$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa File: 8b4d99c5-89ad-4008-a629-96e00cf5656f.roa (raw, json) Hash identifier: n2rDj5IlJQpvhQLOP+fxcQ7TzArftB13RTgl1QDOvR8= Subject key identifier: 04:39:E4:0B:11:DF:1D:85:1B:B2:06:8F:20:16:F0:5C:04:86:83:56 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 798F76D37CAD6E65063625051D93A9C9325FFDC3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8f:76:d3:7c:ad:6e:65:06:36:25:05:1d:93:a9:c9:32:5f:fd:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=779a3d5e8c7a9379f3f1c34704aba7180d093082fa7bbc91f854ba17b3ef97aa, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a0:70:70:1d:99:47:f6:59:96:69:0e:be:d1: 9d:f6:e0:bb:eb:30:27:13:e6:ce:79:f6:c7:cf:1d: 78:fc:2c:f1:ef:ab:60:74:eb:98:fa:7c:d8:87:53: ea:be:30:e9:4e:cb:1a:25:ec:db:39:17:73:34:03: 6b:6e:af:1f:9f:6b:b9:bc:15:b2:97:7e:63:01:ce: ca:62:61:79:b0:29:86:66:c0:7d:36:7b:75:02:2a: 8e:dc:2c:e6:d7:4b:dd:c6:9c:81:dd:9d:d3:25:04: c8:4a:ea:05:de:da:a2:56:0d:5f:f2:a1:b8:f6:6a: 4e:de:d8:6f:5e:2f:fb:bb:a0:73:3a:9a:b2:9d:7a: 54:cd:9c:59:38:a6:76:82:17:c0:64:d4:d6:90:a6: 89:c5:e4:14:84:10:a4:e6:3c:a1:c2:c8:3c:f7:bb: f5:f3:9b:4b:5e:0d:25:52:08:65:07:b7:8c:d9:a1: 7c:c0:6b:6b:e2:c8:ff:8f:ef:4e:d0:46:30:68:0e: 19:da:32:04:e5:43:27:8a:35:a2:c5:8b:cc:1a:8d: 3b:0f:cd:4e:bb:fa:44:99:7b:ba:a5:f2:eb:8c:d9: 01:6c:42:51:78:6e:80:e3:59:b3:b7:58:70:63:8e: d6:df:2c:c2:02:91:8c:59:cf:7d:43:65:ab:fe:4e: a5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:39:E4:0B:11:DF:1D:85:1B:B2:06:8F:20:16:F0:5C:04:86:83:56 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption a6:4c:74:bb:de:4c:ee:c2:d5:60:2c:ed:fc:d9:94:bd:28:25: 06:0f:57:88:16:6d:28:af:77:a6:18:7d:96:50:d0:fc:07:81: 48:40:37:cb:c7:f9:1b:12:c1:fb:92:22:87:9d:e1:bc:83:f7: 8b:5c:41:e9:2a:6d:8e:d2:c8:84:dd:aa:27:52:a2:70:aa:ec: 3d:87:b6:f0:25:e1:6a:e9:34:81:fc:12:6c:34:cb:94:7a:c0: df:40:fb:e7:26:4e:d2:ed:30:44:82:57:34:e1:06:80:18:dc: 8f:7e:08:bf:e7:94:30:d5:b4:08:04:36:7f:a6:66:d2:ee:c5: c3:df:61:90:84:1a:42:81:b1:83:57:19:d8:6d:de:9d:8a:7f: e1:37:ec:31:18:9a:eb:dd:cc:01:c5:a2:f5:88:88:c4:e9:3a: 6d:3b:ef:17:87:2c:40:14:a9:42:74:6a:b6:98:da:ab:86:bd: 18:33:31:19:bc:35:0c:d5:ba:3a:3f:ed:ad:42:31:1d:d4:a8: 29:68:28:79:31:02:c1:81:72:ef:68:0f:c6:ba:c3:2e:e8:1f: 23:7b:8c:17:ba:88:51:79:00:1e:0a:0d:fb:5d:8f:cf:92:75: 0c:2e:ed:2b:4d:78:21:4c:4d:66:05:f2:c2:99:75:f6:5b:b6: 1c:ea:24:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeY9203ytbmUGNiUFHZOpyTJf/cMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzlhM2Q1ZThjN2E5Mzc5ZjNmMWMzNDcwNGFiYTcxODBk MDkzMDgyZmE3YmJjOTFmODU0YmExN2IzZWY5N2FhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdoHBwHZlH9lmWaQ6+0Z324LvrMCcT5s559sfPHXj8LPHv q2B065j6fNiHU+q+MOlOyxol7Ns5F3M0A2turx+fa7m8FbKXfmMBzspiYXmwKYZm wH02e3UCKo7cLObXS93GnIHdndMlBMhK6gXe2qJWDV/yobj2ak7e2G9eL/u7oHM6 mrKdelTNnFk4pnaCF8Bk1NaQponF5BSEEKTmPKHCyDz3u/Xzm0teDSVSCGUHt4zZ oXzAa2viyP+P707QRjBoDhnaMgTlQyeKNaLFi8wajTsPzU67+kSZe7ql8uuM2QFs QlF4boDjWbO3WHBjjtbfLMICkYxZz31DZav+TqWXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBDnkCxHfHYUbsgaPIBbwXASGg1YwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhiNGQ5OWM1LTg5YWQtNDAwOC1hNjI5LTk2ZTAwY2Y1NjU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAKZMdLveTO7C1WAs7fzZlL0oJQYP V4gWbSivd6YYfZZQ0PwHgUhAN8vH+RsSwfuSIoed4byD94tcQekqbY7SyITdqidS onCq7D2HtvAl4WrpNIH8Emw0y5R6wN9A++cmTtLtMESCVzThBoAY3I9+CL/nlDDV tAgENn+mZtLuxcPfYZCEGkKBsYNXGdht3p2Kf+E37DEYmuvdzAHFovWIiMTpOm07 7xeHLEAUqUJ0araY2quGvRgzMRm8NQzVujo/7a1CMR3UqCloKHkxAsGBcu9oD8a6 wy7oHyN7jBe6iFF5AB4KDftdj8+SdQwu7StNeCFMTWYF8sKZdfZbthzqJJI= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:30 2023 by rpki-client on console-fra.rpki-client.org