$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea582330-67bf-4874-9a0f-c423d8dbd0ef.roa File: ea582330-67bf-4874-9a0f-c423d8dbd0ef.roa (raw, json) Hash identifier: vrL52jtY8eY7OFLWBKFTIq2h+vUzJmGsnPPtFp0Rnwo= Subject key identifier: 04:51:D6:31:96:00:E4:A8:6A:3E:37:36:C1:DC:30:8A:CA:70:FE:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 344FD5AE6855A73AA299C84DB3609E548824250A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea582330-67bf-4874-9a0f-c423d8dbd0ef.roa Signing time: Tue 29 Aug 2023 00:00:00 +0000 ROA not before: Tue 29 Aug 2023 00:00:00 +0000 ROA not after: Tue 03 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 12:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:4f:d5:ae:68:55:a7:3a:a2:99:c8:4d:b3:60:9e:54:88:24:25:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:00:00 2023 GMT Not After : Oct 3 23:59:59 2023 GMT Subject: serialNumber=a2fd233e4961b2c85779ec55b601207999e648a231d2f15487e8f0bbee0d42fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5c:dc:7f:8e:31:be:c6:31:15:be:6b:d8:60: 0f:1c:3d:c5:87:b0:da:1e:a4:08:93:ff:32:ef:34: c3:58:d0:e7:94:ca:47:88:74:f0:7f:aa:8d:4f:3b: ab:fb:ee:8a:62:40:e9:f9:af:6b:ba:e0:28:0e:01: 56:2d:68:c7:f5:96:2b:80:de:9c:2f:92:3d:da:fa: 5e:6f:d8:fc:30:44:d4:80:4b:1b:b2:3f:46:f8:ba: 8d:7b:a0:99:8a:b5:8e:a9:cc:e8:b7:f3:ae:69:11: d7:4d:ae:a8:60:bb:54:81:67:2c:7e:32:71:f0:7a: 17:3b:77:f8:d3:a5:9a:79:f3:a4:63:40:b3:1a:87: 7c:a7:b8:ee:de:6f:4c:6e:03:e0:68:dc:46:5e:d9: 68:2a:2e:ef:4a:2f:3d:c6:5d:5e:1b:a5:94:97:69: 0f:35:aa:84:bb:78:5c:e9:ee:22:89:a1:40:5d:39: 32:9d:51:62:75:79:45:cb:a5:58:76:db:52:ae:5c: 76:79:88:df:b3:6a:31:5b:e7:db:03:0d:6a:18:f2: fc:8d:a2:65:a2:a1:f2:75:81:e7:cf:cc:0e:e7:c8: 63:2a:8b:92:2d:cb:6c:e5:c4:09:29:09:3f:fd:ad: 54:92:3e:96:c2:98:e4:05:da:32:83:49:fa:79:8d: 15:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:51:D6:31:96:00:E4:A8:6A:3E:37:36:C1:DC:30:8A:CA:70:FE:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea582330-67bf-4874-9a0f-c423d8dbd0ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.117.0/24 Signature Algorithm: sha256WithRSAEncryption bf:69:2f:b2:e0:e4:7d:99:06:95:2f:27:fb:84:8d:a0:5e:e6: d1:56:06:ba:38:d4:ae:9a:ae:95:e3:56:f2:b6:75:b8:97:7f: 93:7a:12:99:df:57:27:5b:53:d6:28:2f:1e:55:fc:38:15:96: 79:6e:43:86:09:cc:96:2e:31:74:8c:af:02:65:9a:9c:a1:b0: ab:78:22:56:c1:46:5d:e1:6a:9e:34:e2:e7:5f:22:0d:e9:cd: 21:79:c4:be:bb:e2:26:23:fe:dc:da:2c:94:16:a0:03:22:e6: d4:16:a5:1b:31:81:53:02:e4:9a:f5:1b:37:9b:94:7b:9c:f6: 09:11:2d:ab:7e:ef:a2:d0:be:b2:f9:c9:8a:47:59:dd:b5:55: 60:01:c6:33:25:6d:b9:2f:bb:56:eb:eb:38:74:e6:8a:a9:e8: 09:0f:29:63:19:5e:40:92:53:37:cb:1d:de:9a:63:f0:24:5c: 6b:ba:dc:4f:b7:f7:d2:5b:4c:19:60:fe:f7:21:47:94:9d:8f: d1:57:c5:6c:28:ad:26:c4:a0:99:e3:ac:a8:ae:11:ab:73:de: b6:d1:fe:8b:49:41:0f:dc:d7:94:a5:5f:cd:1d:13:7b:78:74: a2:3f:ba:33:ca:79:71:d7:f0:94:f8:17:6b:61:73:21:12:12: bd:c3:71:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNE/VrmhVpzqimchNs2CeVIgkJQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI5MDAwMDAwWhcNMjMxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmZkMjMzZTQ5NjFiMmM4NTc3OWVjNTViNjAxMjA3OTk5 ZTY0OGEyMzFkMmYxNTQ4N2U4ZjBiYmVlMGQ0MmZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxXNx/jjG+xjEVvmvYYA8cPcWHsNoepAiT/zLvNMNY0OeU ykeIdPB/qo1PO6v77opiQOn5r2u64CgOAVYtaMf1liuA3pwvkj3a+l5v2PwwRNSA SxuyP0b4uo17oJmKtY6pzOi3865pEddNrqhgu1SBZyx+MnHwehc7d/jTpZp586Rj QLMah3ynuO7eb0xuA+Bo3EZe2WgqLu9KLz3GXV4bpZSXaQ81qoS7eFzp7iKJoUBd OTKdUWJ1eUXLpVh221KuXHZ5iN+zajFb59sDDWoY8vyNomWiofJ1gefPzA7nyGMq i5Ity2zlxAkpCT/9rVSSPpbCmOQF2jKDSfp5jRV7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBFHWMZYA5KhqPjc2wdwwispw/pEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhNTgyMzMwLTY3YmYtNDg3NC05YTBmLWM0MjNkOGRiZDBlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXUwDQYJKoZIhvcNAQELBQADggEBAL9pL7Lg5H2ZBpUvJ/uEjaBe5tFW Bro41K6arpXjVvK2dbiXf5N6EpnfVydbU9YoLx5V/DgVlnluQ4YJzJYuMXSMrwJl mpyhsKt4IlbBRl3hap404udfIg3pzSF5xL674iYj/tzaLJQWoAMi5tQWpRsxgVMC 5Jr1GzeblHuc9gkRLat+76LQvrL5yYpHWd21VWABxjMlbbkvu1br6zh05oqp6AkP KWMZXkCSUzfLHd6aY/AkXGu63E+399JbTBlg/vchR5Sdj9FXxWworSbEoJnjrKiu Eatz3rbR/otJQQ/c15SlX80dE3t4dKI/ujPKeXHX8JT4F2thcyESEr3DcZ8= -----END CERTIFICATE-----Generated at Tue Aug 29 00:48:27 2023 by rpki-client on console-ams.rpki-client.org