$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa File: d8fadca1-ece1-4fd9-8c0c-44964044b286.roa (raw, json) Hash identifier: sMFG9wog4OVlvQ9lvJufqAACfwOrRqSb84tNrXknf6I= Subject key identifier: 80:E3:99:61:77:0B:5B:CB:39:3A:35:01:77:DD:6C:B0:20:48:D6:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05A6F8F26E81CB36AA92091535CCCCA7DD8A76FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a6:f8:f2:6e:81:cb:36:aa:92:09:15:35:cc:cc:a7:dd:8a:76:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=07a0abd1244c4b47c2567953d558a2eccbf23a32fd812af9d48b52645a193adb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:2e:7c:fc:3d:72:60:ea:90:14:2d:1e:3c: 7a:4d:22:c8:e5:f6:6f:60:29:4e:dc:1a:42:32:9b: 3c:55:56:ab:40:b3:51:9d:29:47:9a:63:0e:71:ed: 7b:a3:07:34:0a:06:35:5a:0b:cb:c6:48:e7:b8:06: fe:7a:5b:81:02:ee:de:1b:4d:79:1c:45:85:d4:49: 57:a0:e2:d3:cb:5d:e8:ab:04:ad:3a:b0:cb:7e:87: 24:a5:f7:61:ce:54:06:d8:ea:58:b6:58:24:d2:6e: a0:e9:62:35:de:f7:b6:bb:58:c6:86:f0:41:df:fb: 79:97:c9:48:76:2d:57:48:c4:ed:a0:41:f6:b7:59: bb:b4:19:13:d7:bd:35:87:e1:dd:53:22:0d:4d:1f: 08:90:09:ff:c1:c9:02:19:c1:15:71:a9:78:96:d1: 17:29:e3:12:e3:37:67:0b:32:8e:36:2e:6f:83:91: 46:b6:8f:f0:87:f6:32:6a:64:7d:5b:0d:43:f8:aa: 13:b2:4a:58:a8:89:aa:2c:4a:e7:38:b7:66:bf:f1: 40:75:24:65:90:89:5f:d3:9c:ae:a8:4a:82:72:98: e5:92:83:53:3b:4e:aa:bc:65:54:c3:0c:e3:ef:f7: 15:55:f1:38:e9:fa:97:be:d9:3a:f5:34:ac:e0:83: 1c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E3:99:61:77:0B:5B:CB:39:3A:35:01:77:DD:6C:B0:20:48:D6:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 88:f5:c2:de:a3:41:e5:eb:b0:bc:41:d4:4c:a1:d5:48:98:a2: 48:8b:71:a8:d2:22:c4:b4:cd:3f:b4:f3:cb:3d:c1:eb:51:f6: df:69:8b:67:9c:b5:02:09:49:26:47:44:ae:22:aa:9f:c3:28: 76:c1:fc:32:da:74:57:44:5c:27:22:51:4d:eb:78:69:bf:2f: 5e:ce:30:4f:dd:fa:d0:2d:90:d9:1f:51:fb:d1:e0:36:35:3e: df:85:f9:c1:2e:36:d7:2f:34:5b:f2:76:f2:1c:5b:00:5b:5c: e9:b3:56:34:b8:c0:c9:19:d6:55:c9:ef:ee:fa:d1:88:81:71: 3b:9a:16:cd:45:fe:41:4c:13:1e:7c:d4:f6:b5:96:ef:31:65: 60:81:2a:78:78:42:e5:39:f7:4e:96:c6:35:55:86:85:68:e6: 3a:73:17:c8:9e:a0:64:82:df:51:1b:3f:a3:cc:57:d0:1f:7f: 15:d1:2b:ce:fa:66:11:68:ec:ec:c3:4d:67:ff:7e:99:ff:48: 6d:6e:8c:43:1e:ce:7b:61:56:a1:72:c6:1c:7b:44:0d:f8:e4: f6:52:2c:b3:0e:65:23:39:cd:dd:1d:b5:12:85:f1:1c:e7:e0: 68:86:5b:d8:1e:93:d3:a3:df:c7:55:38:ba:16:86:b2:ab:62: 71:7d:d3:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBab48m6ByzaqkgkVNczMp92Kdv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2EwYWJkMTI0NGM0YjQ3YzI1Njc5NTNkNTU4YTJlY2Ni ZjIzYTMyZmQ4MTJhZjlkNDhiNTI2NDVhMTkzYWRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfGi58/D1yYOqQFC0ePHpNIsjl9m9gKU7cGkIymzxVVqtA s1GdKUeaYw5x7XujBzQKBjVaC8vGSOe4Bv56W4EC7t4bTXkcRYXUSVeg4tPLXeir BK06sMt+hySl92HOVAbY6li2WCTSbqDpYjXe97a7WMaG8EHf+3mXyUh2LVdIxO2g Qfa3Wbu0GRPXvTWH4d1TIg1NHwiQCf/ByQIZwRVxqXiW0Rcp4xLjN2cLMo42Lm+D kUa2j/CH9jJqZH1bDUP4qhOySlioiaosSuc4t2a/8UB1JGWQiV/TnK6oSoJymOWS g1M7Tqq8ZVTDDOPv9xVV8Tjp+pe+2Tr1NKzggxy3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgOOZYXcLW8s5OjUBd91ssCBI1n8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZmFkY2ExLWVjZTEtNGZkOS04YzBjLTQ0OTY0MDQ0YjI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBAIj1wt6jQeXrsLxB1Eyh1UiYokiL cajSIsS0zT+088s9wetR9t9pi2ectQIJSSZHRK4iqp/DKHbB/DLadFdEXCciUU3r eGm/L17OME/d+tAtkNkfUfvR4DY1Pt+F+cEuNtcvNFvydvIcWwBbXOmzVjS4wMkZ 1lXJ7+760YiBcTuaFs1F/kFMEx581Pa1lu8xZWCBKnh4QuU5906WxjVVhoVo5jpz F8ieoGSC31EbP6PMV9AffxXRK876ZhFo7OzDTWf/fpn/SG1ujEMeznthVqFyxhx7 RA345PZSLLMOZSM5zd0dtRKF8Rzn4GiGW9gek9Oj38dVOLoWhrKrYnF906Y= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org