$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa File: fc14eed1-8236-4842-9526-26b0265b42a1.roa (raw, json) Hash identifier: uSLvVqvhLVrkD90S2M8Gz40l98mlsAILB9iBAy6ZAP0= Subject key identifier: B6:A3:C5:16:84:26:52:29:64:33:07:53:F3:E3:B2:FE:47:9E:6A:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 186CEA867F2133CD457E88879B471C77A510AD9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6c:ea:86:7f:21:33:cd:45:7e:88:87:9b:47:1c:77:a5:10:ad:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=3445bc93f6eed6444e384b030f6d35fd69a99b0dbe5aaeefbb94fede7b3ce1e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:42:f8:e9:8a:45:b3:85:00:c0:83:37:33:2f: 9f:bb:05:a2:8f:02:d3:66:db:c9:84:52:f5:27:ee: cd:a5:b1:08:ac:23:66:0d:40:32:ca:ca:9a:64:8f: a4:b8:7a:fa:cc:37:00:60:9f:1c:cb:5c:d9:5e:f1: 29:e6:c6:b6:b1:01:3a:2a:42:e5:27:74:c1:4f:24: 5b:1b:b8:9b:c9:d2:8c:53:49:7c:93:73:eb:37:3f: cf:1b:d3:ae:36:06:1c:8c:85:93:dc:91:30:6a:c4: 7c:ae:ba:ed:2c:2c:40:7c:e2:49:4c:56:96:00:a7: db:5c:b8:a7:ea:da:b0:30:b4:75:68:c2:45:e5:d8: 74:9b:07:b6:d8:f2:8c:aa:0c:b5:ec:b1:9f:79:26: d4:e1:63:18:bb:18:d9:e3:23:dd:6f:8a:70:63:cf: 36:02:0a:4a:d3:92:ec:b9:6d:4f:c5:76:4a:cc:50: 72:90:36:6e:4c:08:1d:37:4e:56:98:68:87:5f:10: 31:c7:bf:a9:18:28:35:0e:fc:6f:f3:cb:ed:e0:6e: 51:53:ad:09:58:94:ba:1e:8a:8a:db:57:8b:18:3a: 59:f6:03:b3:df:35:86:75:ad:2a:9c:60:90:a2:e0: 69:c3:48:fa:2c:22:ca:45:1d:66:da:fc:3f:38:32: df:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A3:C5:16:84:26:52:29:64:33:07:53:F3:E3:B2:FE:47:9E:6A:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.184.0/22 Signature Algorithm: sha256WithRSAEncryption aa:4f:1c:96:98:6b:21:6f:6c:6e:90:dc:d1:5f:f6:a5:5d:9b: 77:90:fa:bd:de:77:c9:c5:ed:1b:7e:fe:34:30:67:e6:d2:ae: 00:16:0c:22:c0:9e:14:41:2c:b5:06:c0:cd:b0:5e:32:10:ec: 95:62:17:e8:91:0b:e4:32:5a:ff:8d:28:18:73:61:24:ba:a1: db:14:e2:82:aa:39:37:d9:20:c2:7c:ce:d3:f4:16:03:55:92: ab:e0:fb:b6:da:a5:3e:7d:07:ad:21:bf:c5:65:7b:a4:b3:0b: 2b:3b:22:43:f3:75:7e:ab:17:f7:50:f2:0b:05:b6:ab:f0:71: 0c:36:41:40:78:c0:7a:c9:4c:df:07:f9:e1:a7:68:b0:80:9e: 55:b9:d2:65:e5:f0:f6:b3:64:9d:76:55:cc:cf:05:2b:32:78: a1:13:85:43:05:fe:3c:5d:d6:d5:15:74:46:ef:0f:bd:a6:b1: df:fb:ab:ae:96:94:de:98:0b:a9:bb:9c:a1:97:6d:2f:21:b3: 68:fc:5b:ac:59:61:a4:75:f0:77:7f:13:33:40:30:fe:30:e9: c5:fb:8e:c4:00:e2:da:7e:b3:55:fe:9c:a8:fb:67:b7:41:b5: b9:5a:ab:18:be:eb:b0:f7:47:33:69:84:79:4f:a6:be:7f:c2: bc:3d:84:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGGzqhn8hM81FfoiHm0ccd6UQrZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDQ1YmM5M2Y2ZWVkNjQ0NGUzODRiMDMwZjZkMzVmZDY5 YTk5YjBkYmU1YWFlZWZiYjk0ZmVkZTdiM2NlMWUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyQvjpikWzhQDAgzczL5+7BaKPAtNm28mEUvUn7s2lsQis I2YNQDLKyppkj6S4evrMNwBgnxzLXNle8SnmxraxAToqQuUndMFPJFsbuJvJ0oxT SXyTc+s3P88b0642BhyMhZPckTBqxHyuuu0sLEB84klMVpYAp9tcuKfq2rAwtHVo wkXl2HSbB7bY8oyqDLXssZ95JtThYxi7GNnjI91vinBjzzYCCkrTkuy5bU/FdkrM UHKQNm5MCB03TlaYaIdfEDHHv6kYKDUO/G/zy+3gblFTrQlYlLoeiorbV4sYOln2 A7PfNYZ1rSqcYJCi4GnDSPosIspFHWba/D84Mt9pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtqPFFoQmUilkMwdT8+Oy/keeargwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjMTRlZWQxLTgyMzYtNDg0Mi05NTI2LTI2YjAyNjViNDJhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjUrgwDQYJKoZIhvcNAQELBQADggEBAKpPHJaYayFvbG6Q3NFf9qVdm3eQ +r3ed8nF7Rt+/jQwZ+bSrgAWDCLAnhRBLLUGwM2wXjIQ7JViF+iRC+QyWv+NKBhz YSS6odsU4oKqOTfZIMJ8ztP0FgNVkqvg+7bapT59B60hv8Vle6SzCys7IkPzdX6r F/dQ8gsFtqvwcQw2QUB4wHrJTN8H+eGnaLCAnlW50mXl8PazZJ12VczPBSsyeKET hUMF/jxd1tUVdEbvD72msd/7q66WlN6YC6m7nKGXbS8hs2j8W6xZYaR18Hd/EzNA MP4w6cX7jsQA4tp+s1X+nKj7Z7dBtblaqxi+67D3RzNphHlPpr5/wrw9hLE= -----END CERTIFICATE-----Generated at Mon Aug 28 23:16:13 2023 by rpki-client on console-ams.rpki-client.org