$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa File: feb36ea7-4e25-44cf-a328-348e0beb29c2.roa (raw, json) Hash identifier: AUzz8U6ClXsEPJGL8OjczEmJ+vEcDOlMMSJ6xxhhrSs= Subject key identifier: AF:83:90:C6:3D:A8:DD:EE:84:0C:41:26:28:5D:20:91:DC:C0:B0:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D2E45EBC9A2540A5C033C719B92B879BBF4D0A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.27.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2e:45:eb:c9:a2:54:0a:5c:03:3c:71:9b:92:b8:79:bb:f4:d0:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=3e9859eb4c640b31edb7959c7a386d301ec4929dd8f180018c0051f90662a186, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:77:5c:73:a4:8c:4b:63:e8:a7:15:3c:80:ee: 56:e4:bd:a9:de:27:37:5b:91:47:23:af:9f:41:c0: 90:36:23:ff:29:f2:24:09:e7:f0:0a:c2:d4:02:b8: 63:42:3b:14:be:e4:ed:c7:3d:93:2c:b9:74:4d:8e: d7:54:28:52:14:85:4c:22:cd:ff:3b:49:2f:20:d1: e9:e7:da:e9:05:fc:ba:bf:98:8f:dd:bc:00:fd:b6: 32:c0:4a:25:cc:56:9f:0f:2d:c7:58:cd:a8:a1:c9: 98:9d:7c:30:77:9b:1d:9d:7c:bd:09:37:97:b4:30: 84:16:22:ee:ec:18:a9:68:40:e3:5b:45:53:73:c9: 7a:9f:65:64:25:68:0e:64:de:42:79:d8:c1:7c:1d: 6e:12:e0:a1:18:53:d0:d1:dd:e0:4c:84:91:cc:7d: bf:30:ca:4b:6a:67:12:5a:d0:83:8d:90:ac:8f:80: e0:c4:18:a5:76:bb:5c:7f:72:48:0d:f3:73:67:81: 52:07:ca:8a:0a:31:42:fa:72:18:00:3c:e3:bc:aa: 1f:be:9a:d4:04:56:36:86:b3:ac:ff:d5:26:15:0c: cf:31:cc:58:ef:a7:4c:94:1f:ac:e8:a4:a8:04:5c: bc:5f:69:2d:85:d1:96:36:4f:ed:1f:3c:d7:c1:96: e9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:83:90:C6:3D:A8:DD:EE:84:0C:41:26:28:5D:20:91:DC:C0:B0:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:43:ba:95:f3:31:87:87:ae:9f:06:c3:1c:fa:cb:3e:e2:92: 73:a5:85:f5:f7:8f:db:63:96:7d:4c:23:09:e5:76:a4:0a:a3: 0f:0c:21:eb:13:a8:67:d1:24:d0:93:8c:d5:ae:0a:49:9d:02: fe:2f:b9:91:23:74:51:fb:6e:4e:f5:87:58:5c:7e:c8:19:03: 6d:b9:fb:7d:3b:ca:ed:f1:d3:f4:ff:56:4a:0f:e8:b6:c0:23: d8:4c:76:6f:29:1a:2c:2b:9a:94:b2:ac:6b:e9:99:d1:2b:65: f3:f0:ec:0a:ee:e5:8e:2e:31:65:71:37:a4:8f:36:ac:18:35: 6d:d2:08:cd:7e:a6:ae:ae:3a:07:65:9b:b7:b6:f8:1e:12:28: 76:93:c3:05:a9:0b:22:9b:a9:d5:1e:73:da:d2:54:e1:2f:50: 04:84:f1:ce:f0:47:1c:c1:2b:b7:fe:ef:0a:8d:e3:38:ca:87: ef:46:aa:2b:36:53:22:e8:24:d9:6b:96:f9:72:b3:28:a1:2e: a1:1c:32:da:f3:f4:e2:8b:c6:1d:e1:02:ac:d1:db:66:46:56: 76:1a:33:1a:7d:36:07:08:91:81:31:b0:5b:b0:e1:dc:06:61: 46:d2:c0:7b:40:07:3f:de:3c:7c:16:a7:f5:37:ef:d3:c8:5c: a3:40:10:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXS5F68miVApcAzxxm5K4ebv00KgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTk4NTllYjRjNjQwYjMxZWRiNzk1OWM3YTM4NmQzMDFl YzQ5MjlkZDhmMTgwMDE4YzAwNTFmOTA2NjJhMTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPd1xzpIxLY+inFTyA7lbkvaneJzdbkUcjr59BwJA2I/8p 8iQJ5/AKwtQCuGNCOxS+5O3HPZMsuXRNjtdUKFIUhUwizf87SS8g0enn2ukF/Lq/ mI/dvAD9tjLASiXMVp8PLcdYzaihyZidfDB3mx2dfL0JN5e0MIQWIu7sGKloQONb RVNzyXqfZWQlaA5k3kJ52MF8HW4S4KEYU9DR3eBMhJHMfb8wyktqZxJa0IONkKyP gODEGKV2u1x/ckgN83NngVIHyooKMUL6chgAPOO8qh++mtQEVjaGs6z/1SYVDM8x zFjvp0yUH6zopKgEXLxfaS2F0ZY2T+0fPNfBlulbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr4OQxj2o3e6EDEEmKF0gkdzAsOcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlYjM2ZWE3LTRlMjUtNDRjZi1hMzI4LTM0OGUwYmViMjljMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4GzANBgkqhkiG9w0BAQsFAAOCAQEAaUO6lfMxh4eunwbDHPrLPuKSc6WF 9feP22OWfUwjCeV2pAqjDwwh6xOoZ9Ek0JOM1a4KSZ0C/i+5kSN0UftuTvWHWFx+ yBkDbbn7fTvK7fHT9P9WSg/otsAj2Ex2bykaLCualLKsa+mZ0Stl8/DsCu7lji4x ZXE3pI82rBg1bdIIzX6mrq46B2Wbt7b4HhIodpPDBakLIpup1R5z2tJU4S9QBITx zvBHHMErt/7vCo3jOMqH70aqKzZTIugk2WuW+XKzKKEuoRwy2vP04ovGHeECrNHb ZkZWdhozGn02BwiRgTGwW7Dh3AZhRtLAe0AHP948fBan9Tfv08hco0AQWw== -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:17 2023 by rpki-client on console-fra.rpki-client.org