$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa File: f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa (raw, json) Hash identifier: FW6Qv4e2kTFy87+yCeoV7saICaSt1R7SOGgwgeWd5ic= Subject key identifier: 49:07:76:D5:D3:95:44:4A:71:37:CD:85:B4:E4:98:C5:38:9C:10:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24786413C2545AF86125A09FC5B6C88A6D9F310F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:78:64:13:c2:54:5a:f8:61:25:a0:9f:c5:b6:c8:8a:6d:9f:31:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=ea7b6d6bc9b32537ca57bc5b9e55fee31ab9126789cb1060456e89d619159fa7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:38:95:79:ea:8d:8f:4d:ab:30:7b:8b:1a:7c: 22:a2:c0:ea:d4:f9:ec:3f:97:e7:9e:b6:bd:38:cc: 13:bc:2a:24:5b:33:7a:81:8f:68:32:f9:40:ef:67: cb:b9:cb:10:27:23:7c:1a:ff:2d:8c:df:01:ec:84: 3b:72:24:cf:4a:9e:8b:45:d2:00:6e:78:30:28:a4: 65:1c:97:ab:8f:85:f2:37:ee:af:c0:21:b0:ca:b7: 67:4a:d7:f8:6d:fd:1a:0a:2f:1c:55:db:f8:68:91: 59:34:8c:07:ba:7d:46:76:4c:1e:02:9a:e6:ee:03: 0e:1d:12:78:d9:2a:ce:6d:ff:eb:87:90:fa:3b:b0: e7:ad:59:24:40:ab:51:4c:2a:d6:5d:07:97:96:23: a5:6a:69:3a:10:84:66:2c:07:57:39:54:39:60:07: b5:a5:d3:7e:7a:60:04:eb:f5:59:a5:42:a1:7c:7d: f9:c7:2b:f2:2f:97:74:ff:1a:14:ad:50:d6:49:fd: 50:aa:7b:24:57:00:f5:70:78:8d:3a:9f:7b:6a:d6: 21:b3:de:3a:9e:e9:9c:08:96:96:cd:b9:78:60:ca: 5e:71:13:47:15:e4:a0:1c:d2:19:e6:08:30:8a:67: 18:80:d0:c4:8b:17:15:24:e1:96:a4:5e:65:7c:9f: eb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:07:76:D5:D3:95:44:4A:71:37:CD:85:B4:E4:98:C5:38:9C:10:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.114.0/24 Signature Algorithm: sha256WithRSAEncryption b0:45:0b:9d:e0:1a:61:be:c8:2c:d0:77:66:e7:2b:a9:1b:4f: 41:c8:6e:d7:3f:38:a3:5f:49:3b:46:66:10:90:08:f3:0a:98: 59:4e:e9:93:5b:c8:4c:28:8b:79:65:fc:b5:e9:3f:60:ed:01: ba:08:34:9f:f4:4c:3e:43:5f:b2:db:84:67:ce:c8:b8:0b:d4: b1:55:24:d3:6d:c3:ec:45:68:05:be:5c:ca:ff:2b:02:cb:96: 5e:cb:ad:c2:f4:9f:5d:40:67:03:59:f4:0f:af:59:b2:dc:c4: 24:ef:b7:cf:ed:f4:2c:05:08:81:42:72:e5:a8:f5:af:b8:7a: 99:c5:d7:a4:57:fe:d5:23:98:96:e1:28:d7:1b:94:d6:4f:24: b5:3f:0d:82:8f:61:a9:9a:e5:eb:2f:7f:ee:f1:96:0a:36:76: bc:94:9e:66:3d:bc:5d:45:ea:e4:04:23:ea:e5:2f:cc:25:a2: 41:77:81:e1:68:72:90:39:26:c1:1b:01:7f:ab:0b:f9:90:e1: d6:68:56:a1:bf:2e:fe:b9:b1:c9:f1:56:12:c0:e1:38:81:a3: c6:a8:93:6d:de:04:17:aa:96:65:e0:9b:1e:7f:0c:24:ea:8f: 10:dc:7d:39:82:6d:e2:c8:ee:74:35:7c:9f:70:a7:3c:0b:62: c7:c1:e3:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJHhkE8JUWvhhJaCfxbbIim2fMQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTdiNmQ2YmM5YjMyNTM3Y2E1N2JjNWI5ZTU1ZmVlMzFh YjkxMjY3ODljYjEwNjA0NTZlODlkNjE5MTU5ZmE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnOJV56o2PTaswe4safCKiwOrU+ew/l+eetr04zBO8KiRb M3qBj2gy+UDvZ8u5yxAnI3wa/y2M3wHshDtyJM9KnotF0gBueDAopGUcl6uPhfI3 7q/AIbDKt2dK1/ht/RoKLxxV2/hokVk0jAe6fUZ2TB4CmubuAw4dEnjZKs5t/+uH kPo7sOetWSRAq1FMKtZdB5eWI6VqaToQhGYsB1c5VDlgB7Wl0356YATr9VmlQqF8 ffnHK/Ivl3T/GhStUNZJ/VCqeyRXAPVweI06n3tq1iGz3jqe6ZwIlpbNuXhgyl5x E0cV5KAc0hnmCDCKZxiA0MSLFxUk4ZakXmV8n+ufAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSQd21dOVREpxN82FtOSYxTicEAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyN2I4ZTM0LWNkMjEtNGQyNC04ZWFhLTQ5YTAxZTJmYTc3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HIwDQYJKoZIhvcNAQELBQADggEBALBFC53gGmG+yCzQd2bnK6kbT0HI btc/OKNfSTtGZhCQCPMKmFlO6ZNbyEwoi3ll/LXpP2DtAboINJ/0TD5DX7LbhGfO yLgL1LFVJNNtw+xFaAW+XMr/KwLLll7LrcL0n11AZwNZ9A+vWbLcxCTvt8/t9CwF CIFCcuWo9a+4epnF16RX/tUjmJbhKNcblNZPJLU/DYKPYama5esvf+7xlgo2dryU nmY9vF1F6uQEI+rlL8wlokF3geFocpA5JsEbAX+rC/mQ4dZoVqG/Lv65scnxVhLA 4TiBo8aok23eBBeqlmXgmx5/DCTqjxDcfTmCbeLI7nQ1fJ9wpzwLYsfB48Q= -----END CERTIFICATE-----Generated at Mon Aug 28 23:46:45 2023 by rpki-client on console-ams.rpki-client.org