$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa File: ebe39619-319e-458b-b84a-3d8a21095a66.roa (raw, json) Hash identifier: MaueIPiPQG21ZGsx3K7fMFvTHzsaHXA21WGUX1/hW74= Subject key identifier: CA:F6:0F:9C:F4:34:4B:DA:90:90:D3:86:2F:20:2A:0A:48:B6:27:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 774A82A40AAAE2E19D0B87108C155F7378F1820B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4a:82:a4:0a:aa:e2:e1:9d:0b:87:10:8c:15:5f:73:78:f1:82:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=5f1c4808fca5b7fff5d21fdaaf2ce179291879f3cce897e55bf684663fd05b89, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0f:19:25:07:37:ea:d1:cf:13:1e:d7:65:7a: 75:a7:f0:7f:00:95:08:f0:e8:81:aa:4e:d4:4e:f5: 67:13:c8:b2:e5:95:c8:ee:d5:68:d0:bd:24:37:54: 01:cb:fa:85:f7:6c:fb:38:8a:5a:1b:fe:4d:85:f0: 18:f6:e9:5d:2a:2d:1f:3a:4e:f1:44:43:aa:5d:74: f4:13:88:45:87:75:2e:8d:be:8a:60:65:7e:50:a1: b5:2a:01:06:3c:77:d0:ef:5c:98:e2:90:d0:58:8b: c6:1f:be:ce:03:13:4b:2d:07:ef:84:64:76:ea:1f: bc:f6:80:0a:dc:57:42:1a:8b:e0:dc:69:d7:28:fd: da:ca:e5:60:42:5b:21:42:28:7a:1a:66:b7:35:19: a2:b8:22:23:5b:f7:2d:91:d5:9e:fc:0a:63:dc:e1: 90:64:bd:9d:f3:de:f1:fd:9d:f0:11:97:06:8b:9a: af:19:17:62:73:28:ab:39:b5:4a:a0:c1:45:08:fd: 2b:a5:72:d5:f9:d1:bc:1d:82:9d:d4:da:56:bb:f2: d3:6f:01:40:e3:56:2d:88:4e:98:f5:22:ce:0a:55: 0d:40:10:e3:39:6d:a7:52:64:b8:e0:f9:70:04:3c: aa:89:89:81:24:48:17:55:10:c2:5b:ff:23:b4:7b: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F6:0F:9C:F4:34:4B:DA:90:90:D3:86:2F:20:2A:0A:48:B6:27:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.143.0/24 Signature Algorithm: sha256WithRSAEncryption c3:27:b7:ac:63:dd:7e:d9:df:fa:b9:4c:77:4c:11:20:9c:77: df:32:90:a0:56:e9:b7:39:63:a3:b6:18:db:d8:ec:3d:77:e3: 7c:8b:8b:90:50:56:78:f0:9e:d0:df:58:1c:8f:ff:c6:b6:d2: a5:4a:2d:ce:6a:ac:5f:ab:40:58:48:0a:24:ec:2c:9e:d8:fa: 5c:d2:7b:3e:ba:22:f1:88:d9:a3:3a:00:68:87:4f:7f:3a:65: 66:cb:fa:f5:1f:38:9b:62:3a:78:33:b6:2e:62:f5:6b:c5:be: 11:93:07:ae:9a:58:1c:fd:3f:db:63:a2:32:c9:5d:78:02:ad: c2:be:bb:c0:7a:81:54:c0:d9:10:e5:63:d2:fd:65:5c:57:25: 6e:47:5b:e2:0a:3e:c7:e6:1c:c3:fe:fb:68:ee:00:fc:ef:aa: 28:ca:d1:1b:6c:6b:ad:dd:17:68:8c:57:00:6c:49:d8:d1:ab: 22:56:b8:d7:a5:f0:15:25:f4:6a:23:f0:24:d1:7b:3b:47:96: 3d:95:bc:11:94:7d:e6:b6:10:86:1f:08:4c:1a:8e:3d:d6:5c: 6f:c6:8e:16:18:29:0f:da:8e:ff:d1:87:04:e0:ed:40:94:2e: 38:23:1c:19:9f:8e:8f:7b:c8:64:00:6e:9d:a9:3a:46:15:48: 52:6b:e4:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd0qCpAqq4uGdC4cQjBVfc3jxggswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjFjNDgwOGZjYTViN2ZmZjVkMjFmZGFhZjJjZTE3OTI5 MTg3OWYzY2NlODk3ZTU1YmY2ODQ2NjNmZDA1Yjg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcDxklBzfq0c8THtdlenWn8H8AlQjw6IGqTtRO9WcTyLLl lcju1WjQvSQ3VAHL+oX3bPs4ilob/k2F8Bj26V0qLR86TvFEQ6pddPQTiEWHdS6N vopgZX5QobUqAQY8d9DvXJjikNBYi8Yfvs4DE0stB++EZHbqH7z2gArcV0Iai+Dc adco/drK5WBCWyFCKHoaZrc1GaK4IiNb9y2R1Z78CmPc4ZBkvZ3z3vH9nfARlwaL mq8ZF2JzKKs5tUqgwUUI/SulctX50bwdgp3U2la78tNvAUDjVi2ITpj1Is4KVQ1A EOM5badSZLjg+XAEPKqJiYEkSBdVEMJb/yO0e/BDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyvYPnPQ0S9qQkNOGLyAqCki2J4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViZTM5NjE5LTMxOWUtNDU4Yi1iODRhLTNkOGEyMTA5NWE2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTY8wDQYJKoZIhvcNAQELBQADggEBAMMnt6xj3X7Z3/q5THdMESCcd98y kKBW6bc5Y6O2GNvY7D1343yLi5BQVnjwntDfWByP/8a20qVKLc5qrF+rQFhICiTs LJ7Y+lzSez66IvGI2aM6AGiHT386ZWbL+vUfOJtiOngzti5i9WvFvhGTB66aWBz9 P9tjojLJXXgCrcK+u8B6gVTA2RDlY9L9ZVxXJW5HW+IKPsfmHMP++2juAPzvqijK 0Rtsa63dF2iMVwBsSdjRqyJWuNel8BUl9Goj8CTReztHlj2VvBGUfea2EIYfCEwa jj3WXG/GjhYYKQ/ajv/RhwTg7UCULjgjHBmfjo97yGQAbp2pOkYVSFJr5NU= -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:17 2023 by rpki-client on console-fra.rpki-client.org