$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e71dac1d-7e4c-4d19-8ca9-0a142705ffad.roa File: e71dac1d-7e4c-4d19-8ca9-0a142705ffad.roa (raw, json) Hash identifier: z0nctT9cP0JIO48uOeBtKXsA8qbV7g2fPkwwfhERZ0s= Subject key identifier: 5B:4F:6A:F2:A5:1F:CF:66:98:47:E4:34:D0:9A:25:F8:35:66:8A:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 786E2C62A8A906DA3A38F97AEC3FE8321AFAC47C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e71dac1d-7e4c-4d19-8ca9-0a142705ffad.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 136.10.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6e:2c:62:a8:a9:06:da:3a:38:f9:7a:ec:3f:e8:32:1a:fa:c4:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=587a8f82bb74f30cfb6c89e085cc0a1b7d807cc0a03f1e20aa1806bb504b51a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ab:d1:03:07:7a:09:55:1f:2d:a7:bc:80:b6: 09:1b:0a:db:99:e9:45:bf:3a:09:de:73:45:44:8d: fb:4d:20:b8:dc:00:54:f4:fb:69:13:e6:63:5d:8a: 8b:a5:ad:e7:a4:4c:49:ec:97:cc:37:0e:58:16:48: 07:0e:65:f8:f4:73:d1:1c:e0:85:2e:2e:25:63:c3: 59:2a:e4:9f:fc:64:db:dd:de:ed:0e:3c:45:96:f9: 2f:1c:80:24:f1:da:13:7e:f4:29:fb:dd:da:c1:4d: 22:a7:b0:61:8d:47:8c:2a:22:7b:85:91:27:c7:be: 44:12:bf:ff:d7:ee:d1:87:70:be:66:97:cd:ac:85: e3:81:ff:56:6b:01:2d:a6:1a:eb:77:56:e5:6e:46: c0:fb:4a:47:0b:7b:73:68:c4:82:ac:99:eb:56:fa: 59:2d:6d:3c:b6:6f:f1:25:71:21:9c:0a:c3:59:5e: db:18:49:3c:e1:e0:b0:1c:16:c3:9e:21:50:ec:73: d2:cb:c3:0e:81:17:d5:60:16:57:9a:d9:5a:98:bd: 1c:05:1b:25:1d:da:9a:a4:1c:2c:4b:6a:f2:1b:17: d5:53:41:21:87:ca:1b:f2:85:7e:28:e1:bb:95:3c: d5:f0:17:bc:c1:d0:1a:fc:cd:0b:9b:fc:33:9e:0d: bd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4F:6A:F2:A5:1F:CF:66:98:47:E4:34:D0:9A:25:F8:35:66:8A:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e71dac1d-7e4c-4d19-8ca9-0a142705ffad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.10.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:8a:d8:d7:7f:c6:7f:2c:4d:25:d4:9f:6c:4d:9b:ed:f8:16: f8:9b:8e:1f:f1:3e:e6:37:6b:63:e9:eb:c9:06:d1:fa:df:4d: ad:03:65:93:a6:e2:ed:52:43:20:6c:e5:6c:f4:1a:8c:73:a7: f1:c2:fa:e7:d1:2d:94:63:8c:c7:9b:d1:ce:76:f4:12:45:4b: 45:6b:ab:6b:24:d3:14:c6:3b:e0:fc:ac:95:c8:2a:fc:5b:26: 4b:46:49:89:f5:30:d1:68:ec:72:b0:c5:29:74:8a:a1:c5:c3: fb:cd:66:11:04:3d:fe:c6:79:5a:8d:84:a2:c5:e4:73:4a:47: 9a:fb:84:1c:0b:a5:ef:7f:bb:f5:21:51:69:22:7a:02:0d:58: 6c:e8:b9:70:5b:ed:68:69:3d:ad:4f:72:28:c8:bd:5d:c8:c7: f2:f2:fa:10:2c:e7:2a:ff:ff:d1:e8:09:2f:66:c0:ae:c8:70: c8:b5:4a:4e:4b:a1:da:f5:95:28:a7:5a:89:8e:64:a3:94:29: fb:fd:11:13:1c:ae:92:c9:0c:9b:51:1e:83:72:57:44:e5:b8: e3:3a:25:c1:25:93:f9:68:5e:ce:7f:13:f2:79:44:f5:a6:1d: 6e:51:60:80:02:fb:7d:9e:4c:f6:df:7d:55:66:50:6f:bf:f1: b3:78:68:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeG4sYqipBto6OPl67D/oMhr6xHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODdhOGY4MmJiNzRmMzBjZmI2Yzg5ZTA4NWNjMGExYjdk ODA3Y2MwYTAzZjFlMjBhYTE4MDZiYjUwNGI1MWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1q9EDB3oJVR8tp7yAtgkbCtuZ6UW/Ognec0VEjftNILjc AFT0+2kT5mNdioulreekTEnsl8w3DlgWSAcOZfj0c9Ec4IUuLiVjw1kq5J/8ZNvd 3u0OPEWW+S8cgCTx2hN+9Cn73drBTSKnsGGNR4wqInuFkSfHvkQSv//X7tGHcL5m l82sheOB/1ZrAS2mGut3VuVuRsD7SkcLe3NoxIKsmetW+lktbTy2b/ElcSGcCsNZ XtsYSTzh4LAcFsOeIVDsc9LLww6BF9VgFlea2VqYvRwFGyUd2pqkHCxLavIbF9VT QSGHyhvyhX4o4buVPNXwF7zB0Br8zQub/DOeDb3fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUW09q8qUfz2aYR+Q00Jol+DVmisswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MWRhYzFkLTdlNGMtNGQxOS04Y2E5LTBhMTQyNzA1ZmZhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCICjANBgkqhkiG9w0BAQsFAAOCAQEAH4rY13/GfyxNJdSfbE2b7fgW+JuO H/E+5jdrY+nryQbR+t9NrQNlk6bi7VJDIGzlbPQajHOn8cL659EtlGOMx5vRznb0 EkVLRWurayTTFMY74Pyslcgq/FsmS0ZJifUw0WjscrDFKXSKocXD+81mEQQ9/sZ5 Wo2EosXkc0pHmvuEHAul73+79SFRaSJ6Ag1YbOi5cFvtaGk9rU9yKMi9XcjH8vL6 ECznKv//0egJL2bArshwyLVKTkuh2vWVKKdaiY5ko5Qp+/0RExyukskMm1Eeg3JX ROW44zolwSWT+Whezn8T8nlE9aYdblFggAL7fZ5M9t99VWZQb7/xs3hoRQ== -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:14 2023 by rpki-client on console-ams.rpki-client.org