1B:D2:D2:39:CB:E5:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F3BF0391319670846D8CF5A36348A2ACC1E86A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.144.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 03:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3b:f0:39:13:19:67:08:46:d8:cf:5a:36:34:8a:2a:cc:1e:86:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=62f9e0fe71f7ba742b5f6b3be7df4bbf2b1240f12ad6dfcf87266235b8a479e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:91:e8:0c:23:8e:59:50:c9:63:35:c1:87: 96:24:69:c1:92:32:ec:c6:2f:3b:05:2c:22:6c:cf: ac:03:38:9a:da:44:fb:8c:48:31:a4:c2:82:1f:98: 66:fd:a4:df:15:23:2f:e6:1d:7d:d9:44:7b:63:7c: de:c7:23:3d:d3:6e:09:40:e2:9f:fe:e9:9f:36:2a: 6d:8d:95:f2:48:d0:65:6b:7c:82:07:c0:72:4f:df: e1:f1:1b:2c:37:fb:fd:ab:6f:01:ea:90:96:f9:33: 8c:e8:f1:be:82:97:53:99:17:35:a9:98:5e:11:02: 83:d5:29:77:c8:38:21:41:ad:91:bc:f7:e8:cf:2e: b9:a5:8c:ca:ad:47:f6:f7:b3:18:df:ec:65:63:93: 66:4f:a9:60:f5:aa:d0:b2:ac:c5:cd:50:cc:60:df: c3:bf:30:92:b1:76:d1:e9:bc:e2:34:02:dd:2a:54: 97:6e:73:66:c5:fb:33:dc:52:34:8d:01:51:64:9d: 65:5f:bc:cf:9a:4d:97:26:d9:b8:c9:4a:68:f6:1a: ae:59:5d:f1:2b:d9:43:51:8d:89:dd:10:7b:d0:0f: d8:4c:82:2d:93:f3:de:cc:a0:0d:63:2f:d2:ac:9b: 45:30:fa:38:60:40:89:17:95:aa:57:34:1e:6b:45: 0c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:78:22:8C:EF:C6:AA:8C:84:2C:A8:BD:1A:1B:D2:D2:39:CB:E5:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0c88a40-44cb-4ee0-a0f5-5f6d559b9c61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.144.192.0/18 Signature Algorithm: sha256WithRSAEncryption 13:f5:98:24:db:cc:f2:9a:6c:29:cd:7e:14:d1:ec:76:a9:a6: 49:a4:4e:20:e0:f5:d9:ec:21:72:8c:96:0a:e1:43:25:23:02: e5:45:00:c8:17:1d:4f:f5:d6:5c:33:1f:5b:00:85:ca:ff:f9: b1:58:45:c5:3f:7b:f6:50:19:37:05:8b:ee:18:2e:4f:54:4f: f9:79:84:fb:e3:10:a1:10:0b:cf:89:11:d8:3f:f0:49:9f:0f: cf:ce:58:c9:28:2d:9b:55:d6:7a:c1:0b:18:d3:e3:87:60:30: c6:dc:49:1f:71:6d:07:ec:de:dc:4c:91:ea:19:60:3c:6d:e1: c7:4a:1a:f8:9a:da:5b:64:91:d4:45:4f:30:b4:6b:37:95:b1: 67:94:18:a1:4a:a3:aa:a6:c8:d6:24:3b:9e:02:66:bf:69:40: e6:2c:4a:9a:75:da:c0:a4:04:73:e5:a9:c2:e7:bf:f8:bf:28: ab:8e:e0:bf:50:97:5e:29:73:f0:1f:de:e7:c4:9d:da:ac:84: 42:71:8a:98:1e:09:b3:9c:8f:4b:d3:2c:da:3c:85:7f:a5:f0: 28:38:e6:30:fc:fe:2a:30:4b:1e:2d:6b:48:40:60:78:0a:74: 29:60:53:e7:0f:de:b2:4a:6c:8f:68:45:c1:77:37:25:1f:6e: d6:9b:e7:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTzvwORMZZwhG2M9aNjSKKswehqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmY5ZTBmZTcxZjdiYTc0MmI1ZjZiM2JlN2RmNGJiZjJi MTI0MGYxMmFkNmRmY2Y4NzI2NjIzNWI4YTQ3OWUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH65HoDCOOWVDJYzXBh5YkacGSMuzGLzsFLCJsz6wDOJra RPuMSDGkwoIfmGb9pN8VIy/mHX3ZRHtjfN7HIz3TbglA4p/+6Z82Km2NlfJI0GVr fIIHwHJP3+HxGyw3+/2rbwHqkJb5M4zo8b6Cl1OZFzWpmF4RAoPVKXfIOCFBrZG8 9+jPLrmljMqtR/b3sxjf7GVjk2ZPqWD1qtCyrMXNUMxg38O/MJKxdtHpvOI0At0q VJduc2bF+zPcUjSNAVFknWVfvM+aTZcm2bjJSmj2Gq5ZXfEr2UNRjYndEHvQD9hM gi2T897MoA1jL9Ksm0Uw+jhgQIkXlapXNB5rRQy3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVngijO/GqoyELKi9GhvS0jnL5TowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwYzg4YTQwLTQ0Y2ItNGVlMC1hMGY1LTVmNmQ1NTliOWM2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjkMAwDQYJKoZIhvcNAQELBQADggEBABP1mCTbzPKabCnNfhTR7Happkmk TiDg9dnsIXKMlgrhQyUjAuVFAMgXHU/11lwzH1sAhcr/+bFYRcU/e/ZQGTcFi+4Y Lk9UT/l5hPvjEKEQC8+JEdg/8EmfD8/OWMkoLZtV1nrBCxjT44dgMMbcSR9xbQfs 3txMkeoZYDxt4cdKGvia2ltkkdRFTzC0azeVsWeUGKFKo6qmyNYkO54CZr9pQOYs Spp12sCkBHPlqcLnv/i/KKuO4L9Ql14pc/Af3ufEndqshEJxipgeCbOcj0vTLNo8 hX+l8Cg45jD8/iowSx4ta0hAYHgKdClgU+cP3rJKbI9oRcF3NyUfbtab59s= -----END CERTIFICATE-----Generated at Mon Aug 28 15:50:37 2023 by rpki-client on console-ams.rpki-client.org