$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa File: f0dc6def-824b-44e4-953e-03bc03efa024.roa (raw, json) Hash identifier: iCnplp6Ia08typ3Kl+nCpqKBe2exdJ663sDew4/tlCY= Subject key identifier: D5:DC:54:B6:16:B5:6E:E8:2D:B5:74:C6:4F:A7:F6:77:69:BA:79:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 775BF89CE9CFB900E83544B6802142E96D83CAA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 40.229.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 06:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:5b:f8:9c:e9:cf:b9:00:e8:35:44:b6:80:21:42:e9:6d:83:ca:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=b4cb5707a1c1a3bafa0b3d441582bd0333e8582bf12a22d825cadb79c9a63019, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:24:74:f8:0a:49:db:21:8b:b2:6c:52:c0:fe: 20:42:c3:fe:c3:67:41:5f:b0:32:b2:eb:48:6a:fd: e3:9b:ae:00:13:5d:9d:7c:63:95:a8:2f:3e:20:69: b1:e7:a8:e0:74:b8:1f:fc:88:d3:9c:0c:ad:c0:7a: dd:74:cb:09:01:f7:99:3d:74:b1:4e:77:f2:95:b2: c5:9d:92:03:12:07:f7:e7:25:4c:3d:e2:fe:82:2a: 73:ce:33:a7:0a:cc:2e:ef:fe:60:9f:bb:3f:14:2c: fa:2b:c9:32:17:3e:cf:37:d4:8f:aa:45:6d:55:07: e2:d5:ba:ed:1d:11:b9:a9:0c:5f:62:49:66:58:e8: 3f:70:3c:36:fc:36:2b:8c:8d:01:3f:74:7e:10:43: b5:c3:66:17:6b:22:0e:f0:96:ac:d9:ca:7b:0f:35: 5f:26:c0:a2:94:0c:00:91:4c:89:3a:cd:6e:40:1c: 65:bc:f3:b6:0b:80:3f:89:75:40:8f:56:a7:21:60: ad:eb:12:a6:e2:39:41:5c:94:ac:8f:03:d4:5c:95: 8a:93:3e:d0:76:ba:8f:00:8c:df:22:ba:7c:9e:dc: df:04:2a:e6:59:c3:1c:f6:c8:0e:9f:a6:11:01:19: eb:49:b4:f4:22:a4:25:11:4a:f6:9e:32:ce:bd:28: cb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DC:54:B6:16:B5:6E:E8:2D:B5:74:C6:4F:A7:F6:77:69:BA:79:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9e:ac:22:c3:e2:5d:68:4b:6f:53:22:79:f6:e4:48:19:35:3b: 96:cd:3e:42:e2:8e:ce:2c:9d:15:93:ba:42:30:f0:ee:e5:8f: a3:39:d5:67:bf:3f:73:a7:ad:c9:9d:70:43:b1:e9:85:88:10: f3:37:55:fe:c4:91:38:de:ca:b4:07:49:ee:29:0e:f6:b3:06: 5c:4e:d2:f5:66:c2:33:dc:a0:e1:52:02:84:85:6f:96:16:6f: 8b:a5:ca:64:40:61:9d:96:7e:6c:88:fa:cb:90:f0:18:ed:86: 98:88:63:23:fb:10:65:82:dc:62:61:97:84:72:04:94:39:16: 17:b3:a1:cf:3c:e8:98:af:b2:a5:f6:ff:68:f8:a1:48:bc:4e: 05:0f:54:a0:1b:27:65:bb:a2:f3:52:2a:c5:3d:ba:53:51:5d: 8c:f3:5b:94:7f:e7:b4:a0:d2:c9:80:78:f7:13:12:7f:d8:85: ff:e4:35:47:d1:48:62:a9:31:58:4d:4e:1c:7d:5c:6b:7c:b6: d9:0f:d0:c3:f4:3e:68:b6:29:51:af:e4:5d:c9:c0:2e:7a:ea: a3:ff:df:79:dd:b2:ab:1e:cf:b8:ad:bf:f7:da:f6:fa:92:75: 66:a9:dc:25:2f:6f:f9:89:f2:40:c3:2c:0a:c7:d3:39:40:5b: 18:9e:db:32 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd1v4nOnPuQDoNUS2gCFC6W2DyqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGNiNTcwN2ExYzFhM2JhZmEwYjNkNDQxNTgyYmQwMzMz ZTg1ODJiZjEyYTIyZDgyNWNhZGI3OWM5YTYzMDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdJHT4CknbIYuybFLA/iBCw/7DZ0FfsDKy60hq/eObrgAT XZ18Y5WoLz4gabHnqOB0uB/8iNOcDK3Aet10ywkB95k9dLFOd/KVssWdkgMSB/fn JUw94v6CKnPOM6cKzC7v/mCfuz8ULPoryTIXPs831I+qRW1VB+LVuu0dEbmpDF9i SWZY6D9wPDb8NiuMjQE/dH4QQ7XDZhdrIg7wlqzZynsPNV8mwKKUDACRTIk6zW5A HGW887YLgD+JdUCPVqchYK3rEqbiOUFclKyPA9RclYqTPtB2uo8AjN8iunye3N8E KuZZwxz2yA6fphEBGetJtPQipCURSvaeMs69KMu/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1dxUtha1bugttXTGT6f2d2m6eUAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwZGM2ZGVmLTgyNGItNDRlNC05NTNlLTAzYmMwM2VmYTAyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo5TANBgkqhkiG9w0BAQsFAAOCAQEAnqwiw+JdaEtvUyJ59uRIGTU7ls0+ QuKOziydFZO6QjDw7uWPoznVZ78/c6etyZ1wQ7HphYgQ8zdV/sSRON7KtAdJ7ikO 9rMGXE7S9WbCM9yg4VIChIVvlhZvi6XKZEBhnZZ+bIj6y5DwGO2GmIhjI/sQZYLc YmGXhHIElDkWF7OhzzzomK+ypfb/aPihSLxOBQ9UoBsnZbui81IqxT26U1FdjPNb lH/ntKDSyYB49xMSf9iF/+Q1R9FIYqkxWE1OHH1ca3y22Q/Qw/Q+aLYpUa/kXcnA Lnrqo//fed2yqx7PuK2/99r2+pJ1ZqncJS9v+YnyQMMsCsfTOUBbGJ7bMg== -----END CERTIFICATE-----Generated at Mon Aug 28 18:47:08 2023 by rpki-client on console-ams.rpki-client.org