$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa File: eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa (raw, json) Hash identifier: PaXMQEbDcTVnv69ZWuP7+fTsZNmRCG0CPCFUCz+nMtg= Subject key identifier: 57:3C:D4:64:6A:CC:50:B0:86:CC:2A:BC:92:CA:53:E7:9D:38:85:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59A629F4872CCE21649025879BB7FEF88CBC1E09 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a6:29:f4:87:2c:ce:21:64:90:25:87:9b:b7:fe:f8:8c:bc:1e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1110063cfa5844f907084b0d181a0fe715c5833f545b0a98078a7f1671bb10b0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:7c:e6:fa:a6:ca:0f:88:ff:af:ce:10:00: b4:3a:2c:90:9e:88:64:e4:c4:7a:92:48:e7:91:62: 21:53:33:3d:73:0c:a6:cb:de:ec:fb:74:ae:57:3d: 0a:96:80:70:8c:e9:64:ff:83:cf:75:a5:cd:6a:5a: 7f:b7:0c:32:28:94:b7:07:c6:0b:cd:8a:cf:28:72: a3:54:74:e6:9d:d4:57:2c:5c:0d:93:85:6b:e4:0e: 46:84:46:5d:37:20:f8:e2:52:25:8f:19:1f:07:f0: 96:7c:fe:36:e3:b6:93:55:41:50:42:0b:4a:26:76: 3b:cb:42:6c:49:b1:2e:b8:83:9b:2f:91:aa:bd:95: 60:31:b0:32:9d:6e:d4:28:09:86:f5:5e:ca:43:64: 52:52:1e:4d:d8:75:21:ee:86:4a:1d:99:e9:e2:a4: f2:e0:eb:2b:f7:4f:a4:ce:16:44:a2:a4:f3:89:bc: 1c:4a:3e:dc:4b:ae:b9:bd:db:b2:d9:5f:dc:74:dc: 29:db:79:f0:a0:3d:1b:8f:09:ca:14:2e:e7:7b:e1: 74:62:ee:96:c4:3a:2b:0d:c1:f3:8e:36:be:80:c4: 2f:c3:3c:32:74:3c:41:7b:53:65:29:96:d9:54:6c: 20:7b:ca:9d:79:10:f5:22:19:81:52:ea:23:c4:d1: 43:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3C:D4:64:6A:CC:50:B0:86:CC:2A:BC:92:CA:53:E7:9D:38:85:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.41.0/24 Signature Algorithm: sha256WithRSAEncryption ab:f1:97:e5:e8:63:cf:09:78:58:5b:a0:5a:e7:80:cb:96:55: 58:bb:97:ff:d4:26:5f:25:2a:ad:29:dc:ac:21:ca:3d:41:1a: fe:a8:eb:b0:fa:9f:65:72:eb:19:3a:f8:a1:07:35:d9:44:80: fe:80:fd:ab:0a:d3:cd:4c:b5:2f:88:dd:aa:c4:51:f0:3a:e4: f1:e6:61:36:33:f3:7b:ff:8d:d3:94:0a:87:5d:bc:0b:77:e0: 70:b8:f5:f1:a4:e1:b0:71:a6:c5:be:98:60:f8:fb:17:d4:f6: 2c:c9:eb:b1:83:c9:5c:7d:06:a7:19:f2:eb:c6:99:6b:d2:37: 07:58:53:62:1e:73:9f:a6:60:74:74:d8:63:e7:7b:80:55:88: 6b:bc:d0:e8:6a:2b:19:b6:db:14:00:75:64:51:6a:69:b5:6f: 05:c3:d0:7b:17:d1:a7:9b:ae:ee:0a:6e:66:83:be:c4:7d:57: a8:0c:f8:b3:32:70:38:57:92:19:20:1a:6f:5f:c8:75:6d:62: 8c:21:0a:05:a2:be:e0:ca:d3:31:d7:82:5b:3a:77:25:c6:25: 95:80:48:42:fd:f3:9d:c3:f6:33:20:ac:e4:de:c5:29:03:ba: 3a:12:be:9f:ab:84:6e:6f:6f:88:df:b5:ee:21:87:0b:5f:cb: a4:b0:05:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWaYp9IcsziFkkCWHm7f++Iy8HgkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTEwMDYzY2ZhNTg0NGY5MDcwODRiMGQxODFhMGZlNzE1 YzU4MzNmNTQ1YjBhOTgwNzhhN2YxNjcxYmIxMGIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0HHzm+qbKD4j/r84QALQ6LJCeiGTkxHqSSOeRYiFTMz1z DKbL3uz7dK5XPQqWgHCM6WT/g891pc1qWn+3DDIolLcHxgvNis8ocqNUdOad1Fcs XA2ThWvkDkaERl03IPjiUiWPGR8H8JZ8/jbjtpNVQVBCC0omdjvLQmxJsS64g5sv kaq9lWAxsDKdbtQoCYb1XspDZFJSHk3YdSHuhkodmenipPLg6yv3T6TOFkSipPOJ vBxKPtxLrrm927LZX9x03CnbefCgPRuPCcoULud74XRi7pbEOisNwfOONr6AxC/D PDJ0PEF7U2UpltlUbCB7yp15EPUiGYFS6iPE0UObAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVzzUZGrMULCGzCq8kspT5504hVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViODJmNDk1LTlmZjEtNDBiNi05OGIwLWY2N2Y4YTZjMGFiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlCkwDQYJKoZIhvcNAQELBQADggEBAKvxl+XoY88JeFhboFrngMuWVVi7 l//UJl8lKq0p3Kwhyj1BGv6o67D6n2Vy6xk6+KEHNdlEgP6A/asK081MtS+I3arE UfA65PHmYTYz83v/jdOUCoddvAt34HC49fGk4bBxpsW+mGD4+xfU9izJ67GDyVx9 BqcZ8uvGmWvSNwdYU2Iec5+mYHR02GPne4BViGu80OhqKxm22xQAdWRRamm1bwXD 0HsX0aebru4KbmaDvsR9V6gM+LMycDhXkhkgGm9fyHVtYowhCgWivuDK0zHXgls6 dyXGJZWASEL9853D9jMgrOTexSkDujoSvp+rhG5vb4jfte4hhwtfy6SwBR4= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org