$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e535d71b-2137-46a9-a280-8877a2d7d47d.roa File: e535d71b-2137-46a9-a280-8877a2d7d47d.roa (raw, json) Hash identifier: c9EFRvlFmNcN+iwjzb8uNERuYKufoe8v35JItlLnf8E= Subject key identifier: 68:27:ED:3C:A4:06:DD:6B:A5:0C:FB:DD:A0:5E:FE:BE:77:6E:3A:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 137CD6B631C99402AAFD957AB41F9AE0FD4C2E1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e535d71b-2137-46a9-a280-8877a2d7d47d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7c:d6:b6:31:c9:94:02:aa:fd:95:7a:b4:1f:9a:e0:fd:4c:2e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=281f8a8b965d0703aef32ce524d06cff4e7bfd61bfb80de9cab2b78fa5e25e31, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c0:2e:05:80:c1:ea:f7:b9:51:54:70:76:fc: 82:88:71:9e:53:09:6e:30:94:33:ec:f9:e4:a7:0e: 52:4a:42:64:48:cb:9a:0a:eb:5b:14:d5:f1:f6:f7: 94:b3:8a:2e:17:d2:10:05:3d:d8:53:58:73:56:de: 66:4b:ed:71:29:a6:c5:c2:fc:ce:52:17:2f:21:60: f2:40:36:b5:a8:4f:79:2b:12:c8:b7:f3:2e:cf:8d: 86:aa:79:c1:28:84:c2:a5:3b:10:31:3c:44:a6:06: 5c:73:49:b4:88:25:95:17:48:6d:9b:45:62:46:89: ef:d2:cd:a0:85:79:6e:e5:88:86:37:2a:98:4e:5d: 44:6f:f9:34:7c:89:7a:48:2f:f2:a7:cc:22:99:49: e9:8f:68:d1:c5:de:8f:fa:11:ba:3e:13:a3:f6:d8: 3c:17:15:71:34:57:64:d9:11:58:b6:77:e2:5e:fe: b7:07:26:cf:96:2c:3a:5d:f1:90:66:f1:00:52:de: ab:84:af:b2:7b:55:79:af:3b:5a:ab:3b:63:25:2c: 2e:d4:53:01:ae:d0:0c:f9:8c:bb:f5:02:30:72:1b: 12:70:d6:29:c2:52:f0:a1:fc:6a:65:4c:c2:ab:9d: 05:d2:50:6e:2d:7b:57:28:43:b0:06:f5:16:0b:fc: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:27:ED:3C:A4:06:DD:6B:A5:0C:FB:DD:A0:5E:FE:BE:77:6E:3A:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e535d71b-2137-46a9-a280-8877a2d7d47d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.40.0/24 Signature Algorithm: sha256WithRSAEncryption b5:e0:1f:74:25:15:d3:5f:af:54:22:59:6a:0a:88:3c:73:c9: 37:2c:00:75:57:c1:6d:20:53:b1:75:aa:cb:cc:d1:27:47:5f: 46:f4:38:8c:79:66:62:23:e4:f5:38:5e:fd:23:da:9e:8c:9d: 38:c3:b9:5b:a7:2a:3c:1b:f1:30:5d:de:e6:1c:a4:f1:82:3c: 9c:9b:0c:94:97:5d:6a:27:ef:ae:b3:0b:de:d8:c0:c3:7a:4e: ab:22:69:8f:52:59:ec:12:d2:a1:d2:d8:cb:a3:45:2a:26:bb: b2:20:0a:71:bc:52:c4:7b:33:d5:ba:8d:32:36:07:67:bf:77: b3:b0:e8:23:7b:b6:5f:86:7a:7f:0e:62:8b:8d:3c:03:7d:72: 88:2b:28:92:7b:61:ca:f7:6b:51:15:d5:56:5e:b2:c5:f1:5e: ce:50:e4:3c:c3:04:93:29:1f:94:13:e7:be:f1:6e:37:3f:fe: ee:4a:33:7e:5d:7a:79:2e:6a:c1:ac:1d:83:c6:2a:91:c1:73: b0:5d:a4:5c:91:dd:b1:9a:d4:10:76:b3:3d:67:f6:83:df:06: cf:2d:e6:e2:30:b4:75:a9:45:35:a8:74:2f:1d:2c:20:19:a7: ac:6e:b6:b7:0a:85:98:ec:73:b0:3c:06:76:43:0e:6a:36:bf: eb:eb:91:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE3zWtjHJlAKq/ZV6tB+a4P1MLhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODFmOGE4Yjk2NWQwNzAzYWVmMzJjZTUyNGQwNmNmZjRl N2JmZDYxYmZiODBkZTljYWIyYjc4ZmE1ZTI1ZTMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUwC4FgMHq97lRVHB2/IKIcZ5TCW4wlDPs+eSnDlJKQmRI y5oK61sU1fH295Szii4X0hAFPdhTWHNW3mZL7XEppsXC/M5SFy8hYPJANrWoT3kr Esi38y7PjYaqecEohMKlOxAxPESmBlxzSbSIJZUXSG2bRWJGie/SzaCFeW7liIY3 KphOXURv+TR8iXpIL/KnzCKZSemPaNHF3o/6Ebo+E6P22DwXFXE0V2TZEVi2d+Je /rcHJs+WLDpd8ZBm8QBS3quEr7J7VXmvO1qrO2MlLC7UUwGu0Az5jLv1AjByGxJw 1inCUvCh/GplTMKrnQXSUG4te1coQ7AG9RYL/FxbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaCftPKQG3WulDPvdoF7+vnduOhYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1MzVkNzFiLTIxMzctNDZhOS1hMjgwLTg4NzdhMmQ3ZDQ3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlCgwDQYJKoZIhvcNAQELBQADggEBALXgH3QlFdNfr1QiWWoKiDxzyTcs AHVXwW0gU7F1qsvM0SdHX0b0OIx5ZmIj5PU4Xv0j2p6MnTjDuVunKjwb8TBd3uYc pPGCPJybDJSXXWon766zC97YwMN6TqsiaY9SWewS0qHS2MujRSomu7IgCnG8UsR7 M9W6jTI2B2e/d7Ow6CN7tl+Gen8OYouNPAN9cogrKJJ7Ycr3a1EV1VZessXxXs5Q 5DzDBJMpH5QT577xbjc//u5KM35denkuasGsHYPGKpHBc7BdpFyR3bGa1BB2sz1n 9oPfBs8t5uIwtHWpRTWodC8dLCAZp6xutrcKhZjsc7A8BnZDDmo2v+vrkRY= -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:03 2023 by rpki-client on console-fra.rpki-client.org