$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f80d56bb-0a1b-4165-8232-5fbfdfebfb12.roa File: f80d56bb-0a1b-4165-8232-5fbfdfebfb12.roa (raw, json) Hash identifier: kfn4f8kvr/fujjj2WdDD07zBD+5NvmwM2mxI5eYy60Q= Subject key identifier: 8B:50:F5:BD:64:D3:D5:06:56:55:06:30:62:AD:4F:5E:C8:FB:5B:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EC5555F1F3BD77506648CCE9E81B2F79A2E1175 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f80d56bb-0a1b-4165-8232-5fbfdfebfb12.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:c5:55:5f:1f:3b:d7:75:06:64:8c:ce:9e:81:b2:f7:9a:2e:11:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=4037c5a9dae32754ff202545ca2b8a4295dd3f1518aa755f2b4159245d34361b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:27:c3:5a:a1:eb:01:50:e7:6f:37:c1:97:1f: d5:ef:74:f3:6f:61:16:dd:65:a0:cb:1a:b7:f0:08: 80:41:d9:17:87:f6:a1:ef:96:46:e0:7f:3c:dc:ef: da:12:89:ab:7a:ec:e3:c9:a8:fa:e3:d3:40:2e:98: 57:64:78:c9:6e:06:c1:cd:47:e9:36:ad:ef:c4:8d: 24:55:18:54:84:09:43:e6:42:23:1d:8a:71:00:7a: 2e:bb:16:dc:46:1d:06:02:57:0f:7b:4a:4c:6f:f6: 93:43:6b:89:88:fe:07:cf:e2:c8:b5:51:52:e4:f2: 27:a5:a0:aa:e3:e7:b6:14:b5:b3:5f:f0:f1:8b:68: 23:44:e1:94:10:ce:de:61:fe:77:a3:c5:f9:69:7b: 8d:6c:57:b7:df:4f:b6:d1:e0:7c:f5:c2:ae:7e:83: 80:91:fd:19:e7:62:54:f3:89:6e:9f:c7:7b:73:30: 57:d5:69:6c:3f:8a:93:92:91:e0:73:34:38:10:ce: b0:09:87:bd:3b:54:e3:d9:cc:aa:3e:d4:c4:74:d3: 4e:f7:d2:68:29:21:0e:09:39:7a:0a:01:92:59:5f: 13:fa:4d:65:6f:a1:58:0a:9d:0f:45:a9:0a:a2:3b: 49:a8:21:ed:48:88:13:07:42:1e:67:1a:4a:38:bc: b3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:50:F5:BD:64:D3:D5:06:56:55:06:30:62:AD:4F:5E:C8:FB:5B:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f80d56bb-0a1b-4165-8232-5fbfdfebfb12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/21 Signature Algorithm: sha256WithRSAEncryption 53:2c:4e:a2:51:77:02:01:fb:dd:19:b1:5e:b9:0a:6a:e4:89: 0f:84:5c:1b:92:85:c9:0f:c0:03:eb:05:62:69:97:ee:97:f6: d8:f6:d7:a7:0c:66:58:c2:15:64:c0:11:99:1b:8f:c2:f5:1b: 0d:cb:b9:8e:e6:0f:05:4c:3f:b7:8a:13:28:85:9c:ee:6f:41: fc:21:2c:80:a4:89:50:68:41:54:b1:55:ac:15:01:b4:e2:82: 6c:47:d0:be:de:4d:42:64:93:d7:3f:5e:e9:e0:03:b1:24:4b: 00:10:91:17:a0:ba:e6:d4:84:1c:8d:50:34:21:04:7d:c2:6e: 50:82:8b:03:06:40:f9:41:fd:eb:a8:cf:34:f7:74:23:42:c3: 38:32:88:ab:37:a6:93:01:d8:8c:81:ad:6a:03:b8:97:5d:2a: 1e:b1:35:6e:27:e7:37:61:2c:d2:d1:b2:15:f3:ed:e4:5e:9f: 39:53:d4:93:0e:0e:c0:cb:c1:c3:b1:e2:47:a1:0d:e3:18:6e: bf:40:06:9b:cb:a5:16:a9:39:b6:55:2d:3c:86:ea:49:36:9a: 32:db:88:d2:3b:c3:f0:d8:99:cf:0e:d1:3d:ce:e4:d3:f8:46: 21:81:f5:88:07:e6:9f:2d:37:f7:d2:fe:d7:55:72:ba:74:55: 94:e2:4a:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULsVVXx8713UGZIzOnoGy95ouEXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDM3YzVhOWRhZTMyNzU0ZmYyMDI1NDVjYTJiOGE0Mjk1 ZGQzZjE1MThhYTc1NWYyYjQxNTkyNDVkMzQzNjFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbJ8NaoesBUOdvN8GXH9XvdPNvYRbdZaDLGrfwCIBB2ReH 9qHvlkbgfzzc79oSiat67OPJqPrj00AumFdkeMluBsHNR+k2re/EjSRVGFSECUPm QiMdinEAei67FtxGHQYCVw97Skxv9pNDa4mI/gfP4si1UVLk8ieloKrj57YUtbNf 8PGLaCNE4ZQQzt5h/nejxflpe41sV7ffT7bR4Hz1wq5+g4CR/RnnYlTziW6fx3tz MFfVaWw/ipOSkeBzNDgQzrAJh707VOPZzKo+1MR000730mgpIQ4JOXoKAZJZXxP6 TWVvoVgKnQ9FqQqiO0moIe1IiBMHQh5nGko4vLPtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi1D1vWTT1QZWVQYwYq1PXsj7W4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4MGQ1NmJiLTBhMWItNDE2NS04MjMyLTVmYmZkZmViZmIxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl4AwDQYJKoZIhvcNAQELBQADggEBAFMsTqJRdwIB+90ZsV65CmrkiQ+E XBuShckPwAPrBWJpl+6X9tj216cMZljCFWTAEZkbj8L1Gw3LuY7mDwVMP7eKEyiF nO5vQfwhLICkiVBoQVSxVawVAbTigmxH0L7eTUJkk9c/XungA7EkSwAQkReguubU hByNUDQhBH3CblCCiwMGQPlB/euozzT3dCNCwzgyiKs3ppMB2IyBrWoDuJddKh6x NW4n5zdhLNLRshXz7eRenzlT1JMODsDLwcOx4kehDeMYbr9ABpvLpRapObZVLTyG 6kk2mjLbiNI7w/DYmc8O0T3O5NP4RiGB9YgH5p8tN/fS/tdVcrp0VZTiSto= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:21 2023 by rpki-client on console-fra.rpki-client.org