$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa File: d9820863-0ada-450a-8c92-a29a28133a4a.roa (raw, json) Hash identifier: UNxEpmETmSjxndMXKN3BWwh9NH8oyVA9+JmQgGIqt6M= Subject key identifier: 1D:5E:28:E0:02:C8:C2:F5:FE:AD:83:3C:67:F0:94:3F:99:04:F9:6E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: AD004CE3D82EE21D3CDEBB0C460A1C58923F19 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ad:00:4c:e3:d8:2e:e2:1d:3c:de:bb:0c:46:0a:1c:58:92:3f:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=d14ef0b7c78dd6b3d065629364fa08767e2cf50269554a5765ddb509ae5e21ab, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7a:b5:c0:00:d9:8f:dc:59:55:08:ea:cd:15: 42:0e:25:17:56:c7:62:fb:23:a7:49:13:92:5a:b6: f0:e8:fe:09:f7:fe:5a:7e:20:3a:35:6f:e2:0a:9c: 5a:5c:88:fd:02:7a:3e:8e:a7:9d:d4:9d:a8:b6:d6: d8:e5:d5:4a:13:13:77:86:a2:e9:b7:eb:a6:0c:ce: b0:7c:bc:ea:52:b1:74:e5:9e:85:c6:a1:c1:d7:a9: 59:ba:95:46:b2:d5:b0:74:e0:7c:27:1d:09:7c:7a: 07:a6:4d:b3:35:93:ca:2c:b1:ce:2c:dd:72:42:9c: a2:0b:30:97:a9:db:58:c2:9c:dd:97:b3:ed:47:dc: 55:6b:5d:f6:17:db:21:9d:b4:06:8f:5b:8f:17:50: 55:99:77:ba:ac:51:65:fe:e3:8f:9c:01:38:fd:dc: ef:91:7f:ea:12:88:42:8f:31:3a:f8:07:64:75:78: f5:5a:15:d9:9d:27:2c:1f:0c:7c:20:58:ed:fb:78: 34:1d:b2:26:29:bd:7b:f1:09:5e:b3:d5:15:6c:28: 47:6c:c5:0d:88:3a:8c:61:aa:97:2d:6b:61:1b:e4: 0f:17:73:73:72:65:34:8a:f4:3c:00:f8:bf:ea:bb: ff:8f:8e:5a:bb:79:09:5c:ba:e6:cb:4d:2c:a6:b6: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5E:28:E0:02:C8:C2:F5:FE:AD:83:3C:67:F0:94:3F:99:04:F9:6E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.208.0/20 Signature Algorithm: sha256WithRSAEncryption ae:ba:ee:fd:e2:ec:b6:75:52:a2:f9:9b:ae:54:00:7f:98:57: 66:17:ba:4c:81:2c:9c:6d:02:94:7b:5a:c5:37:1d:f8:9c:a8: 29:ae:24:73:78:ae:6c:83:4f:cf:ce:1b:93:8b:ab:bd:74:b2: a4:c8:43:50:27:f5:38:91:de:e8:91:6a:ef:2a:7b:0a:73:06: 05:6a:db:a0:8b:0f:50:de:48:d0:f2:6f:d6:f7:7d:48:2f:cd: 77:d5:3e:f5:d6:3e:66:50:e3:4a:c1:ac:17:9f:43:dc:f3:b6: 92:91:ef:d9:80:3d:fa:53:68:85:01:6a:56:58:95:6c:df:c4: c4:16:63:b4:ef:b0:fb:fe:fb:db:36:83:dc:81:3c:ce:9a:4d: 3f:e1:d9:00:61:38:d6:ab:0f:57:e5:bf:8f:4e:8b:15:27:f5: cc:9f:34:e4:63:b8:05:d3:40:fb:c4:6a:68:ab:ef:b9:38:11: 84:c9:e1:b2:ee:8c:1a:c7:f8:10:a5:b9:6d:0b:b9:ce:0c:5d: 8a:4c:69:e9:ad:25:77:1f:8f:3f:3b:1b:9e:7f:cc:af:4c:6e: aa:1e:32:ee:48:dd:a7:05:39:b6:14:51:ae:6a:08:54:46:2e: cf:45:24:55:32:36:79:e9:a3:c0:d8:e9:65:96:dd:33:da:17: d6:6f:a2:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAK0ATOPYLuIdPN67DEYKHFiSPxkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTRlZjBiN2M3OGRkNmIzZDA2NTYyOTM2NGZhMDg3Njdl MmNmNTAyNjk1NTRhNTc2NWRkYjUwOWFlNWUyMWFiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmerXAANmP3FlVCOrNFUIOJRdWx2L7I6dJE5JatvDo/gn3 /lp+IDo1b+IKnFpciP0Cej6Op53Unai21tjl1UoTE3eGoum366YMzrB8vOpSsXTl noXGocHXqVm6lUay1bB04HwnHQl8egemTbM1k8ossc4s3XJCnKILMJep21jCnN2X s+1H3FVrXfYX2yGdtAaPW48XUFWZd7qsUWX+44+cATj93O+Rf+oSiEKPMTr4B2R1 ePVaFdmdJywfDHwgWO37eDQdsiYpvXvxCV6z1RVsKEdsxQ2IOoxhqpcta2Eb5A8X c3NyZTSK9DwA+L/qu/+Pjlq7eQlcuubLTSymtuqzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHV4o4ALIwvX+rYM8Z/CUP5kE+W4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q5ODIwODYzLTBhZGEtNDUwYS04YzkyLWEyOWEyODEzM2E0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATN+9AwDQYJKoZIhvcNAQELBQADggEBAK667v3i7LZ1UqL5m65UAH+YV2YX ukyBLJxtApR7WsU3HficqCmuJHN4rmyDT8/OG5OLq710sqTIQ1An9TiR3uiRau8q ewpzBgVq26CLD1DeSNDyb9b3fUgvzXfVPvXWPmZQ40rBrBefQ9zztpKR79mAPfpT aIUBalZYlWzfxMQWY7TvsPv++9s2g9yBPM6aTT/h2QBhONarD1flv49OixUn9cyf NORjuAXTQPvEamir77k4EYTJ4bLujBrH+BCluW0Luc4MXYpMaemtJXcfjz87G55/ zK9MbqoeMu5I3acFObYUUa5qCFRGLs9FJFUyNnnpo8DY6WWW3TPaF9ZvorA= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:30 2023 by rpki-client on console-fra.rpki-client.org