$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: Fp/2OUyPlFZh14bOxHCO+QRpTSOREvkj+LX8bDhT9dI= Subject key identifier: 66:EA:AE:3A:55:76:3A:45:77:49:83:4F:0F:F1:5C:55:6A:B6:FE:71 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6C6FB578DE947148DF0C8BF1299FB724A82260AD Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:6f:b5:78:de:94:71:48:df:0c:8b:f1:29:9f:b7:24:a8:22:60:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=3ba0b8bbbe3d3f6186f40ede94c1e611859f7e0b0c5db7c0eea8dc93bba698c9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7c:3a:53:e6:7d:0c:66:ef:fd:7c:8b:6b:ff: 67:a2:fd:92:6e:7b:80:54:b9:71:c7:c1:46:31:ce: e1:e8:66:28:03:85:e9:33:89:c4:3f:8d:a4:34:74: c4:51:b9:f1:36:ab:44:d8:30:ab:e0:94:2e:c4:d8: 12:b7:3c:5e:de:73:52:53:a5:29:8d:d8:b4:54:cd: b0:c4:82:4b:b9:64:e9:2f:ab:01:c9:27:37:54:32: 0f:3b:a7:ea:8d:46:2f:7f:9b:5b:03:45:89:ed:3c: 50:19:68:ee:94:41:bd:bb:3d:84:31:68:0d:05:93: 54:a1:8c:5b:51:36:99:40:7d:e0:8c:6b:1b:7d:4d: e5:e8:4f:37:5c:fb:93:d5:8a:4f:0b:d7:ee:3e:56: 52:dd:f3:42:26:a1:b7:68:a3:c2:d7:2a:e2:56:e1: 00:74:3f:8e:b2:44:d3:7a:c3:a9:70:5f:a7:ba:92: 8e:05:45:f3:34:71:5e:0b:98:ee:bb:3a:db:a2:27: 42:c1:ae:67:5c:89:b9:68:f3:fc:ae:d3:da:f6:b7: 7e:28:43:46:5c:24:75:e2:2d:04:b9:ff:c4:a3:64: fe:3d:ac:e3:23:7a:12:22:a3:cd:14:59:49:b3:8c: 8c:bd:b0:4c:3b:23:b0:0e:7a:31:86:95:84:b1:a5: f7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EA:AE:3A:55:76:3A:45:77:49:83:4F:0F:F1:5C:55:6A:B6:FE:71 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:1b:ed:6f:e1:ae:e9:c1:01:c2:cf:66:c5:32:17:16:a7:a4: 29:17:42:d0:d0:ac:20:78:f3:05:4d:00:71:1f:b6:9e:f8:55: e4:5e:7b:39:4e:71:3c:67:55:11:04:b8:21:44:27:7d:98:1a: 24:b1:98:c9:46:c8:5b:e5:72:24:30:11:8d:48:72:50:fe:53: bf:d3:7e:a3:ea:16:0c:10:a8:f4:71:dc:4e:57:b6:b1:7c:12: 19:f0:21:01:61:fa:31:66:55:09:78:7d:c5:9c:89:df:d0:2e: 18:25:51:d1:4a:cc:65:d3:ee:66:90:af:93:22:a1:7a:4a:4c: 9b:52:1d:79:0a:33:e2:49:5d:8a:39:35:d4:ae:a4:4b:0c:ec: 94:0f:f1:76:6c:61:5d:8d:5a:ff:84:d7:db:68:25:2a:24:0d: 4c:7d:d4:60:93:e5:8c:fd:a5:e4:3d:23:20:8f:a0:c7:f3:2a: 16:65:61:e2:fd:5f:fa:26:59:ea:2a:fb:26:55:c6:7f:9a:ff: 55:2f:19:71:23:05:39:7c:47:bc:c7:66:5b:8b:2e:58:23:17: a6:e9:c6:cf:f3:77:75:51:1f:57:d1:18:06:8e:b6:87:45:04: 93:89:f0:21:8a:88:0e:e6:c6:45:8e:d2:6f:5a:ee:33:8f:48: 17:09:89:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbG+1eN6UcUjfDIvxKZ+3JKgiYK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmEwYjhiYmJlM2QzZjYxODZmNDBlZGU5NGMxZTYxMTg1 OWY3ZTBiMGM1ZGI3YzBlZWE4ZGM5M2JiYTY5OGM5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCifDpT5n0MZu/9fItr/2ei/ZJue4BUuXHHwUYxzuHoZigD hekzicQ/jaQ0dMRRufE2q0TYMKvglC7E2BK3PF7ec1JTpSmN2LRUzbDEgku5ZOkv qwHJJzdUMg87p+qNRi9/m1sDRYntPFAZaO6UQb27PYQxaA0Fk1ShjFtRNplAfeCM axt9TeXoTzdc+5PVik8L1+4+VlLd80Imobdoo8LXKuJW4QB0P46yRNN6w6lwX6e6 ko4FRfM0cV4LmO67OtuiJ0LBrmdciblo8/yu09r2t34oQ0ZcJHXiLQS5/8SjZP49 rOMjehIio80UWUmzjIy9sEw7I7AOejGGlYSxpfd7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZuquOlV2OkV3SYNPD/FcVWq2/nEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAI4b7W/hrunBAcLPZsUyFxanpCkX QtDQrCB48wVNAHEftp74VeReezlOcTxnVREEuCFEJ32YGiSxmMlGyFvlciQwEY1I clD+U7/TfqPqFgwQqPRx3E5XtrF8EhnwIQFh+jFmVQl4fcWcid/QLhglUdFKzGXT 7maQr5MioXpKTJtSHXkKM+JJXYo5NdSupEsM7JQP8XZsYV2NWv+E19toJSokDUx9 1GCT5Yz9peQ9IyCPoMfzKhZlYeL9X/omWeoq+yZVxn+a/1UvGXEjBTl8R7zHZluL LlgjF6bpxs/zd3VRH1fRGAaOtodFBJOJ8CGKiA7mxkWO0m9a7jOPSBcJiY0= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org