$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa File: d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa (raw, json) Hash identifier: oid7jy8KLd2NquVpZ1IdA0fqskb3Pa06RQP9CYt6Ruk= Subject key identifier: 90:15:75:50:5A:24:D4:02:BF:BC:D5:48:92:BD:C4:D1:3F:2A:3A:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F99E175A216BAF10DEC0427C56D0AA9D3E92745 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:99:e1:75:a2:16:ba:f1:0d:ec:04:27:c5:6d:0a:a9:d3:e9:27:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=408c571e5a87b4ee04ec056af1df580d1e01db33fdd26eb6264222e54d62c254, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d8:30:4b:39:db:1a:39:c2:7f:b1:a9:f9:f5: 25:bc:1a:39:d2:0f:bb:e2:89:80:53:22:96:73:86: 08:31:05:a7:69:ec:dc:90:af:96:d8:05:c8:35:9b: 33:18:76:39:b3:54:7d:92:84:9e:d7:68:a9:27:01: 7b:e2:34:1d:c6:fe:f4:d3:84:e6:d0:e2:2b:cd:d8: 3c:f7:40:2b:52:ab:4d:90:0f:8b:51:2b:00:2b:1a: 0e:13:5e:7c:93:89:68:ad:a2:b7:f2:f8:41:30:27: c4:19:c5:a7:7a:2b:34:b2:cb:43:bb:32:4e:63:75: c6:e3:d5:a3:b7:42:34:dc:a1:49:9f:b6:cb:fd:87: 1c:21:d1:19:90:76:02:d3:80:77:ea:4e:74:af:97: 63:bd:62:16:79:36:8e:21:62:63:df:37:54:1e:c2: 51:ef:61:2a:f0:f2:5c:86:ca:d6:6d:93:d7:26:3f: 3b:8a:07:71:a1:57:c5:46:6e:66:a5:32:d6:e9:60: 01:ac:cf:e3:f6:d5:a6:86:5e:43:94:ff:6c:c3:fa: 50:aa:c8:6c:24:92:2f:73:d4:81:88:b2:e3:2a:71: 3c:2d:8e:1d:e5:28:3e:f9:d6:2a:65:db:a8:c9:c5: 7c:b3:52:09:13:f4:b0:22:e3:b5:61:b5:63:88:04: c5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:15:75:50:5A:24:D4:02:BF:BC:D5:48:92:BD:C4:D1:3F:2A:3A:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.64.0/21 Signature Algorithm: sha256WithRSAEncryption 90:81:70:f3:ac:a4:4a:0d:11:2e:ab:e9:9e:27:be:ef:6a:4a: c4:c4:3a:79:46:3c:bb:78:6f:ba:c1:ad:0d:f5:cf:55:89:f5: 93:e7:34:b7:2a:63:51:e1:2d:84:11:3d:e0:93:d4:16:ef:74: cd:71:a7:e3:77:9c:d6:8c:fb:0c:45:47:96:46:5f:64:c6:10: 10:8b:54:1b:1e:e1:7a:1e:85:17:a2:26:61:99:41:14:b5:74: fa:f4:15:f7:1c:c0:8b:f2:95:e0:d0:e6:4d:dc:b7:5f:a3:e8: ed:17:52:ba:23:34:c7:2d:df:ba:cb:65:dd:8e:a1:26:6d:85: a5:1b:e4:33:88:d5:b1:c1:94:8c:91:f6:8e:1a:36:77:00:65: cc:fc:34:db:99:2c:30:4a:cf:b7:a2:b0:9a:ac:d5:d5:0a:ab: 09:06:f3:e8:2d:63:df:ba:36:d5:8b:f8:44:1b:a0:a0:06:81: e8:ca:8f:83:32:63:c8:38:a2:94:a1:a8:ce:20:cc:a1:90:fa: d0:4e:ad:73:aa:69:0f:05:aa:50:f0:e3:cd:62:76:6f:b1:a4: 1b:82:dc:b4:67:a6:3d:dc:cc:e0:46:13:95:f6:4d:ff:5b:a5: f6:7c:1b:ad:85:58:78:80:9a:44:c4:d3:a9:4e:19:7b:d3:ed: 59:dc:c9:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf5nhdaIWuvEN7AQnxW0KqdPpJ0UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDhjNTcxZTVhODdiNGVlMDRlYzA1NmFmMWRmNTgwZDFl MDFkYjMzZmRkMjZlYjYyNjQyMjJlNTRkNjJjMjU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC12DBLOdsaOcJ/san59SW8GjnSD7viiYBTIpZzhggxBadp 7NyQr5bYBcg1mzMYdjmzVH2ShJ7XaKknAXviNB3G/vTThObQ4ivN2Dz3QCtSq02Q D4tRKwArGg4TXnyTiWitorfy+EEwJ8QZxad6KzSyy0O7Mk5jdcbj1aO3QjTcoUmf tsv9hxwh0RmQdgLTgHfqTnSvl2O9YhZ5No4hYmPfN1QewlHvYSrw8lyGytZtk9cm PzuKB3GhV8VGbmalMtbpYAGsz+P21aaGXkOU/2zD+lCqyGwkki9z1IGIsuMqcTwt jh3lKD751ipl26jJxXyzUgkT9LAi47VhtWOIBMWPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkBV1UFok1AK/vNVIkr3E0T8qOnUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4NGRkYWNlLTIwYjktNGNhMy1iZTVkLWI2M2FhYTBlZTQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0AwDQYJKoZIhvcNAQELBQADggEBAJCBcPOspEoNES6r6Z4nvu9qSsTE OnlGPLt4b7rBrQ31z1WJ9ZPnNLcqY1HhLYQRPeCT1BbvdM1xp+N3nNaM+wxFR5ZG X2TGEBCLVBse4XoehReiJmGZQRS1dPr0FfccwIvyleDQ5k3ct1+j6O0XUrojNMct 37rLZd2OoSZthaUb5DOI1bHBlIyR9o4aNncAZcz8NNuZLDBKz7eisJqs1dUKqwkG 8+gtY9+6NtWL+EQboKAGgejKj4MyY8g4opShqM4gzKGQ+tBOrXOqaQ8FqlDw481i dm+xpBuC3LRnpj3czOBGE5X2Tf9bpfZ8G62FWHiAmkTE06lOGXvT7VncyS4= -----END CERTIFICATE-----Generated at Sat Sep 23 00:38:47 2023 by rpki-client on console-ams.rpki-client.org