$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa File: 476b6542-f865-4ad9-a41f-dd015bf0089e.roa (raw, json) Hash identifier: H6B/rV3zx3pqie+e6E0xrgnLvO0EsfyYeDNIR5gID1g= Subject key identifier: B4:24:7C:35:50:98:F8:50:A9:BA:7A:3F:BE:52:91:8B:EF:EF:1B:D4 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 4AEDC55D39B328D0807A76570FF36277C22AB4BE Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa Signing time: Mon 11 Sep 2023 00:00:00 +0000 ROA not before: Mon 11 Sep 2023 00:00:00 +0000 ROA not after: Mon 16 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 Sep 2023 03:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ed:c5:5d:39:b3:28:d0:80:7a:76:57:0f:f3:62:77:c2:2a:b4:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 11 00:00:00 2023 GMT Not After : Oct 16 23:59:59 2023 GMT Subject: serialNumber=343d2fdd3729c3139276044703eb6372d20660943b8fe94dc6d03de15d8432b8, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dc:d6:77:99:c2:27:44:7e:9e:9b:09:bf:15: 41:f1:17:e1:41:d7:05:7e:b1:c2:6e:21:e4:a5:b5: 6e:83:97:9d:43:fd:77:59:db:0e:5a:ec:0e:f5:f4: 2c:c7:14:9f:18:a2:b9:55:ea:66:ad:af:ad:52:33: 4f:6c:26:2b:cc:d7:41:0e:15:5b:3c:2a:79:5d:3e: 3e:07:92:b6:f5:ec:e6:63:02:e5:81:11:03:90:ec: 6f:ab:f4:93:68:77:a3:8c:19:d3:3a:61:d6:ea:a8: 78:44:9b:3f:77:29:cf:35:8b:b5:ae:b3:d1:48:7f: 43:74:73:ef:eb:7d:20:8b:e3:2e:f2:c6:3a:7a:37: 49:c9:54:c9:ce:39:ba:99:76:20:3e:82:81:a6:8b: 93:b1:b0:ed:b7:21:f7:5c:9f:48:e0:38:f9:65:06: f4:fb:df:03:ac:b9:1a:cf:9f:47:c0:03:03:0d:2f: 6f:93:ca:b7:30:f8:67:d7:cc:ea:22:e9:37:18:17: 3a:d2:3b:9e:0a:06:81:e0:bd:f9:2c:fa:47:95:e6: d3:46:e0:0d:37:2d:ce:ae:fc:2e:18:44:70:d0:e8: 09:ed:6f:da:e6:0e:29:89:af:3b:62:a2:1a:98:c0: 14:9c:45:ab:b7:ab:6a:df:3e:a3:9b:2c:fa:17:41: 01:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:24:7C:35:50:98:F8:50:A9:BA:7A:3F:BE:52:91:8B:EF:EF:1B:D4 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 13:e6:4c:94:f7:83:dc:12:38:41:98:13:27:d5:21:6b:ee:f9: 8f:8b:7e:3e:d7:5d:98:9a:46:73:46:8f:08:7c:6b:78:78:d1: 6b:75:e2:43:dd:9c:63:44:52:a8:f3:ab:35:58:b3:b8:01:80: ce:db:21:b9:cf:06:de:1c:b9:de:77:e2:a3:f7:f8:d0:c2:bc: 37:80:7f:81:5d:15:31:4c:81:3c:61:55:ff:3f:ce:07:d0:83: 0a:db:27:31:16:d3:09:3b:8c:52:c3:3e:bf:f4:19:f5:dc:18: d0:1c:63:c8:44:cf:39:4f:46:98:e9:e6:bb:51:c6:eb:40:81: d6:2a:1b:1e:5a:75:a2:6b:e9:8b:25:fd:a0:03:cb:94:77:34: 5b:e5:75:e3:56:4e:20:48:74:21:57:f6:6a:9a:a1:4f:0d:c9: 3c:6e:3a:82:58:89:af:98:9b:37:ba:d5:6a:d1:17:c2:79:94: 37:bc:0c:1b:c5:f0:26:97:0c:cf:70:81:e5:5a:64:da:ef:9d: d3:b5:18:5d:26:8f:be:18:dc:c6:50:6a:42:38:7f:56:92:60: 3e:c2:03:5f:35:fc:a2:42:79:37:23:2e:fc:f0:3d:6b:31:42: a2:dd:be:bb:df:bb:d9:a0:6d:cb:6f:cd:77:57:47:7c:9c:c4: 40:f7:bf:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSu3FXTmzKNCAenZXD/Nid8IqtL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjMwOTExMDAwMDAwWhcNMjMxMDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDNkMmZkZDM3MjljMzEzOTI3NjA0NDcwM2ViNjM3MmQy MDY2MDk0M2I4ZmU5NGRjNmQwM2RlMTVkODQzMmI4MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh3NZ3mcInRH6emwm/FUHxF+FB1wV+scJuIeSltW6Dl51D /XdZ2w5a7A719CzHFJ8YorlV6matr61SM09sJivM10EOFVs8KnldPj4Hkrb17OZj AuWBEQOQ7G+r9JNod6OMGdM6YdbqqHhEmz93Kc81i7Wus9FIf0N0c+/rfSCL4y7y xjp6N0nJVMnOObqZdiA+goGmi5OxsO23Ifdcn0jgOPllBvT73wOsuRrPn0fAAwMN L2+Tyrcw+GfXzOoi6TcYFzrSO54KBoHgvfks+keV5tNG4A03Lc6u/C4YRHDQ6Ant b9rmDimJrztiohqYwBScRau3q2rfPqObLPoXQQGbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtCR8NVCY+FCpuno/vlKRi+/vG9QwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzQ3NmI2NTQyLWY4NjUtNGFkOS1hNDFmLWRkMDE1YmYwMDg5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBABPmTJT3g9wSOEGYEyfVIWvu+Y+L fj7XXZiaRnNGjwh8a3h40Wt14kPdnGNEUqjzqzVYs7gBgM7bIbnPBt4cud534qP3 +NDCvDeAf4FdFTFMgTxhVf8/zgfQgwrbJzEW0wk7jFLDPr/0GfXcGNAcY8hEzzlP Rpjp5rtRxutAgdYqGx5adaJr6Ysl/aADy5R3NFvldeNWTiBIdCFX9mqaoU8NyTxu OoJYia+Ymze61WrRF8J5lDe8DBvF8CaXDM9wgeVaZNrvndO1GF0mj74Y3MZQakI4 f1aSYD7CA181/KJCeTcjLvzwPWsxQqLdvrvfu9mgbctvzXdXR3ycxED3v3o= -----END CERTIFICATE-----Generated at Mon Sep 11 15:39:32 2023 by rpki-client on console-ams.rpki-client.org