$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa File: fb84443e-6393-43c5-8053-c16873c52b3c.roa (raw, json) Hash identifier: AQnJp+wCbFHv4gjsgooBm+XWIA2K4L8oZiQEpFGzGmM= Subject key identifier: 8F:7D:E2:D5:BC:6D:04:45:CF:E4:7D:C5:CD:44:6E:9D:4C:79:84:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FD13AEF28A94A621F48A4A8813ED9AC174A4274 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d1:3a:ef:28:a9:4a:62:1f:48:a4:a8:81:3e:d9:ac:17:4a:42:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0c4b956e80766a39d395518223515aa81ab6a46c0369000eb014e164fd789161, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:17:3f:66:ba:2a:26:53:b2:c0:f8:1a:ff:7a: e8:94:19:8a:8b:49:64:4e:a3:d4:3f:53:57:c8:3d: c3:26:27:41:de:f0:3e:02:1a:eb:d3:42:cc:99:66: da:67:cd:d0:f4:72:6e:d6:79:86:e3:14:7c:6a:57: 0c:f2:86:74:9f:fc:6b:e3:7a:37:9c:ce:7f:83:46: 25:c4:49:10:cb:4f:4a:49:41:80:22:c2:7c:fe:3f: 78:68:60:8b:c1:84:5b:2d:0c:9d:0a:7a:01:85:da: 6d:fb:b9:2e:ef:f7:05:c1:2e:22:5c:7b:f6:ec:24: 65:f4:54:cd:a2:2d:05:8d:2d:44:64:e9:8c:d3:d5: 35:37:92:bb:1c:7f:c6:20:ad:2d:a8:25:14:d3:2f: 7d:16:2f:4c:89:f8:11:ca:f6:06:77:6a:1e:21:ce: 24:57:1d:2e:42:2d:2f:f7:c7:82:75:17:9a:7c:2d: e8:f3:87:7c:fe:dc:e5:b2:ca:35:a4:32:44:0e:e2: 53:41:e5:07:33:1f:f3:e0:54:9b:66:11:10:9e:be: 7c:ce:b4:18:29:c0:39:bc:b7:1a:11:bf:d7:6d:f1: cc:3a:22:d8:59:2a:d5:08:d7:ab:64:cc:ae:84:33: e1:14:57:a0:0d:d8:e2:d1:f4:76:05:e2:a2:5d:3f: 4b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7D:E2:D5:BC:6D:04:45:CF:E4:7D:C5:CD:44:6E:9D:4C:79:84:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.0.0/17 Signature Algorithm: sha256WithRSAEncryption ba:ac:ca:76:6b:50:8b:83:5a:0d:81:aa:fb:18:10:b0:f0:ed: 47:61:2e:75:ca:f4:1d:80:14:ed:bf:e1:62:41:e6:54:4b:62: a5:23:d7:c2:b0:7a:a1:13:91:98:74:0d:43:c9:52:3e:18:b0: 7f:fb:49:1a:a8:e3:69:6c:fe:e2:a3:0a:72:d8:38:68:fc:b0: 73:eb:ff:c0:b3:1e:67:01:e6:91:92:6d:30:89:1a:88:a0:16: f1:bc:d7:42:cb:c5:fc:5f:90:ba:ad:67:b8:ba:61:68:0a:9d: 1e:3a:a5:40:d0:41:c8:fe:c7:38:2c:e2:d6:5f:2e:b9:17:16: 84:c7:a2:3e:69:26:6c:89:17:66:bb:b0:1a:db:11:17:6b:c6: f0:0e:80:3c:6c:fc:27:72:1c:01:ad:1e:85:71:98:8b:60:10: 1e:2f:7f:f3:b2:aa:cc:1f:55:a3:07:e3:ba:f4:fd:17:f9:b6: 14:e7:8c:da:1b:5c:73:6e:1e:81:be:44:01:9a:6e:01:65:fc: c3:0f:88:a3:b8:9e:7b:84:51:ff:9f:f0:e8:53:eb:6b:3f:b0: 17:64:a5:d2:8d:fa:de:5f:12:34:c8:4b:03:9f:d5:ba:e4:0a: 17:af:13:52:64:44:3c:ab:79:74:b6:77:c1:a2:ba:6b:97:38: 39:5f:62:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL9E67yipSmIfSKSogT7ZrBdKQnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzRiOTU2ZTgwNzY2YTM5ZDM5NTUxODIyMzUxNWFhODFh YjZhNDZjMDM2OTAwMGViMDE0ZTE2NGZkNzg5MTYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYFz9muiomU7LA+Br/euiUGYqLSWROo9Q/U1fIPcMmJ0He 8D4CGuvTQsyZZtpnzdD0cm7WeYbjFHxqVwzyhnSf/Gvjejeczn+DRiXESRDLT0pJ QYAiwnz+P3hoYIvBhFstDJ0KegGF2m37uS7v9wXBLiJce/bsJGX0VM2iLQWNLURk 6YzT1TU3krscf8YgrS2oJRTTL30WL0yJ+BHK9gZ3ah4hziRXHS5CLS/3x4J1F5p8 Lejzh3z+3OWyyjWkMkQO4lNB5QczH/PgVJtmERCevnzOtBgpwDm8txoRv9dt8cw6 IthZKtUI16tkzK6EM+EUV6AN2OLR9HYF4qJdP0sTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj33i1bxtBEXP5H3FzURunUx5hEgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiODQ0NDNlLTYzOTMtNDNjNS04MDUzLWMxNjg3M2M1MmIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdHmAAwDQYJKoZIhvcNAQELBQADggEBALqsynZrUIuDWg2BqvsYELDw7Udh LnXK9B2AFO2/4WJB5lRLYqUj18KweqETkZh0DUPJUj4YsH/7SRqo42ls/uKjCnLY OGj8sHPr/8CzHmcB5pGSbTCJGoigFvG810LLxfxfkLqtZ7i6YWgKnR46pUDQQcj+ xzgs4tZfLrkXFoTHoj5pJmyJF2a7sBrbERdrxvAOgDxs/CdyHAGtHoVxmItgEB4v f/OyqswfVaMH47r0/Rf5thTnjNobXHNuHoG+RAGabgFl/MMPiKO4nnuEUf+f8OhT 62s/sBdkpdKN+t5fEjTISwOf1brkChevE1JkRDyreXS2d8GiumuXODlfYlQ= -----END CERTIFICATE-----Generated at Fri Sep 22 21:31:21 2023 by rpki-client on console-fra.rpki-client.org