$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0410a52-8f7d-4ab1-965c-eba5f15660b2.roa File: f0410a52-8f7d-4ab1-965c-eba5f15660b2.roa (raw, json) Hash identifier: 6xC0JX6XY48LCa+2vln6eP01nRneCfGp5xCyTVLjahg= Subject key identifier: 2E:F4:28:FD:6A:08:B4:69:9D:0A:07:D5:4A:4F:11:3C:57:8F:B0:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33F1A790534725922CB8B1008C512B241C371EF7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0410a52-8f7d-4ab1-965c-eba5f15660b2.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f1:a7:90:53:47:25:92:2c:b8:b1:00:8c:51:2b:24:1c:37:1e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=eac92bd9d6b65f242713e0d0fcace647deef37347b444b588a09d99f759f6c36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:02:2c:7a:75:90:d3:dc:ab:50:a6:d9:1d: 8d:1b:47:d7:09:e8:44:90:17:a0:7e:38:55:1f:d0: 7c:25:b4:ac:ea:da:a8:f7:bc:07:fd:10:be:da:6d: 2f:ee:10:06:22:af:d3:4d:3b:17:36:7d:7f:66:c5: 97:4e:03:93:9a:00:d7:db:70:e7:10:6a:ab:eb:d3: 05:67:28:35:dc:0b:27:6b:81:5d:3d:c9:cd:90:d6: c9:db:54:9f:31:e0:a5:a5:ec:65:04:bc:3c:38:bd: e7:e7:f9:b4:25:be:99:08:29:ee:15:0d:b4:58:ca: aa:69:bc:e9:6a:46:29:c9:60:c2:86:c3:cb:1d:61: a0:18:49:a9:9a:f6:a0:d9:16:ea:ed:3b:96:b1:4d: 2b:e5:eb:ce:47:55:15:17:b9:43:14:4b:3f:30:a9: 98:7c:3d:55:58:90:49:4f:c3:de:55:6a:1a:fc:da: 58:56:fb:61:79:cc:6a:a8:31:12:32:29:0c:77:2d: 72:28:31:b2:93:5f:a7:1f:03:7f:14:54:20:65:13: 2e:31:e4:84:4c:36:03:8d:54:a1:40:cb:45:83:3e: 84:91:43:6f:82:4b:8e:7d:b2:aa:78:70:b2:5b:cb: c0:40:e2:31:26:c9:f3:de:66:05:fc:91:0a:11:46: 91:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F4:28:FD:6A:08:B4:69:9D:0A:07:D5:4A:4F:11:3C:57:8F:B0:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0410a52-8f7d-4ab1-965c-eba5f15660b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:b3:de:9b:f4:a2:7b:cf:fe:73:38:d8:ec:f0:43:70:28:16: 92:c3:55:68:08:34:7f:32:5f:65:18:dc:08:9d:4a:33:d5:12: 8a:7f:1d:09:05:75:47:7f:45:de:15:d2:df:db:f0:85:15:ef: c4:01:2a:bd:69:0d:ac:2e:60:37:77:b5:07:29:c3:69:be:f7: cd:ed:7b:44:44:26:d1:7a:99:13:7f:9a:1a:37:65:c0:c2:7e: 52:ea:66:32:c6:34:8c:06:e3:cb:8e:c6:d8:ac:a8:0c:a5:ad: 06:a4:87:00:63:0c:e6:f5:23:e0:3c:76:a2:ee:ce:15:3a:d4: 49:de:8f:78:6f:e1:77:3f:f1:47:13:bd:11:5d:a7:88:8f:45: ea:92:c1:c0:e4:43:e8:8d:8f:73:84:c8:86:02:ad:8d:46:6d: 7f:61:f7:0a:10:76:ec:b2:8b:98:15:2f:33:4e:88:07:6b:52: f6:db:5d:14:30:0a:4c:be:89:d2:40:20:67:21:ac:92:45:91: 8f:f8:8c:9c:c8:4e:ef:da:ef:7f:65:69:26:41:2f:9a:2f:81: 83:fa:42:57:4e:22:d9:92:08:e5:59:42:4b:1e:04:38:8a:ea: f4:c3:30:22:5b:48:b1:28:cc:61:26:85:99:10:49:80:79:2e: 36:8f:f3:4b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM/GnkFNHJZIsuLEAjFErJBw3HvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWM5MmJkOWQ2YjY1ZjI0MjcxM2UwZDBmY2FjZTY0N2Rl ZWYzNzM0N2I0NDRiNTg4YTA5ZDk5Zjc1OWY2YzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRkwIsenWQ09yrUKbZHY0bR9cJ6ESQF6B+OFUf0HwltKzq 2qj3vAf9EL7abS/uEAYir9NNOxc2fX9mxZdOA5OaANfbcOcQaqvr0wVnKDXcCydr gV09yc2Q1snbVJ8x4KWl7GUEvDw4vefn+bQlvpkIKe4VDbRYyqppvOlqRinJYMKG w8sdYaAYSama9qDZFurtO5axTSvl685HVRUXuUMUSz8wqZh8PVVYkElPw95Vahr8 2lhW+2F5zGqoMRIyKQx3LXIoMbKTX6cfA38UVCBlEy4x5IRMNgONVKFAy0WDPoSR Q2+CS459sqp4cLJby8BA4jEmyfPeZgX8kQoRRpE5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULvQo/WoItGmdCgfVSk8RPFePsAMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwNDEwYTUyLThmN2QtNGFiMS05NjVjLWViYTVmMTU2NjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowzANBgkqhkiG9w0BAQsFAAOCAQEAKrPem/Sie8/+czjY7PBDcCgWksNV aAg0fzJfZRjcCJ1KM9USin8dCQV1R39F3hXS39vwhRXvxAEqvWkNrC5gN3e1BynD ab73ze17REQm0XqZE3+aGjdlwMJ+UupmMsY0jAbjy47G2KyoDKWtBqSHAGMM5vUj 4Dx2ou7OFTrUSd6PeG/hdz/xRxO9EV2niI9F6pLBwORD6I2Pc4TIhgKtjUZtf2H3 ChB27LKLmBUvM06IB2tS9ttdFDAKTL6J0kAgZyGskkWRj/iMnMhO79rvf2VpJkEv mi+Bg/pCV04i2ZII5VlCSx4EOIrq9MMwIltIsSjMYSaFmRBJgHkuNo/zSw== -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:54 2023 by rpki-client on console-fra.rpki-client.org