$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa File: e3c245b9-0844-4ece-b6a0-0aed8003b186.roa (raw, json) Hash identifier: X3sznukbEOkiydHbdhCUC03tJUQrAFURkTOFhjLKZTY= Subject key identifier: 39:F3:C3:62:0B:6D:4F:87:E3:E9:2C:AA:3A:89:22:46:FF:28:D9:2D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E1850E777F005099BA4E6F274EBE3F5A182B691 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa Signing time: Tue 12 Sep 2023 00:00:00 +0000 ROA not before: Tue 12 Sep 2023 00:00:00 +0000 ROA not after: Tue 17 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 Sep 2023 12:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:18:50:e7:77:f0:05:09:9b:a4:e6:f2:74:eb:e3:f5:a1:82:b6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 12 00:00:00 2023 GMT Not After : Oct 17 23:59:59 2023 GMT Subject: serialNumber=e15390a6f8eff1f5b3f0937be3b4296109d560da50218fa0997c7c3c55af320f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:35:14:9b:80:c8:0f:db:33:88:37:d2:b8:89: 9c:dd:25:f8:31:4f:f1:9c:7e:87:81:64:d2:d7:c7: 30:b8:1f:71:62:20:2a:af:02:6c:92:c3:a5:5a:a6: a2:84:23:83:6f:79:14:9c:56:52:13:28:e7:99:87: 58:bc:81:51:88:bd:e7:a8:81:bd:35:13:26:8a:d0: 6d:0f:09:cf:34:52:e4:ce:c2:71:55:a7:31:d8:37: 37:c8:1c:45:d1:6f:d8:ed:2b:2e:a7:b2:98:b2:1c: 44:c5:6b:66:e0:ce:4a:84:c0:0d:89:d8:b2:fc:54: 86:bb:2d:b6:19:c3:1b:99:55:9e:cb:bb:d1:19:57: 1b:1f:28:78:ca:2a:fd:56:68:51:a5:e9:40:0d:51: 7a:7c:d3:f3:35:c7:92:00:b5:48:c6:e7:1a:b3:07: 3a:04:1c:ae:30:4b:f2:d8:91:b3:bc:66:bf:2f:ee: 3f:63:cd:69:78:ee:d2:f2:58:0c:d7:ec:69:be:a5: b1:dc:85:98:9b:5c:8b:b4:11:7e:1b:4d:02:e3:62: 52:db:5c:36:bc:d6:03:97:1c:50:9e:ec:0d:6b:aa: 77:4c:29:6d:c9:9b:bf:e9:13:81:de:cd:d5:0b:e6: ed:25:1d:43:5b:a9:62:f8:79:5d:fd:b7:44:36:7a: 2b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F3:C3:62:0B:6D:4F:87:E3:E9:2C:AA:3A:89:22:46:FF:28:D9:2D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e3c245b9-0844-4ece-b6a0-0aed8003b186.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.224.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:85:a0:9d:be:df:63:18:40:19:e2:ec:cb:f0:6e:ca:4f:7c: 97:9c:20:e2:b6:3f:1a:a5:c6:cd:b9:06:21:88:da:b4:d4:8d: 22:13:ce:ea:17:49:39:0f:24:e8:48:57:d8:55:e1:d0:df:bc: a5:21:7a:0b:7b:a1:c1:40:99:6c:61:9f:15:87:85:8f:c8:56: 90:a7:2c:87:89:d7:28:83:3d:18:28:18:16:b5:14:76:99:69: b0:77:6e:24:aa:c2:9d:e1:59:3e:5b:ff:cf:33:b7:f5:20:0d: ad:1a:74:45:11:cc:d2:7b:ce:76:96:26:49:8b:6d:c8:ac:b5: ed:cc:6d:b5:9b:a4:ac:a9:d9:98:f6:39:43:b5:69:58:55:28: 03:5e:98:95:0a:a2:46:c3:ab:72:1a:40:2f:b4:4a:5b:30:ab: 35:ef:ba:52:9e:e5:6e:43:e9:fa:7e:9e:dd:84:bd:46:ea:ec: 50:07:f2:70:2a:88:b9:f1:ea:bf:1f:dc:f2:b5:2b:4d:c4:d9: 33:6c:d2:6c:02:79:77:89:e4:de:4d:05:30:d6:83:d4:4a:2d: b2:d8:ae:59:10:8c:5d:d0:e1:8a:d0:20:5f:ec:4d:63:7e:88: 9e:3b:c3:3b:80:7d:98:71:4c:af:c0:d3:f2:a3:16:a7:f5:81: 01:b3:af:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULhhQ53fwBQmbpObydOvj9aGCtpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTEyMDAwMDAwWhcNMjMxMDE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTUzOTBhNmY4ZWZmMWY1YjNmMDkzN2JlM2I0Mjk2MTA5 ZDU2MGRhNTAyMThmYTA5OTdjN2MzYzU1YWYzMjBmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdNRSbgMgP2zOIN9K4iZzdJfgxT/GcfoeBZNLXxzC4H3Fi ICqvAmySw6VapqKEI4NveRScVlITKOeZh1i8gVGIveeogb01EyaK0G0PCc80UuTO wnFVpzHYNzfIHEXRb9jtKy6nspiyHETFa2bgzkqEwA2J2LL8VIa7LbYZwxuZVZ7L u9EZVxsfKHjKKv1WaFGl6UANUXp80/M1x5IAtUjG5xqzBzoEHK4wS/LYkbO8Zr8v 7j9jzWl47tLyWAzX7Gm+pbHchZibXIu0EX4bTQLjYlLbXDa81gOXHFCe7A1rqndM KW3Jm7/pE4HezdUL5u0lHUNbqWL4eV39t0Q2eiuFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOfPDYgttT4fj6SyqOokiRv8o2S0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2UzYzI0NWI5LTA4NDQtNGVjZS1iNmEwLTBhZWQ4MDAzYjE4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN++AwDQYJKoZIhvcNAQELBQADggEBAE2FoJ2+32MYQBni7MvwbspPfJec IOK2Pxqlxs25BiGI2rTUjSITzuoXSTkPJOhIV9hV4dDfvKUhegt7ocFAmWxhnxWH hY/IVpCnLIeJ1yiDPRgoGBa1FHaZabB3biSqwp3hWT5b/88zt/UgDa0adEURzNJ7 znaWJkmLbciste3MbbWbpKyp2Zj2OUO1aVhVKANemJUKokbDq3IaQC+0SlswqzXv ulKe5W5D6fp+nt2EvUbq7FAH8nAqiLnx6r8f3PK1K03E2TNs0mwCeXeJ5N5NBTDW g9RKLbLYrlkQjF3Q4YrQIF/sTWN+iJ47wzuAfZhxTK/A0/KjFqf1gQGzr1U= -----END CERTIFICATE-----Generated at Tue Sep 12 00:34:23 2023 by rpki-client on console-ams.rpki-client.org