$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa File: f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa (raw, json) Hash identifier: RJFT3UAXBw7pW+QiPovj5GCvl9NcNGTd2pBQd1pJ27Y= Subject key identifier: 68:BE:04:17:FD:44:36:33:C2:96:ED:A0:77:20:F0:19:82:E1:4F:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41B2B6A45DDE6849E7C0CF90D7097A6D6ECD6F12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b2:b6:a4:5d:de:68:49:e7:c0:cf:90:d7:09:7a:6d:6e:cd:6f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=afd5157a4aea0eb86271761dcd3498f803a2500f01577bf6cbc9f143522d5ff0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:40:1e:f3:dc:5c:25:a9:00:1c:87:1d:dd:c4: 69:2e:88:41:4a:dc:fc:6c:dd:68:2d:95:46:c4:7d: 23:79:03:48:3d:58:68:67:cb:e6:53:26:9d:0d:63: 7a:d9:d5:eb:cd:96:0c:6c:e5:2b:ba:ee:f7:5e:58: a1:3d:51:0b:58:a3:89:e9:01:f1:9d:e4:27:60:af: 32:db:a2:b7:12:a9:ce:81:ec:9f:da:28:a5:f4:6e: 55:99:d8:cb:ee:e0:aa:b2:d4:39:ca:64:b5:9d:28: 2a:ed:ec:78:00:5f:d3:fe:4d:3c:1b:a4:b9:6a:39: 62:8a:eb:01:f2:56:5f:fb:53:19:62:66:0e:2e:46: b3:79:7c:4a:ed:e7:d0:8f:f5:ec:cf:d5:9e:6d:71: c3:17:21:57:82:e8:5a:4d:ce:36:47:dd:74:77:23: 17:6c:83:01:1c:5d:f8:f6:22:88:6c:4e:3c:19:7b: 62:39:50:58:4d:2d:f6:5a:11:ca:06:3d:7e:d0:0d: ed:11:04:b3:1d:b5:d0:84:d0:8c:7e:91:47:0f:96: 23:e0:53:16:50:65:81:4d:83:9f:f4:5a:56:ec:d2: de:c2:4c:dc:59:e9:cb:f8:e6:30:3f:aa:9e:f3:6b: dd:95:2e:ae:0f:09:eb:a1:19:1d:79:02:a2:27:f5: 22:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BE:04:17:FD:44:36:33:C2:96:ED:A0:77:20:F0:19:82:E1:4F:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.56.0/22 Signature Algorithm: sha256WithRSAEncryption 49:d0:f7:4d:aa:da:49:7b:76:39:3c:05:e6:f6:52:6c:3c:17: 01:91:21:64:28:d6:4f:a8:a6:2d:17:98:1e:0c:c4:54:ee:ac: 5a:8b:a3:8b:54:60:d7:e1:23:d8:c2:81:3c:65:b9:2f:4e:22: ed:f0:50:fb:bb:89:15:ae:d6:c2:bf:1c:dc:f0:f3:ef:bb:bd: e2:77:9d:9c:3c:db:3b:cd:71:a3:ae:22:d2:10:6a:e6:1f:cf: 72:69:0a:e6:fd:9b:6a:01:ab:fd:b3:f4:ef:a2:41:ca:08:84: 63:d1:ad:34:f5:7f:5c:09:2e:8b:2b:a8:7d:37:9f:df:f0:f4: f7:b3:90:75:d5:a8:a1:55:ff:40:86:de:46:07:12:cb:47:51: a6:c2:ed:83:e7:43:d5:cb:79:f6:01:34:e8:64:26:cf:e3:75: dd:20:3e:45:63:5e:1a:88:25:4c:31:2b:80:5c:cf:a5:19:bb: ec:2a:57:d1:2d:4a:0c:fd:7c:28:24:79:40:fe:55:92:6f:5f: 22:00:84:b5:c7:af:c2:ac:0b:98:e8:f6:06:a8:fb:76:a0:f2: e7:4e:e9:0d:d3:74:ff:8c:61:46:8b:ac:69:62:bb:8d:4c:45: b3:18:0c:e7:22:14:8b:eb:3f:c8:17:82:22:1c:b0:4f:f5:ec: 10:9c:9e:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQbK2pF3eaEnnwM+Q1wl6bW7NbxIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmQ1MTU3YTRhZWEwZWI4NjI3MTc2MWRjZDM0OThmODAz YTI1MDBmMDE1NzdiZjZjYmM5ZjE0MzUyMmQ1ZmYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXQB7z3FwlqQAchx3dxGkuiEFK3Pxs3WgtlUbEfSN5A0g9 WGhny+ZTJp0NY3rZ1evNlgxs5Su67vdeWKE9UQtYo4npAfGd5CdgrzLborcSqc6B 7J/aKKX0blWZ2Mvu4Kqy1DnKZLWdKCrt7HgAX9P+TTwbpLlqOWKK6wHyVl/7Uxli Zg4uRrN5fErt59CP9ezP1Z5tccMXIVeC6FpNzjZH3XR3IxdsgwEcXfj2IohsTjwZ e2I5UFhNLfZaEcoGPX7QDe0RBLMdtdCE0Ix+kUcPliPgUxZQZYFNg5/0Wlbs0t7C TNxZ6cv45jA/qp7za92VLq4PCeuhGR15AqIn9SIrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaL4EF/1ENjPClu2gdyDwGYLhT8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYTc1NGM0LTBiM2QtNDQxYi04MWM5LTI3NTBmMDBlNmQ3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgADgwDQYJKoZIhvcNAQELBQADggEBAEnQ902q2kl7djk8Beb2Umw8FwGR IWQo1k+opi0XmB4MxFTurFqLo4tUYNfhI9jCgTxluS9OIu3wUPu7iRWu1sK/HNzw 8++7veJ3nZw82zvNcaOuItIQauYfz3JpCub9m2oBq/2z9O+iQcoIhGPRrTT1f1wJ LosrqH03n9/w9PezkHXVqKFV/0CG3kYHEstHUabC7YPnQ9XLefYBNOhkJs/jdd0g PkVjXhqIJUwxK4Bcz6UZu+wqV9EtSgz9fCgkeUD+VZJvXyIAhLXHr8KsC5jo9gao +3ag8udO6Q3TdP+MYUaLrGliu41MRbMYDOciFIvrP8gXgiIcsE/17BCcnok= -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:17 2023 by rpki-client on console-fra.rpki-client.org