$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51ae661-222c-4615-86b1-4455f5d2cdea.roa File: d51ae661-222c-4615-86b1-4455f5d2cdea.roa (raw, json) Hash identifier: 8WQ6/6ZyiDlUHCoxwnEldatnUDA604jFUILRp7DUK+4= Subject key identifier: 6A:01:A5:A6:61:C5:10:2E:F3:4A:FD:3D:AC:97:BB:A3:09:6E:3E:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F51541FFFFD0C006C146CEEC69C898620750344 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51ae661-222c-4615-86b1-4455f5d2cdea.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:51:54:1f:ff:fd:0c:00:6c:14:6c:ee:c6:9c:89:86:20:75:03:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=deeaf02d4239e3f760f861a858ed2a9eccecede67abd8d40d3578fadb5a23d66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1f:b3:66:e6:ff:43:58:27:4c:89:d0:69:6b: 5f:c5:a3:fc:e0:9b:07:a3:03:30:37:45:5c:1b:a0: f1:ae:73:bc:10:23:4a:45:dd:1b:6f:dd:cd:ed:5c: 83:8b:48:b5:e9:c6:f0:d5:d5:1f:ad:f9:f6:bc:14: f8:ac:e1:d7:99:b5:ee:7c:67:23:8c:11:d8:00:f2: 3d:01:ea:97:dc:f3:99:90:95:b5:84:1c:4e:0f:2d: 5a:e0:36:c0:c4:a5:46:d3:6c:5f:1c:38:2f:97:a5: db:7a:9d:39:91:98:8f:5a:97:ef:c7:0f:e4:e3:d2: ec:73:9d:57:bc:e4:24:40:d7:10:b6:bb:39:3a:a3: 9a:1a:98:c6:d9:df:75:f5:4e:48:f0:e2:12:6b:dd: 4c:83:e6:1e:66:07:13:b5:30:7a:21:65:bf:90:ee: 93:bd:d1:05:f5:10:67:ac:27:d1:de:44:47:9b:44: a8:6d:ec:91:00:ce:4c:4a:3e:86:2c:f6:fa:fa:9f: cb:cb:12:85:eb:39:0a:37:fa:e7:af:e0:e1:40:9f: ba:ed:70:5e:9b:e8:17:d9:2f:ba:82:e9:ad:16:33: a8:70:57:a5:28:d1:d0:e5:e8:20:5a:b3:28:77:99: c7:a4:0c:fa:23:24:c5:a8:96:96:52:c8:f0:49:e3: d9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:01:A5:A6:61:C5:10:2E:F3:4A:FD:3D:AC:97:BB:A3:09:6E:3E:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51ae661-222c-4615-86b1-4455f5d2cdea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.184.0/22 Signature Algorithm: sha256WithRSAEncryption bc:45:3e:81:9f:b5:fa:b9:23:62:22:ce:fa:5d:5a:dc:87:96: 22:07:8c:54:14:fa:38:c6:0c:f0:df:b6:71:bc:64:03:08:c3: 17:43:e1:4a:e7:0a:d7:a0:f9:d7:ef:ce:84:d9:a5:aa:1d:bc: f6:1a:fd:ee:4e:23:4b:28:7a:60:6a:d9:6b:73:d4:2e:f1:0d: fb:c5:07:4c:8f:2c:2b:9c:58:14:e7:9d:d5:24:e9:7c:ec:2e: 6d:37:0c:9e:31:bf:f3:3f:41:d4:c8:32:a2:e3:59:1e:fc:e8: d0:a0:5c:9b:7e:be:3b:be:7b:b3:ad:98:a7:ce:ef:aa:8e:70: 02:6c:bd:87:23:23:e5:a8:41:00:6a:8b:db:89:b4:73:b2:d4: d4:0c:ef:c7:5a:a4:d5:1a:f1:10:d8:ec:3e:4b:eb:c6:0c:7c: d5:32:8c:29:6f:2e:ab:a3:c1:79:11:9f:9f:95:f7:9a:c9:25: 69:1e:48:f0:ef:5c:d8:32:9c:f9:8c:29:81:ec:a9:49:d1:3e: a8:7a:c2:04:ea:94:63:3e:ce:05:2e:ef:41:19:60:7c:c4:a0: 9b:d5:23:59:98:ad:b5:c3:6d:bf:01:84:85:6e:9b:64:31:04: a3:49:5f:86:fb:fa:0a:b0:3e:7a:ba:ba:42:4b:d7:b1:c2:8e: 46:75:c0:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX1FUH//9DABsFGzuxpyJhiB1A0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWVhZjAyZDQyMzllM2Y3NjBmODYxYTg1OGVkMmE5ZWNj ZWNlZGU2N2FiZDhkNDBkMzU3OGZhZGI1YTIzZDY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXH7Nm5v9DWCdMidBpa1/Fo/zgmwejAzA3RVwboPGuc7wQ I0pF3Rtv3c3tXIOLSLXpxvDV1R+t+fa8FPis4deZte58ZyOMEdgA8j0B6pfc85mQ lbWEHE4PLVrgNsDEpUbTbF8cOC+Xpdt6nTmRmI9al+/HD+Tj0uxznVe85CRA1xC2 uzk6o5oamMbZ33X1Tkjw4hJr3UyD5h5mBxO1MHohZb+Q7pO90QX1EGesJ9HeREeb RKht7JEAzkxKPoYs9vr6n8vLEoXrOQo3+uev4OFAn7rtcF6b6BfZL7qC6a0WM6hw V6Uo0dDl6CBasyh3mcekDPojJMWolpZSyPBJ49mLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUagGlpmHFEC7zSv09rJe7owluPg0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1MWFlNjYxLTIyMmMtNDYxNS04NmIxLTQ0NTVmNWQyY2RlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTrgwDQYJKoZIhvcNAQELBQADggEBALxFPoGftfq5I2IizvpdWtyHliIH jFQU+jjGDPDftnG8ZAMIwxdD4UrnCteg+dfvzoTZpaodvPYa/e5OI0soemBq2Wtz 1C7xDfvFB0yPLCucWBTnndUk6XzsLm03DJ4xv/M/QdTIMqLjWR786NCgXJt+vju+ e7OtmKfO76qOcAJsvYcjI+WoQQBqi9uJtHOy1NQM78dapNUa8RDY7D5L68YMfNUy jClvLqujwXkRn5+V95rJJWkeSPDvXNgynPmMKYHsqUnRPqh6wgTqlGM+zgUu70EZ YHzEoJvVI1mYrbXDbb8BhIVum2QxBKNJX4b7+gqwPnq6ukJL17HCjkZ1wFg= -----END CERTIFICATE-----Generated at Fri Sep 22 18:47:36 2023 by rpki-client on console-fra.rpki-client.org