$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa File: 0001cb33-47b8-4eb2-8e68-746effca9784.roa (raw, json) Hash identifier: V057KemHydx57AKBOAVkUIlT+NoHwhW7HdnP2oVctRU= Subject key identifier: 5C:CB:BC:E9:57:13:4B:A9:21:E9:08:3D:24:04:3E:E1:30:65:3D:C7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 66B16E4B18524C0798B86EBD0019D0576CFA4C3C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa Signing time: Sat 16 Sep 2023 00:00:00 +0000 ROA not before: Sat 16 Sep 2023 00:00:00 +0000 ROA not after: Sat 21 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 167.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 17 Sep 2023 12:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b1:6e:4b:18:52:4c:07:98:b8:6e:bd:00:19:d0:57:6c:fa:4c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 16 00:00:00 2023 GMT Not After : Oct 21 23:59:59 2023 GMT Subject: serialNumber=7546082f6da133fbb1c770b6fe7a89e16bda40a2998aea920f2c1cbdabd6ab07, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b6:65:58:12:e8:d0:f3:4f:67:c6:1d:73:63: fb:2e:68:f5:7b:bc:2b:48:f9:8a:e1:69:46:b2:b0: 66:82:58:d3:3e:e5:f5:8d:d9:61:fc:38:b6:f7:2d: 2c:6e:98:a5:38:a0:77:07:20:0c:87:9b:ad:ce:f5: ed:e6:0a:a3:fa:bc:ee:eb:ba:b8:ac:af:db:1e:34: 83:09:42:ee:2b:3f:12:3a:96:7b:73:68:7c:4a:b0: f9:e6:43:ef:cf:20:c4:bf:dc:fd:43:c3:dd:62:37: 15:cc:c7:2f:71:7d:4b:7f:7c:27:01:5a:0a:15:56: 4f:8e:2f:22:1b:d7:78:ac:fd:47:cb:ce:63:c6:bb: 03:66:20:84:62:d1:c3:52:09:6a:2f:90:2f:d0:56: 8c:db:a9:c8:b5:c8:1f:e3:ad:b6:48:15:86:8b:9f: f1:c2:d2:3e:f1:47:7a:ce:c0:d5:e2:59:d0:34:12: 7f:84:3f:17:23:e4:00:92:a4:0c:cd:3e:c7:bf:1c: 9c:6b:bb:19:76:09:c1:45:44:7d:d5:7d:f4:5c:d1: 4f:d5:91:3d:78:9a:34:a2:3f:be:ef:42:52:db:af: cf:9a:a9:77:cb:89:39:16:05:e5:af:ef:c9:66:bc: 88:ee:cd:b4:a5:43:f5:f6:a7:18:27:cf:b5:22:5e: a9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CB:BC:E9:57:13:4B:A9:21:E9:08:3D:24:04:3E:E1:30:65:3D:C7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:a2:62:ce:fb:59:37:5b:16:87:b0:d4:0f:90:bc:28:a2:97: 56:f0:df:a2:fc:6a:3b:05:64:ec:c2:6a:dc:cd:ac:30:92:d4: 28:f9:56:28:30:a8:5a:7d:8d:bf:d8:c7:cf:1e:12:56:ea:e3: 0b:74:5b:aa:44:78:79:f9:46:6d:ca:81:9b:a3:ad:93:ba:57: c0:59:a9:eb:00:54:c4:4a:3c:04:e5:f2:e4:03:53:e5:ea:4d: 4f:ec:1d:4d:87:56:4d:2e:c9:c4:ef:72:08:4c:8c:f9:88:21: 55:93:8c:85:16:f9:3d:da:30:82:ed:45:8d:8e:5b:1c:1e:68: 75:97:ec:0a:4c:a7:ec:0e:c5:c2:6f:d3:eb:2d:b4:24:e8:d7: 91:20:b9:63:e4:06:2d:8e:f3:86:5f:0c:69:08:8c:22:bc:a2: 87:88:dc:b9:00:82:e1:40:39:a6:c0:47:99:d7:2d:10:69:91: d6:93:c9:49:76:ae:00:e2:c5:83:49:4b:a3:59:5f:ef:d9:1c: a1:60:a9:e3:1d:48:c7:9c:f8:32:a7:c5:3b:f1:6e:91:f5:78: 00:7e:71:72:d2:16:64:d0:1f:42:15:00:8c:ea:51:a1:06:22: 2c:db:5f:ed:03:8f:7e:79:cd:08:03:2c:2f:70:9d:a1:0f:45: 57:05:a0:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZrFuSxhSTAeYuG69ABnQV2z6TDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwOTE2MDAwMDAwWhcNMjMxMDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTQ2MDgyZjZkYTEzM2ZiYjFjNzcwYjZmZTdhODllMTZi ZGE0MGEyOTk4YWVhOTIwZjJjMWNiZGFiZDZhYjA3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD3tmVYEujQ809nxh1zY/suaPV7vCtI+YrhaUaysGaCWNM+ 5fWN2WH8OLb3LSxumKU4oHcHIAyHm63O9e3mCqP6vO7rurisr9seNIMJQu4rPxI6 lntzaHxKsPnmQ+/PIMS/3P1Dw91iNxXMxy9xfUt/fCcBWgoVVk+OLyIb13is/UfL zmPGuwNmIIRi0cNSCWovkC/QVozbqci1yB/jrbZIFYaLn/HC0j7xR3rOwNXiWdA0 En+EPxcj5ACSpAzNPse/HJxruxl2CcFFRH3VffRc0U/VkT14mjSiP77vQlLbr8+a qXfLiTkWBeWv78lmvIjuzbSlQ/X2pxgnz7UiXqk3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXMu86VcTS6kh6Qg9JAQ+4TBlPccwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwMDFjYjMzLTQ3YjgtNGViMi04ZTY4LTc0NmVmZmNhOTc4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnpjANBgkqhkiG9w0BAQsFAAOCAQEAPqJizvtZN1sWh7DUD5C8KKKXVvDf ovxqOwVk7MJq3M2sMJLUKPlWKDCoWn2Nv9jHzx4SVurjC3RbqkR4eflGbcqBm6Ot k7pXwFmp6wBUxEo8BOXy5ANT5epNT+wdTYdWTS7JxO9yCEyM+YghVZOMhRb5Pdow gu1FjY5bHB5odZfsCkyn7A7Fwm/T6y20JOjXkSC5Y+QGLY7zhl8MaQiMIryih4jc uQCC4UA5psBHmdctEGmR1pPJSXauAOLFg0lLo1lf79kcoWCp4x1Ix5z4MqfFO/Fu kfV4AH5xctIWZNAfQhUAjOpRoQYiLNtf7QOPfnnNCAMsL3CdoQ9FVwWgZQ== -----END CERTIFICATE-----Generated at Sat Sep 16 00:16:47 2023 by rpki-client on console-fra.rpki-client.org