$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa File: e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa (raw, json) Hash identifier: DizDGITlDrezZw5cyR3fA74VaBmERGt13CYsk1nAV20= Subject key identifier: 40:0B:28:0B:65:F3:45:2B:1A:A7:3A:59:F6:E9:66:CD:05:E7:95:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2941255D4D2CE2F895FDE93E39491D2D6E013C02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:41:25:5d:4d:2c:e2:f8:95:fd:e9:3e:39:49:1d:2d:6e:01:3c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=f349454bec8f0741c648705b8719317594e25c0ae626ff1870f5577bda6ad1d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9c:ba:95:c2:7f:da:f6:59:05:46:88:89:54: 69:45:63:fb:03:b6:5d:d8:5c:e3:69:0a:e6:9f:fb: f7:24:ff:7a:0b:ba:6c:6e:06:d6:87:0e:e4:80:47: 76:de:76:e9:6e:41:f6:42:2c:ed:2f:72:86:31:9a: 38:90:18:5f:82:7a:16:94:a3:f5:5d:be:c8:2c:d0: af:2b:1f:79:63:5e:36:b4:cb:55:ad:e7:ee:d8:fe: ff:52:02:f4:fb:ea:3d:ef:98:4d:67:73:6c:18:19: 45:9c:df:82:27:9e:ad:a6:f7:82:7f:e3:8d:29:d9: b8:89:60:87:0f:92:31:2a:5d:c9:04:36:1d:10:80: eb:11:f1:8f:31:77:ea:5a:25:8c:17:96:3c:57:b4: ed:f8:10:96:4f:03:95:78:64:ec:9e:c8:c5:c6:d7: b1:2d:82:9e:d5:73:90:80:69:f4:27:83:27:94:67: f3:0e:78:a6:5b:05:33:e4:88:4d:c7:31:93:e8:b6: 22:c0:95:61:e3:72:78:5f:55:7c:98:23:11:e6:6b: 3c:5a:fe:51:3e:b8:d0:f1:ad:b0:7a:dd:10:b6:46: f5:21:7d:cb:51:37:bd:9e:b9:3f:48:09:f8:2e:74: 68:58:8f:5f:83:4f:6d:ef:75:49:7d:7a:c8:b7:1e: 8d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0B:28:0B:65:F3:45:2B:1A:A7:3A:59:F6:E9:66:CD:05:E7:95:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.128.0/18 Signature Algorithm: sha256WithRSAEncryption b4:4b:aa:88:b3:5d:bc:d3:09:36:f9:60:b0:e5:ec:ef:98:7e: 8f:3a:9e:3d:51:0b:63:57:db:26:f7:03:5c:c4:de:cf:e2:51: 0b:6c:af:7a:1d:a8:16:ca:1f:f0:af:4c:51:0f:1b:cb:c4:f2: 5b:44:ba:4a:73:3e:7b:5d:9e:35:62:41:92:76:a4:7a:b8:d8: 42:93:d1:5a:8e:f4:67:06:92:00:00:22:4e:3f:e7:87:bc:e8: 5e:7f:a4:4d:17:61:e7:54:e3:64:3a:11:96:0a:72:cf:ba:6c: f8:7a:6b:6c:76:4e:44:6a:40:9e:fe:02:d8:66:2a:45:5d:aa: bc:22:88:df:d7:97:1a:ee:84:0b:eb:e0:20:e2:f7:19:3e:50: 3d:8f:50:30:7d:74:d2:51:54:8f:9f:8e:e9:2e:87:5f:e1:5d: 1a:4a:5c:3d:05:88:79:2a:ca:f4:7b:d1:38:1e:39:bd:89:c8: 2e:c6:45:3a:7e:fd:46:ca:c8:d8:0d:f7:4d:ff:e6:1a:c0:36: 91:fc:fc:5d:a7:d2:45:83:6a:09:1b:54:a1:a1:22:40:18:a3: a2:8c:4e:92:73:9b:c9:c9:42:e8:cf:d4:38:89:55:d4:c2:6f: 30:ef:73:9b:2c:31:ee:3e:7c:08:c7:9a:53:ac:bb:a2:7b:9c: 78:f9:f5:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKUElXU0s4viV/ek+OUkdLW4BPAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzQ5NDU0YmVjOGYwNzQxYzY0ODcwNWI4NzE5MzE3NTk0 ZTI1YzBhZTYyNmZmMTg3MGY1NTc3YmRhNmFkMWQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCenLqVwn/a9lkFRoiJVGlFY/sDtl3YXONpCuaf+/ck/3oL umxuBtaHDuSAR3beduluQfZCLO0vcoYxmjiQGF+CehaUo/Vdvsgs0K8rH3ljXja0 y1Wt5+7Y/v9SAvT76j3vmE1nc2wYGUWc34Innq2m94J/440p2biJYIcPkjEqXckE Nh0QgOsR8Y8xd+paJYwXljxXtO34EJZPA5V4ZOyeyMXG17Etgp7Vc5CAafQngyeU Z/MOeKZbBTPkiE3HMZPotiLAlWHjcnhfVXyYIxHmazxa/lE+uNDxrbB63RC2RvUh fctRN72euT9ICfgudGhYj1+DT23vdUl9esi3Ho0VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQAsoC2XzRSsapzpZ9ulmzQXnlaQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0MjNiYWE1LWJkM2ItNGE0Yy1hNzg5LWRkOGJiMjg0ZTBkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaCsIAwDQYJKoZIhvcNAQELBQADggEBALRLqoizXbzTCTb5YLDl7O+Yfo86 nj1RC2NX2yb3A1zE3s/iUQtsr3odqBbKH/CvTFEPG8vE8ltEukpzPntdnjViQZJ2 pHq42EKT0VqO9GcGkgAAIk4/54e86F5/pE0XYedU42Q6EZYKcs+6bPh6a2x2TkRq QJ7+AthmKkVdqrwiiN/XlxruhAvr4CDi9xk+UD2PUDB9dNJRVI+fjukuh1/hXRpK XD0FiHkqyvR70TgeOb2JyC7GRTp+/UbKyNgN903/5hrANpH8/F2n0kWDagkbVKGh IkAYo6KMTpJzm8nJQujP1DiJVdTCbzDvc5ssMe4+fAjHmlOsu6J7nHj59Rw= -----END CERTIFICATE-----Generated at Fri Sep 22 17:51:34 2023 by rpki-client on console-ams.rpki-client.org