$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa File: f13d14a2-c781-4f14-97b1-44c231676d28.roa (raw, json) Hash identifier: VMOT+C9lF6/RoD6MsBIgXvPUsmCL0uKmp4xUWf7oPzM= Subject key identifier: 38:D9:10:03:D0:3E:8B:C8:C5:55:85:B1:6E:34:46:93:E0:39:B9:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67FA260ED1B07C3DB67BF9C8F0C7776451A8B945 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 167.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fa:26:0e:d1:b0:7c:3d:b6:7b:f9:c8:f0:c7:77:64:51:a8:b9:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1af0390380942a4c076b18351fc320f5692feb15a7c157c3afb72d303ade634d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:62:08:c1:e8:f3:05:d4:a0:0c:45:cf:c3: d4:32:1a:ea:fe:1b:ed:e0:77:cf:67:b5:2c:b0:87: 88:99:c6:d4:71:c5:e5:ef:1e:2b:55:d0:24:9c:de: be:98:9d:de:d6:3e:1e:56:b7:78:25:a7:49:97:0d: 45:2d:e6:20:d8:59:0c:42:2d:76:e1:84:21:fe:22: 82:42:62:f4:43:c6:b9:ca:1d:f6:63:65:4a:26:b4: ad:9b:9f:ac:97:b3:61:8a:6b:ba:55:61:8f:21:3c: ef:b3:d3:6b:ba:ab:c6:9e:6f:22:0f:c4:a5:87:28: 1e:7d:39:22:60:90:4d:ba:a0:d4:4e:cb:70:d6:a8: 27:cb:4c:0f:58:6e:8d:1a:7b:92:2b:08:61:a9:b3: f3:9f:49:7e:51:04:9a:fd:00:85:1d:07:ae:6e:5c: 1c:a1:5d:b7:fd:f7:de:28:32:c7:37:e3:0b:a9:63: df:a4:cd:ac:15:55:1f:56:a2:c4:a3:55:e2:1d:f5: 70:7f:9a:37:03:57:b4:35:ae:a6:aa:f2:d8:46:e7: 08:08:29:52:66:38:11:a1:91:16:73:cc:d2:3e:af: 8b:d7:bc:87:55:e3:93:5c:2c:e5:e1:44:bb:37:e6: 84:06:d3:f7:a0:56:86:81:b6:f2:54:73:50:e1:f3: 76:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D9:10:03:D0:3E:8B:C8:C5:55:85:B1:6E:34:46:93:E0:39:B9:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption bf:4a:92:fc:e9:99:c7:70:07:dc:18:20:36:21:68:8d:5e:92: 45:20:c2:30:bc:52:42:0d:5a:82:af:4e:66:27:97:c4:a1:a8: 3e:a5:78:5f:d1:b1:7b:3c:eb:3a:ca:95:3c:53:9e:ee:69:c4: 5f:ad:ee:3a:90:b6:11:6c:9b:e5:c7:4e:fd:5c:48:93:3d:42: f2:e0:0e:1a:bb:60:82:d4:cc:78:2a:b8:13:40:dc:3d:5d:df: 96:08:17:eb:a8:68:40:57:36:70:61:73:02:90:42:d8:9f:39: 6d:fb:77:a4:af:86:6a:61:f8:1c:2e:7d:7b:d2:97:00:dc:2f: 4b:ba:cc:65:74:2d:09:34:d8:7f:6a:48:05:a7:a3:d6:1d:4f: b7:be:e8:c4:78:b1:06:e8:20:6d:19:0a:73:6b:96:18:0d:5f: 02:af:00:2b:f7:f1:db:8a:64:41:57:e5:c8:42:3e:04:59:56: e2:69:de:a0:57:12:05:1a:fd:df:6d:87:2e:b9:96:bb:6f:38: f4:7e:46:b7:6d:e1:48:f5:25:41:90:03:fe:02:f9:82:85:d9: be:3c:99:47:77:3d:d2:69:bf:3f:95:18:75:5f:9e:a6:01:5c: fe:e9:5e:ec:c6:21:00:bf:e1:87:59:f3:72:1a:ce:af:4b:ea: 7f:e4:5d:93 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ/omDtGwfD22e/nI8Md3ZFGouUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWYwMzkwMzgwOTQyYTRjMDc2YjE4MzUxZmMzMjBmNTY5 MmZlYjE1YTdjMTU3YzNhZmI3MmQzMDNhZGU2MzRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6PGIIwejzBdSgDEXPw9QyGur+G+3gd89ntSywh4iZxtRx xeXvHitV0CSc3r6Ynd7WPh5Wt3glp0mXDUUt5iDYWQxCLXbhhCH+IoJCYvRDxrnK HfZjZUomtK2bn6yXs2GKa7pVYY8hPO+z02u6q8aebyIPxKWHKB59OSJgkE26oNRO y3DWqCfLTA9Ybo0ae5IrCGGps/OfSX5RBJr9AIUdB65uXByhXbf9994oMsc34wup Y9+kzawVVR9WosSjVeId9XB/mjcDV7Q1rqaq8thG5wgIKVJmOBGhkRZzzNI+r4vX vIdV45NcLOXhRLs35oQG0/egVoaBtvJUc1Dh83ZFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUONkQA9A+i8jFVYWxbjRGk+A5uUQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxM2QxNGEyLWM3ODEtNGYxNC05N2IxLTQ0YzIzMTY3NmQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnYTANBgkqhkiG9w0BAQsFAAOCAQEAv0qS/OmZx3AH3BggNiFojV6SRSDC MLxSQg1agq9OZieXxKGoPqV4X9GxezzrOsqVPFOe7mnEX63uOpC2EWyb5cdO/VxI kz1C8uAOGrtggtTMeCq4E0DcPV3flggX66hoQFc2cGFzApBC2J85bft3pK+GamH4 HC59e9KXANwvS7rMZXQtCTTYf2pIBaej1h1Pt77oxHixBuggbRkKc2uWGA1fAq8A K/fx24pkQVflyEI+BFlW4mneoFcSBRr9322HLrmWu2849H5Gt23hSPUlQZAD/gL5 goXZvjyZR3c90mm/P5UYdV+epgFc/ule7MYhAL/hh1nzchrOr0vqf+Rdkw== -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:07 2023 by rpki-client on console-fra.rpki-client.org