$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7a68a9d-79fe-4cc7-9a7d-eda2f8cefdc5.roa File: d7a68a9d-79fe-4cc7-9a7d-eda2f8cefdc5.roa (raw, json) Hash identifier: gulCTtJd9kjcWRwhGB7RoJsGtmV2wpA3otUYk5ULVWo= Subject key identifier: E8:B3:27:4C:9A:9B:84:29:A9:E9:2E:CC:82:86:E4:40:6B:21:3F:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26F02087FE2DDFC7F14FDA69F0369BB325944513 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7a68a9d-79fe-4cc7-9a7d-eda2f8cefdc5.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f0:20:87:fe:2d:df:c7:f1:4f:da:69:f0:36:9b:b3:25:94:45:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=fcbf8fd10d2640a85dc3627bc687a6da6e80dd39baa97e2e6d7213696918492d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:12:de:a4:6d:e1:2d:a8:f9:4d:8b:22:ce:e3: bb:74:f5:eb:d3:93:83:ec:87:27:df:4a:e4:52:37: ec:a0:d8:eb:68:9a:e8:22:dd:cb:2f:2b:44:bc:d8: 22:9e:1e:6c:b7:6b:8a:a0:88:53:42:d5:56:c9:5b: 6d:59:52:d4:67:79:b1:f5:67:95:f2:b5:50:3d:1d: b5:f9:55:00:55:d5:d6:fd:15:d6:8f:4e:43:78:3b: 87:24:7c:d6:87:c5:be:09:24:58:85:0a:46:bf:ed: e3:da:68:30:ea:c5:15:44:76:ec:fc:26:33:da:cf: 92:a6:4c:89:5b:0f:8f:30:54:e4:bb:e1:de:07:b4: 0f:11:65:f3:78:00:00:5b:a2:19:e1:57:1b:00:f8: ba:bc:5c:a8:27:67:50:25:6d:aa:10:14:39:36:79: 74:82:c7:e4:3d:5e:37:63:29:98:d4:93:f5:b3:08: 8d:76:20:30:f6:27:f4:63:87:42:4c:1f:4c:8a:0e: a2:e8:7f:15:2b:07:bc:ce:e7:c6:b3:66:05:f8:f8: 99:4e:cd:e9:76:9a:26:9f:b3:f5:ef:69:2e:f9:c7: d4:2e:44:2f:13:9a:b8:8b:ff:ef:4f:c5:ff:cb:12: 23:94:ca:5e:bf:d4:01:75:21:d2:e9:0b:bd:cd:53: f9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B3:27:4C:9A:9B:84:29:A9:E9:2E:CC:82:86:E4:40:6B:21:3F:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7a68a9d-79fe-4cc7-9a7d-eda2f8cefdc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.224.0/20 Signature Algorithm: sha256WithRSAEncryption 59:d6:ca:e2:15:78:b3:f5:e0:10:84:31:b8:78:6c:c2:26:65: 79:64:4a:05:52:32:82:8b:cb:20:0a:17:7b:fd:f3:67:2f:b9: 6f:42:57:fe:de:cd:34:be:39:bc:c7:65:9d:15:9b:80:fd:13: 07:b6:de:6a:91:60:db:b7:09:6d:a9:c4:0f:d1:e7:cc:7e:9a: 91:90:b6:aa:5b:78:3b:78:e8:ff:64:3b:82:65:4a:ac:2b:bd: f7:cd:22:2d:a4:fc:40:e3:76:d5:af:a7:86:9a:9e:c0:fb:b0: 55:ad:59:74:71:6e:3b:bb:13:dc:23:b3:7b:e8:b0:85:24:17: 36:9f:b9:91:04:b0:d4:b9:63:e2:27:08:d9:33:82:a5:f2:83: 9b:dd:8c:13:cb:5e:e7:f3:ee:b1:f6:41:e1:e4:92:03:3c:b8: 2f:ea:f2:68:39:98:fa:e1:08:3b:05:80:79:4c:80:4a:de:b1: f2:af:bb:38:e9:4d:77:5d:52:d0:11:0e:93:22:79:dc:dc:a8: ef:39:fb:26:f4:99:43:0b:ea:02:21:4a:d2:06:a4:42:0d:74: c2:98:cd:e7:f4:0d:27:95:f6:47:c5:4e:cd:0d:4e:f9:41:4e: 7e:01:95:76:5e:47:4a:e1:b7:07:0c:77:e8:9b:64:e0:e8:ec: c4:14:5c:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJvAgh/4t38fxT9pp8DabsyWURRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2JmOGZkMTBkMjY0MGE4NWRjMzYyN2JjNjg3YTZkYTZl ODBkZDM5YmFhOTdlMmU2ZDcyMTM2OTY5MTg0OTJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxEt6kbeEtqPlNiyLO47t09evTk4PshyffSuRSN+yg2Oto mugi3csvK0S82CKeHmy3a4qgiFNC1VbJW21ZUtRnebH1Z5XytVA9HbX5VQBV1db9 FdaPTkN4O4ckfNaHxb4JJFiFCka/7ePaaDDqxRVEduz8JjPaz5KmTIlbD48wVOS7 4d4HtA8RZfN4AABbohnhVxsA+Lq8XKgnZ1AlbaoQFDk2eXSCx+Q9XjdjKZjUk/Wz CI12IDD2J/Rjh0JMH0yKDqLofxUrB7zO58azZgX4+JlOzel2miafs/XvaS75x9Qu RC8TmriL/+9Pxf/LEiOUyl6/1AF1IdLpC73NU/l7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6LMnTJqbhCmp6S7MgobkQGshP1owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3YTY4YTlkLTc5ZmUtNGNjNy05YTdkLWVkYTJmOGNlZmRjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASCsOAwDQYJKoZIhvcNAQELBQADggEBAFnWyuIVeLP14BCEMbh4bMImZXlk SgVSMoKLyyAKF3v982cvuW9CV/7ezTS+ObzHZZ0Vm4D9Ewe23mqRYNu3CW2pxA/R 58x+mpGQtqpbeDt46P9kO4JlSqwrvffNIi2k/EDjdtWvp4aansD7sFWtWXRxbju7 E9wjs3vosIUkFzafuZEEsNS5Y+InCNkzgqXyg5vdjBPLXufz7rH2QeHkkgM8uC/q 8mg5mPrhCDsFgHlMgEresfKvuzjpTXddUtARDpMiedzcqO85+yb0mUML6gIhStIG pEINdMKYzef0DSeV9kfFTs0NTvlBTn4BlXZeR0rhtwcMd+ibZODo7MQUXFI= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org