$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa File: fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa (raw, json) Hash identifier: 3qQjjuvWKYRMOVckQnTfg/1W4q7zY5rl7qzGxjp7+hY= Subject key identifier: E9:99:44:77:91:C9:1E:4C:AE:83:71:BC:9A:16:9E:8F:31:2D:F1:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 521A2A77B2FE136545ECAD504995A722A97689C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1a:2a:77:b2:fe:13:65:45:ec:ad:50:49:95:a7:22:a9:76:89:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c4dac4010a3289aa508a285c97145b3306761f3e6567fa5b37b864ca4a8f3bb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:fa:83:1c:3d:f5:03:ea:74:6f:84:f3:a1: 7a:50:26:4d:6c:f3:00:b9:63:87:bb:46:69:b4:6a: 2d:28:d0:68:b4:ac:99:40:6c:4e:83:4c:85:f6:21: c7:e3:73:de:be:cc:b8:b5:19:d8:ac:75:9f:17:bf: 7d:b4:da:6b:f3:a9:76:e5:8b:35:cf:b8:27:b2:1b: ea:91:4a:8e:8f:82:6f:f2:fe:42:f4:b4:e1:25:88: 68:5d:5f:72:9d:4e:22:30:48:e9:6d:d0:27:77:6b: c0:07:b4:a7:22:94:5c:69:0e:4a:da:1d:28:8d:a1: d9:4c:97:f3:8f:70:01:57:90:e9:2c:c4:4c:c7:68: 9a:4d:0a:d8:69:4d:87:ea:39:4e:42:c6:a1:00:70: 82:91:98:a0:5f:57:0f:d3:9b:37:14:cb:fc:c1:cd: e7:53:8b:a0:d7:1c:4c:c5:1e:16:6f:64:d4:14:41: 56:2b:0b:d2:80:14:b7:cf:cb:a0:12:fd:06:31:8e: ad:64:72:48:a0:52:97:b1:22:e5:20:c1:39:93:86: 64:3b:5a:24:13:9d:5a:bb:25:d1:93:4b:b9:f7:67: 33:9f:ad:7f:d3:c2:08:4e:7b:4d:8b:5e:f1:fc:6e: e3:dc:22:e2:99:e5:03:fd:e6:4c:60:37:b6:5b:70: 92:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:99:44:77:91:C9:1E:4C:AE:83:71:BC:9A:16:9E:8F:31:2D:F1:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:34:35:e8:cb:0c:b9:18:64:be:39:6e:6d:06:f5:e4:a2:c1: 8e:d7:3d:34:5f:85:f8:dd:9f:18:c2:da:84:8d:85:ec:cc:c6: 83:38:e4:3a:6a:cc:30:3a:20:ee:dc:4f:54:b5:f8:26:fd:a8: 67:09:69:24:ba:0e:d9:85:ca:c6:8c:ed:e2:19:18:27:dc:83: 09:07:c6:10:a8:47:e1:e2:73:0c:06:89:d8:9c:1f:11:7f:a4: 2e:a9:52:48:c9:f1:b0:53:44:1a:f1:3c:31:63:28:84:d8:cb: 82:fd:9e:c4:ee:28:3f:a5:a0:16:bb:0a:ee:17:33:75:95:5d: 18:9d:4e:96:b9:3e:85:d2:ea:3a:8d:4a:f3:4a:49:f6:79:e9: 8f:89:9c:1d:81:3c:2b:25:ff:6e:da:b1:00:a3:cf:0e:20:17: 2a:ad:f1:37:e5:25:df:f1:a1:1f:3f:22:7a:5f:6a:8e:94:d3: c0:38:a3:e4:f9:19:13:a8:4d:bd:48:a9:0b:fb:5f:e1:2f:47: d4:2d:79:5a:75:39:41:0a:92:eb:30:07:85:48:55:ad:e8:0f: 82:2e:9b:d9:cf:3e:52:fb:bf:e8:9c:2b:5b:5e:e0:97:3e:f1: 83:00:53:86:67:84:c2:6f:65:b7:fc:43:12:c1:01:79:5d:97: 14:fa:71:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUhoqd7L+E2VF7K1QSZWnIql2icEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGRhYzQwMTBhMzI4OWFhNTA4YTI4NWM5NzE0NWIzMzA2 NzYxZjNlNjU2N2ZhNWIzN2I4NjRjYTRhOGYzYmI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2IvqDHD31A+p0b4TzoXpQJk1s8wC5Y4e7Rmm0ai0o0Gi0 rJlAbE6DTIX2Icfjc96+zLi1GdisdZ8Xv3202mvzqXblizXPuCeyG+qRSo6Pgm/y /kL0tOEliGhdX3KdTiIwSOlt0Cd3a8AHtKcilFxpDkraHSiNodlMl/OPcAFXkOks xEzHaJpNCthpTYfqOU5CxqEAcIKRmKBfVw/TmzcUy/zBzedTi6DXHEzFHhZvZNQU QVYrC9KAFLfPy6AS/QYxjq1kckigUpexIuUgwTmThmQ7WiQTnVq7JdGTS7n3ZzOf rX/TwghOe02LXvH8buPcIuKZ5QP95kxgN7ZbcJLFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6ZlEd5HJHkyug3G8mhaejzEt8U4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkMDZmMzlhLWMzOTYtNDJiZS1hN2VjLTVlMzBjY2YxYzk4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQODANBgkqhkiG9w0BAQsFAAOCAQEAUzQ16MsMuRhkvjlubQb15KLBjtc9 NF+F+N2fGMLahI2F7MzGgzjkOmrMMDog7txPVLX4Jv2oZwlpJLoO2YXKxozt4hkY J9yDCQfGEKhH4eJzDAaJ2JwfEX+kLqlSSMnxsFNEGvE8MWMohNjLgv2exO4oP6Wg FrsK7hczdZVdGJ1Olrk+hdLqOo1K80pJ9nnpj4mcHYE8KyX/btqxAKPPDiAXKq3x N+Ul3/GhHz8iel9qjpTTwDij5PkZE6hNvUipC/tf4S9H1C15WnU5QQqS6zAHhUhV regPgi6b2c8+Uvu/6JwrW17glz7xgwBThmeEwm9lt/xDEsEBeV2XFPpxuQ== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:54 2023 by rpki-client on console-fra.rpki-client.org