$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd3c74a9-7fdd-4392-ac3b-aa8010db2ffb.roa File: dd3c74a9-7fdd-4392-ac3b-aa8010db2ffb.roa (raw, json) Hash identifier: JEvEV9/o7cXuav0FvXnaFKFnZU3k8r0lh+la9gd72rA= Subject key identifier: CE:D2:79:55:F2:08:07:1C:24:9F:E0:14:35:4C:33:62:F5:2A:00:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05C81AC021C7F2C3F2A20CE81FA36FCB22A23255 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd3c74a9-7fdd-4392-ac3b-aa8010db2ffb.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 98.80.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:c8:1a:c0:21:c7:f2:c3:f2:a2:0c:e8:1f:a3:6f:cb:22:a2:32:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3c1af9dd0a35f29bbccd936d5cdedc2c6fd10ac2fc3d67282561974cfee8e1e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f6:e8:fe:11:83:c5:2c:c3:cb:fc:d1:6f:43: 25:88:6a:e1:8b:4f:09:be:d9:3f:00:92:70:fe:e9: da:ac:bd:65:10:f2:ac:c7:ac:3b:bb:5d:3a:33:b6: b2:29:31:fc:b5:71:5f:09:97:9a:8a:56:c0:4b:8d: 00:f2:3c:e0:20:f3:67:bb:15:26:03:c0:2a:c0:54: e2:81:0c:51:56:2c:b1:18:94:0b:8d:5c:30:18:26: a1:66:2e:f7:71:18:92:44:db:fe:76:13:e3:0b:ba: 11:09:a7:d0:88:e1:95:36:33:02:97:dc:28:ed:73: 24:9d:69:96:ec:64:94:24:ab:1a:7c:3d:34:d4:5c: 35:e8:4a:18:ce:42:d8:94:c9:c0:27:62:b3:ce:15: fc:c6:88:f5:af:b6:4d:7e:a7:1d:a5:6a:16:54:0b: 3a:5f:c8:0b:c1:59:62:95:03:1e:24:82:d8:d1:3b: b8:8e:b2:d8:b8:62:a9:8e:74:7e:b4:fd:35:ce:75: 4a:6d:b9:86:d0:1e:6d:88:dd:27:10:c2:6e:ec:3b: 39:35:f9:91:f0:eb:a7:19:69:18:3d:27:cb:a7:a9: c2:ba:33:59:1b:93:4c:63:61:50:e3:2a:90:b8:b0: be:83:be:ba:ca:25:8d:dc:04:ed:a4:79:30:0f:5e: bc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D2:79:55:F2:08:07:1C:24:9F:E0:14:35:4C:33:62:F5:2A:00:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd3c74a9-7fdd-4392-ac3b-aa8010db2ffb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.80.0.0/12 Signature Algorithm: sha256WithRSAEncryption 33:11:53:bd:41:b3:b3:a1:96:56:42:04:c5:bc:6e:37:33:0d: f3:bd:e8:91:6c:55:55:f9:1c:25:1d:f0:b7:1f:4b:9b:97:a2: ff:bc:ec:fc:aa:b2:5b:10:f6:26:66:56:a0:7f:ae:e7:a4:57: 6d:04:9f:2c:4d:ef:aa:2a:c9:c0:3e:fe:8a:55:c0:1c:cf:36: ab:89:6f:8e:26:2f:a6:9b:c0:be:2b:e5:2b:8c:db:91:3a:e0: 3a:b0:4e:07:32:65:d3:80:0b:12:a1:40:4b:fc:78:7b:1b:f6: f8:d0:f5:da:b0:50:a7:e6:e1:4d:a9:c0:43:8c:fa:72:07:20: bf:47:9a:f3:bb:a6:bf:e7:e4:da:41:41:77:63:75:9f:7c:aa: b9:c0:ee:e5:f1:b2:31:2b:a2:aa:b1:73:6d:b9:38:be:54:18: fd:c4:03:67:8b:e4:05:fe:bf:27:5b:bd:db:b8:d3:4f:fc:e1: 67:18:97:66:59:ef:3c:ef:19:f9:bf:2a:af:75:87:38:8f:bc: 75:8f:ec:48:96:4a:0f:82:ab:bd:4e:b9:71:82:ce:c0:d2:0f: 4a:d7:d1:85:a2:43:eb:3a:8a:ae:4f:6e:7f:c4:74:8b:8c:4e: c0:a0:53:5a:a6:1a:d5:58:3b:82:0a:a8:80:38:19:78:43:a3: bb:27:68:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBcgawCHH8sPyogzoH6NvyyKiMlUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzFhZjlkZDBhMzVmMjliYmNjZDkzNmQ1Y2RlZGMyYzZm ZDEwYWMyZmMzZDY3MjgyNTYxOTc0Y2ZlZThlMWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL9uj+EYPFLMPL/NFvQyWIauGLTwm+2T8AknD+6dqsvWUQ 8qzHrDu7XToztrIpMfy1cV8Jl5qKVsBLjQDyPOAg82e7FSYDwCrAVOKBDFFWLLEY lAuNXDAYJqFmLvdxGJJE2/52E+MLuhEJp9CI4ZU2MwKX3CjtcySdaZbsZJQkqxp8 PTTUXDXoShjOQtiUycAnYrPOFfzGiPWvtk1+px2lahZUCzpfyAvBWWKVAx4kgtjR O7iOsti4YqmOdH60/TXOdUptuYbQHm2I3ScQwm7sOzk1+ZHw66cZaRg9J8unqcK6 M1kbk0xjYVDjKpC4sL6DvrrKJY3cBO2keTAPXrz7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUztJ5VfIIBxwkn+AUNUwzYvUqAJowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkM2M3NGE5LTdmZGQtNDM5Mi1hYzNiLWFhODAxMGRiMmZmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwRiUDANBgkqhkiG9w0BAQsFAAOCAQEAMxFTvUGzs6GWVkIExbxuNzMN873o kWxVVfkcJR3wtx9Lm5ei/7zs/KqyWxD2JmZWoH+u56RXbQSfLE3vqirJwD7+ilXA HM82q4lvjiYvppvAvivlK4zbkTrgOrBOBzJl04ALEqFAS/x4exv2+ND12rBQp+bh TanAQ4z6cgcgv0ea87umv+fk2kFBd2N1n3yqucDu5fGyMSuiqrFzbbk4vlQY/cQD Z4vkBf6/J1u927jTT/zhZxiXZlnvPO8Z+b8qr3WHOI+8dY/sSJZKD4KrvU65cYLO wNIPStfRhaJD6zqKrk9uf8R0i4xOwKBTWqYa1Vg7ggqogDgZeEOjuydowg== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:53 2023 by rpki-client on console-fra.rpki-client.org