$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa File: daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa (raw, json) Hash identifier: 9l+GfVDQ9Immi9YVHxcXYsHCemw/vHZOIdHiwvKrgxY= Subject key identifier: B5:91:D1:D0:21:93:5D:FB:3C:2C:BF:7F:4E:C1:CC:6B:38:14:5C:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C97C440A30D036D2905D2CBB383B978C8D4FFBC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:97:c4:40:a3:0d:03:6d:29:05:d2:cb:b3:83:b9:78:c8:d4:ff:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=f4be64538e9d0ca13be71fc9cb1c1f230699fbaadaf42221f86f93c27ab2e04b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:8c:ba:55:5e:02:1b:2d:ca:c5:34:f2:d6:62: 4f:9d:5b:14:cb:5e:ee:a7:a0:5e:33:9d:8e:81:dc: 25:c4:ee:a2:ad:1b:50:1b:6b:6e:81:8f:40:fa:cf: 63:bf:7a:30:73:b3:48:91:3f:1d:cc:01:2e:bb:01: 33:33:f9:96:55:da:e3:02:0f:73:4e:85:48:81:8d: cd:a5:95:4e:6e:2c:57:bc:73:7c:34:c4:c1:07:1c: 5e:f2:ba:ac:60:2e:d5:33:6e:9e:93:61:62:8e:2d: 05:ff:62:f1:0e:03:d7:5e:db:d7:68:65:a1:fb:0d: 1c:9e:de:2f:bb:e9:66:c3:da:38:e7:2c:f6:09:dd: 0d:73:48:cc:ce:86:9e:88:4f:b0:08:47:f7:7b:15: 74:17:0c:ad:fe:5d:eb:8d:06:11:68:34:61:2e:bf: 90:e7:af:4a:13:77:91:4c:09:7c:7c:50:4f:0d:0e: f9:7a:aa:47:2f:a1:cd:be:2a:1d:1b:11:fa:d5:02: 67:6b:90:96:2e:19:74:0a:50:51:e5:5c:02:df:b7: 3c:68:6d:72:2f:48:3e:4d:a8:0e:5a:a0:d8:77:16: ae:b6:5b:55:05:c4:a3:6b:15:fd:36:70:28:15:f1: 00:33:98:79:67:ad:4c:dc:ba:0a:28:01:c5:ef:47: b1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:91:D1:D0:21:93:5D:FB:3C:2C:BF:7F:4E:C1:CC:6B:38:14:5C:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.16.0/21 Signature Algorithm: sha256WithRSAEncryption 20:5d:c5:cc:45:d3:d9:c8:86:87:e6:cd:67:a2:b3:0a:5e:53: ae:5a:05:9c:f3:df:1e:cf:d2:52:bd:c4:73:b4:58:07:32:25: 49:04:fe:4e:3f:98:f3:76:b1:c6:99:c1:87:91:e4:ee:69:36: 24:a1:d8:d1:86:c7:93:4d:fb:8e:45:df:ed:87:cf:1b:35:f3: 7f:17:9c:bb:4a:c0:c9:d5:74:5f:6e:cf:8d:84:ac:19:67:b5: dc:5f:68:08:0e:b0:eb:71:9e:9c:01:ba:2b:91:5d:72:97:eb: b7:9e:75:51:65:01:9f:09:ab:01:fe:8d:82:11:2d:6e:89:0c: 0c:1e:a4:df:8e:95:84:96:9a:3a:e6:d9:ce:bd:81:77:63:51: 17:fe:ac:a7:41:e3:f2:bd:c1:a7:8c:11:ed:6a:1e:b0:04:1a: 18:67:ec:c4:ce:c9:c4:38:aa:60:d6:da:a0:4d:d6:02:f2:9c: 45:17:6a:6c:c1:97:36:0e:40:a6:ca:97:1c:7a:ff:8d:d9:3a: f6:09:69:07:a3:ed:0a:ed:bd:74:7f:78:43:c8:80:b5:c3:06: 43:dc:bb:c3:7b:3d:bf:f5:c6:18:9f:b5:b5:3b:64:19:4e:55: f9:b5:1a:6d:b9:14:51:de:7d:28:66:d1:0e:42:0e:8d:b2:ad: 7d:71:4f:36 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDJfEQKMNA20pBdLLs4O5eMjU/7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGJlNjQ1MzhlOWQwY2ExM2JlNzFmYzljYjFjMWYyMzA2 OTlmYmFhZGFmNDIyMjFmODZmOTNjMjdhYjJlMDRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyjLpVXgIbLcrFNPLWYk+dWxTLXu6noF4znY6B3CXE7qKt G1Aba26Bj0D6z2O/ejBzs0iRPx3MAS67ATMz+ZZV2uMCD3NOhUiBjc2llU5uLFe8 c3w0xMEHHF7yuqxgLtUzbp6TYWKOLQX/YvEOA9de29doZaH7DRye3i+76WbD2jjn LPYJ3Q1zSMzOhp6IT7AIR/d7FXQXDK3+XeuNBhFoNGEuv5Dnr0oTd5FMCXx8UE8N Dvl6qkcvoc2+Kh0bEfrVAmdrkJYuGXQKUFHlXALftzxobXIvSD5NqA5aoNh3Fq62 W1UFxKNrFf02cCgV8QAzmHlnrUzcugooAcXvR7EzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtZHR0CGTXfs8LL9/TsHMazgUXH4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhYTI1ZjIyLTliN2MtNGM5Yi04YjJkLTcxZmJiOTgwMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlhAwDQYJKoZIhvcNAQELBQADggEBACBdxcxF09nIhofmzWeiswpeU65a BZzz3x7P0lK9xHO0WAcyJUkE/k4/mPN2scaZwYeR5O5pNiSh2NGGx5NN+45F3+2H zxs1838XnLtKwMnVdF9uz42ErBlntdxfaAgOsOtxnpwBuiuRXXKX67eedVFlAZ8J qwH+jYIRLW6JDAwepN+OlYSWmjrm2c69gXdjURf+rKdB4/K9waeMEe1qHrAEGhhn 7MTOycQ4qmDW2qBN1gLynEUXamzBlzYOQKbKlxx6/43ZOvYJaQej7QrtvXR/eEPI gLXDBkPcu8N7Pb/1xhiftbU7ZBlOVfm1Gm25FFHefShm0Q5CDo2yrX1xTzY= -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org