$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa File: a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa (raw, json) Hash identifier: nnovTigwM1eepenOsaczeuiiXA4RJIoJiFxwxibZmLA= Subject key identifier: A8:F1:8B:14:49:7B:F9:37:83:9B:C1:EB:AD:38:25:7C:45:B7:89:74 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0CCE6994EEA1FE4847EC8D94DE379E38CB2CA765 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ce:69:94:ee:a1:fe:48:47:ec:8d:94:de:37:9e:38:cb:2c:a7:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=ce05106bf5080f4aa8296dd4b23c9926ff65e99d3c618dcc689ff2a6556905c0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:22:08:53:9b:67:8b:ff:66:72:ce:b9:13:36: f4:46:56:62:68:d7:c7:c3:14:fe:b5:b0:88:fb:ea: f5:0f:11:90:13:e9:cd:85:bd:70:7e:c2:73:c9:d1: 0f:5e:c9:8e:26:13:86:3a:6b:dc:cd:99:67:d9:d2: 9d:65:10:cc:bd:0a:1a:34:09:43:94:9e:3b:54:30: ad:be:02:8b:18:0d:4a:5f:53:bc:eb:1d:a1:2c:a3: 62:fe:f5:91:44:29:8c:1e:dc:a1:76:13:0a:57:5a: 62:83:71:ae:6a:da:a6:67:55:12:ef:b6:c3:69:7d: 2f:c7:ea:b9:9a:d2:8e:cd:f5:06:30:4d:37:73:8c: 98:94:2e:94:6d:fa:72:8d:da:f4:6a:24:f9:c3:b9: 8d:04:dc:9a:4f:a6:ad:55:3d:76:cc:44:76:80:cb: df:1b:ee:16:87:d8:6a:36:bc:2b:b0:55:99:f0:fa: 32:a4:8a:1b:f2:b2:8c:d1:40:0b:45:6d:c1:de:d9: 64:16:9f:6c:cd:70:ac:d6:bb:e3:74:5c:5d:0d:93: 54:38:64:8e:8c:b7:9c:b2:73:ca:f7:5b:b0:d4:4c: d3:a1:dc:27:9e:81:5d:46:31:96:05:18:8a:20:75: b1:f6:ea:74:97:9c:e3:69:23:83:98:83:65:b4:9c: c9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F1:8B:14:49:7B:F9:37:83:9B:C1:EB:AD:38:25:7C:45:B7:89:74 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/19 Signature Algorithm: sha256WithRSAEncryption 85:20:20:86:a4:bd:b4:81:cb:60:d3:a8:8d:e5:cf:13:83:bc: e8:9f:07:11:2e:59:f6:0a:0c:d2:0c:4a:82:14:2a:64:14:0f: ec:b1:0a:69:e6:43:eb:1c:82:24:39:91:9a:43:9d:16:ab:71: f8:38:9d:54:fa:09:63:83:58:db:72:58:43:b9:30:ee:f0:4e: 69:68:37:70:07:0c:53:ce:36:86:e8:3c:fd:55:89:c0:09:1f: a6:53:ae:30:00:26:12:15:6a:01:23:71:94:b1:d7:8e:9b:6d: d3:6d:c0:a9:46:27:34:d7:e5:12:61:05:0d:13:db:8b:35:be: c0:04:e5:7f:aa:cf:cd:cb:57:8d:3f:6d:9d:c6:c6:a3:33:f0: aa:9e:36:9d:0b:15:72:0a:e1:54:ab:32:85:97:a3:b8:eb:f7: 25:55:0c:78:89:20:0c:77:b3:6f:20:fc:86:6a:58:d0:7a:f7: 09:25:11:61:7c:4b:99:79:bd:c2:02:e6:0d:f7:0b:27:07:f5: 6c:c9:5a:40:d6:b3:f8:38:57:7e:f6:24:e9:44:29:57:37:b1: bf:60:38:1c:44:4e:ba:7c:c5:5a:7e:9e:11:42:4f:2c:c5:ff: be:22:0d:b7:70:4f:b7:a4:15:cd:98:7c:78:81:81:f1:e3:a5: 5e:73:72:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDM5plO6h/khH7I2U3jeeOMssp2UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTA1MTA2YmY1MDgwZjRhYTgyOTZkZDRiMjNjOTkyNmZm NjVlOTlkM2M2MThkY2M2ODlmZjJhNjU1NjkwNWMwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiIghTm2eL/2ZyzrkTNvRGVmJo18fDFP61sIj76vUPEZAT 6c2FvXB+wnPJ0Q9eyY4mE4Y6a9zNmWfZ0p1lEMy9Cho0CUOUnjtUMK2+AosYDUpf U7zrHaEso2L+9ZFEKYwe3KF2EwpXWmKDca5q2qZnVRLvtsNpfS/H6rma0o7N9QYw TTdzjJiULpRt+nKN2vRqJPnDuY0E3JpPpq1VPXbMRHaAy98b7haH2Go2vCuwVZnw +jKkihvysozRQAtFbcHe2WQWn2zNcKzWu+N0XF0Nk1Q4ZI6Mt5yyc8r3W7DUTNOh 3CeegV1GMZYFGIogdbH26nSXnONpI4OYg2W0nMljAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqPGLFEl7+TeDm8HrrTglfEW3iXQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyM2Y1N2JmLTM5NDctNDhjNC05MWYxLWU0MzY0YjdkOTRhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPq6AwDQYJKoZIhvcNAQELBQADggEBAIUgIIakvbSBy2DTqI3lzxODvOif BxEuWfYKDNIMSoIUKmQUD+yxCmnmQ+scgiQ5kZpDnRarcfg4nVT6CWODWNtyWEO5 MO7wTmloN3AHDFPONoboPP1VicAJH6ZTrjAAJhIVagEjcZSx146bbdNtwKlGJzTX 5RJhBQ0T24s1vsAE5X+qz83LV40/bZ3GxqMz8KqeNp0LFXIK4VSrMoWXo7jr9yVV DHiJIAx3s28g/IZqWNB69wklEWF8S5l5vcIC5g33CycH9WzJWkDWs/g4V372JOlE KVc3sb9gOBxETrp8xVp+nhFCTyzF/74iDbdwT7ekFc2YfHiBgfHjpV5zcv0= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org