$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe6d92fb-df44-41d5-9f4e-795e4dd03395.roa File: fe6d92fb-df44-41d5-9f4e-795e4dd03395.roa (raw, json) Hash identifier: hJUhAo3YRhp5o//hkMczY8H+T0wf520rAtSP/fZe5ws= Subject key identifier: BB:44:CF:D4:D0:BC:B2:3C:01:EE:0F:A2:C4:9A:4A:A8:24:47:2A:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C6761A4FD4B7931E02959135311664418281C17 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe6d92fb-df44-41d5-9f4e-795e4dd03395.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 108.175.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:67:61:a4:fd:4b:79:31:e0:29:59:13:53:11:66:44:18:28:1c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=52ea56b16692b93c11f98b040deff3e0a315e8908b884b6d8e76c33d6b8baea9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:ec:b8:f3:0d:2d:f8:29:45:49:97:36:e3: 2c:e5:9c:ec:64:06:38:1b:7b:e4:69:6a:01:c2:54: 31:f0:33:a1:eb:e0:3c:26:91:a2:dc:66:bf:ab:a8: 74:e7:f4:5e:5a:01:43:33:b6:da:40:0a:8c:6e:5f: 69:0d:d1:94:a3:a7:01:0d:be:77:f3:ed:d6:b7:cd: c9:16:21:f0:49:a4:64:68:03:23:e0:fa:93:a8:fe: 60:49:9c:38:82:00:63:83:e6:a0:18:38:85:b3:14: 55:da:a4:e5:8f:8f:f7:28:fc:7f:0f:e5:07:5b:05: 47:58:36:e5:27:b3:e1:6a:54:80:d4:73:8b:cf:38: 7b:13:af:5f:f0:2b:61:0a:dd:05:3c:73:88:40:bb: c3:3f:8a:fd:c6:d2:9c:6a:f3:d0:d3:b7:86:f9:a8: c7:ad:a5:4b:c6:14:2a:c1:2a:57:01:2f:9b:0b:16: 14:90:72:b0:8c:6e:83:88:f1:9e:9e:fc:52:88:f0: 51:4d:a5:3b:b1:8d:ab:6f:61:cb:7c:fc:08:9d:65: dd:9e:19:f0:29:5a:1e:d5:7e:e6:bb:8c:87:c0:d7: a0:6f:11:52:f7:b1:ba:27:a4:77:8d:61:97:7c:7e: 64:39:70:47:f9:bc:54:89:20:d4:5d:91:e8:c8:f4: 45:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:CF:D4:D0:BC:B2:3C:01:EE:0F:A2:C4:9A:4A:A8:24:47:2A:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe6d92fb-df44-41d5-9f4e-795e4dd03395.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.175.60.0/22 Signature Algorithm: sha256WithRSAEncryption 88:48:e0:46:6d:f7:d2:70:0c:f0:7b:59:99:02:db:2c:3e:12: 03:23:67:21:0d:75:ce:d6:d1:fc:f0:a6:fa:fe:d8:b9:91:f0: e9:62:d8:96:5f:67:a5:55:8e:2e:f7:c9:99:55:39:84:92:ec: 5b:1e:2f:f9:32:d0:7e:0a:49:aa:b9:4d:26:de:35:83:87:b6: 83:ef:84:87:62:63:79:de:5b:27:9a:3d:4b:59:f0:c9:41:01: 6e:83:09:4c:0b:45:54:e6:39:f9:a2:d0:2c:db:64:52:cc:df: 1d:bc:76:81:a5:3c:f1:28:d2:07:29:2e:4d:fe:4c:1e:2c:5c: d8:96:34:11:b4:37:6b:79:3a:15:4c:d2:83:46:e4:ef:c0:56: 43:9a:1f:4b:d2:01:eb:58:07:e2:d9:55:48:31:f0:da:51:a6: e2:46:70:08:3b:0c:6d:2d:22:34:95:2b:d4:af:9c:0b:55:31: de:aa:05:5e:32:10:a0:b1:87:4d:e7:75:9f:e6:2e:e2:18:2b: be:4a:bb:e1:9b:a8:1d:7a:91:47:9a:e9:1b:da:3a:1d:2c:c5: 4d:70:be:98:8c:42:55:0e:54:09:02:94:69:c9:db:71:b1:cf: 00:2b:98:50:ca:a9:d9:45:8d:ff:64:3a:5c:9f:ff:5a:64:e5: 68:b6:e6:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbGdhpP1LeTHgKVkTUxFmRBgoHBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmVhNTZiMTY2OTJiOTNjMTFmOThiMDQwZGVmZjNlMGEz MTVlODkwOGI4ODRiNmQ4ZTc2YzMzZDZiOGJhZWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbo+y48w0t+ClFSZc24yzlnOxkBjgbe+RpagHCVDHwM6Hr 4DwmkaLcZr+rqHTn9F5aAUMzttpACoxuX2kN0ZSjpwENvnfz7da3zckWIfBJpGRo AyPg+pOo/mBJnDiCAGOD5qAYOIWzFFXapOWPj/co/H8P5QdbBUdYNuUns+FqVIDU c4vPOHsTr1/wK2EK3QU8c4hAu8M/iv3G0pxq89DTt4b5qMetpUvGFCrBKlcBL5sL FhSQcrCMboOI8Z6e/FKI8FFNpTuxjatvYct8/AidZd2eGfApWh7Vfua7jIfA16Bv EVL3sbonpHeNYZd8fmQ5cEf5vFSJINRdkejI9EWrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu0TP1NC8sjwB7g+ixJpKqCRHKq0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlNmQ5MmZiLWRmNDQtNDFkNS05ZjRlLTc5NWU0ZGQwMzM5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJsrzwwDQYJKoZIhvcNAQELBQADggEBAIhI4EZt99JwDPB7WZkC2yw+EgMj ZyENdc7W0fzwpvr+2LmR8Oli2JZfZ6VVji73yZlVOYSS7FseL/ky0H4KSaq5TSbe NYOHtoPvhIdiY3neWyeaPUtZ8MlBAW6DCUwLRVTmOfmi0CzbZFLM3x28doGlPPEo 0gcpLk3+TB4sXNiWNBG0N2t5OhVM0oNG5O/AVkOaH0vSAetYB+LZVUgx8NpRpuJG cAg7DG0tIjSVK9SvnAtVMd6qBV4yEKCxh03ndZ/mLuIYK75Ku+GbqB16kUea6Rva Oh0sxU1wvpiMQlUOVAkClGnJ23GxzwArmFDKqdlFjf9kOlyf/1pk5Wi25so= -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:26 2023 by rpki-client on console-ams.rpki-client.org