$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed40f512-0bf0-4ef1-b572-6ad9b10898dd.roa File: ed40f512-0bf0-4ef1-b572-6ad9b10898dd.roa (raw, json) Hash identifier: dSHS09mgOuHfDnix6g6VwXsgcUuSvWPX0rwQL5LrfoI= Subject key identifier: 67:66:B5:64:7C:7A:D3:86:73:C4:76:6E:A6:AE:20:69:C3:BA:76:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F57C9C0D3B1CA649694099124C3A710974961EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed40f512-0bf0-4ef1-b572-6ad9b10898dd.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:57:c9:c0:d3:b1:ca:64:96:94:09:91:24:c3:a7:10:97:49:61:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=0450bb618e6ba92966e1562d599ca8b4b8ba77950bcaee5917169ec0927c1ff4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cf:26:b7:7c:76:c1:0c:fa:b1:4d:67:ca:b0: 0e:ff:3f:dd:b9:d8:cd:cd:f6:bb:a7:b4:e5:0f:82: d7:52:40:ad:a8:ae:52:a2:7e:d9:91:92:ec:4e:0b: fb:4e:e1:2f:9e:10:0b:95:2c:7f:89:5f:78:63:cb: a5:60:dc:be:8e:71:50:36:ec:c6:af:80:d1:b5:90: 1a:7e:45:5d:ff:e3:c4:58:03:dd:3b:a6:35:ef:37: 81:73:75:b1:98:39:0b:f6:44:f5:74:c5:39:93:27: c3:92:72:22:cb:c0:5a:cf:a7:b8:3d:0c:ae:94:b9: 84:a2:16:8e:ef:4f:65:05:4c:85:06:33:74:df:57: 46:15:b5:10:46:42:96:bf:b8:c1:32:7f:ed:97:ad: c4:05:1b:f4:0c:8d:41:9c:30:ba:17:0b:db:a5:44: 54:c7:78:73:81:b3:17:89:fa:ec:5f:d4:4b:aa:54: 9a:e3:73:74:23:17:b0:cd:2a:ec:ab:0c:9e:38:20: a7:3a:a8:af:49:cf:21:49:b7:11:a2:42:7b:23:cf: c4:9d:23:94:19:d3:fc:e5:1d:83:e7:22:53:e8:d1: fc:2d:80:fc:d4:f0:37:89:cb:1c:dd:5e:06:be:6a: b7:fa:8e:9a:19:78:48:11:4e:a9:77:93:39:ac:56: 88:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:66:B5:64:7C:7A:D3:86:73:C4:76:6E:A6:AE:20:69:C3:BA:76:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ed40f512-0bf0-4ef1-b572-6ad9b10898dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.128.0/24 Signature Algorithm: sha256WithRSAEncryption c1:fc:e3:d3:68:90:d0:c7:ca:21:4b:3b:b0:db:5d:c7:5b:f0: 5f:8d:9a:6f:79:68:a8:80:3e:a7:30:15:c0:5a:bb:b2:36:54: 2e:26:9b:14:ab:a3:4a:03:48:80:48:fb:e2:ad:33:48:79:3c: 11:43:55:72:43:a7:2b:ce:bd:9c:7a:28:16:3d:55:0a:f3:f4: 66:72:5e:a0:7d:b5:51:e7:e8:e9:3d:d3:ac:59:c6:f0:a4:54: a2:9e:70:e6:6f:2e:71:d2:02:98:ec:a2:7b:b1:70:5c:20:e7: 50:d4:83:c4:8b:ec:f2:b2:4b:b0:6d:84:ef:7e:19:e9:74:41: 5d:3a:c1:ee:c3:f7:80:b6:8d:b4:79:41:d1:75:0e:fa:7a:b2: b0:db:9f:b3:bd:dd:d3:a1:27:ed:1d:8f:79:72:bd:db:48:63: ab:5b:4c:b6:7a:6b:09:dc:f4:f6:52:65:12:4a:fe:79:d0:8b: 0d:91:97:e9:9e:3b:eb:b0:97:28:10:1e:90:32:3a:4f:4c:a9: 87:94:29:be:59:04:17:9c:c0:ec:59:0d:d1:d8:d7:4c:9f:0c: 1c:30:bb:54:df:4a:31:b8:09:b8:d2:0d:96:79:79:b9:fa:02: 05:34:7f:74:55:27:b8:99:db:77:7b:63:0d:56:13:1a:b1:da: d8:ad:36:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb1fJwNOxymSWlAmRJMOnEJdJYeowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDUwYmI2MThlNmJhOTI5NjZlMTU2MmQ1OTljYThiNGI4 YmE3Nzk1MGJjYWVlNTkxNzE2OWVjMDkyN2MxZmY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTzya3fHbBDPqxTWfKsA7/P9252M3N9runtOUPgtdSQK2o rlKiftmRkuxOC/tO4S+eEAuVLH+JX3hjy6Vg3L6OcVA27MavgNG1kBp+RV3/48RY A907pjXvN4FzdbGYOQv2RPV0xTmTJ8OSciLLwFrPp7g9DK6UuYSiFo7vT2UFTIUG M3TfV0YVtRBGQpa/uMEyf+2XrcQFG/QMjUGcMLoXC9ulRFTHeHOBsxeJ+uxf1Euq VJrjc3QjF7DNKuyrDJ44IKc6qK9JzyFJtxGiQnsjz8SdI5QZ0/zlHYPnIlPo0fwt gPzU8DeJyxzdXga+arf6jpoZeEgRTql3kzmsVoi7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ2a1ZHx604ZzxHZupq4gacO6diUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VkNDBmNTEyLTBiZjAtNGVmMS1iNTcyLTZhZDliMTA4OThkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM34AwDQYJKoZIhvcNAQELBQADggEBAMH849NokNDHyiFLO7DbXcdb8F+N mm95aKiAPqcwFcBau7I2VC4mmxSro0oDSIBI++KtM0h5PBFDVXJDpyvOvZx6KBY9 VQrz9GZyXqB9tVHn6Ok906xZxvCkVKKecOZvLnHSApjsonuxcFwg51DUg8SL7PKy S7BthO9+Gel0QV06we7D94C2jbR5QdF1Dvp6srDbn7O93dOhJ+0dj3lyvdtIY6tb TLZ6awnc9PZSZRJK/nnQiw2Rl+meO+uwlygQHpAyOk9MqYeUKb5ZBBecwOxZDdHY 10yfDBwwu1TfSjG4CbjSDZZ5ebn6AgU0f3RVJ7iZ23d7Yw1WExqx2titNqM= -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:43 2023 by rpki-client on console-fra.rpki-client.org