$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa File: 02983dab-f4b3-415e-82e5-fbff6d93b88f.roa (raw, json) Hash identifier: 9hTnkTFjaytaJpcnnM9G6w/G9YFBQ3qv0vM5HapHk9M= Subject key identifier: B0:BC:D9:7C:C1:23:1F:89:9A:BC:A4:63:A7:F3:C0:B7:CA:50:F6:27 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 372350F003BE0E2F032A45BD01DD278031C9F840 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa Signing time: Tue 12 Sep 2023 00:00:00 +0000 ROA not before: Tue 12 Sep 2023 00:00:00 +0000 ROA not after: Tue 17 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:23:50:f0:03:be:0e:2f:03:2a:45:bd:01:dd:27:80:31:c9:f8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 12 00:00:00 2023 GMT Not After : Oct 17 23:59:59 2023 GMT Subject: serialNumber=a605b8f1490ba8c0c162cfd982be82878ed9f84c863714b151cd4d83db8ed7a1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:63:08:e1:ab:07:96:55:9d:72:d9:8d:17: 51:99:00:5c:8a:a0:05:bd:25:0d:9e:41:ab:e6:f7: 21:e7:93:44:41:43:a0:a9:db:21:ef:ec:24:9d:3f: 6d:9b:a1:24:73:c0:e0:3d:a5:87:f4:74:ef:f4:60: f0:47:34:82:9e:6f:bc:3a:0a:78:72:ac:3a:00:a1: 11:3a:99:1e:88:e8:32:f0:f6:bb:0f:f3:8b:29:10: d3:25:c1:e4:5d:ba:57:bb:df:3f:e0:67:85:bb:4f: 48:62:6b:07:76:cc:e9:39:9a:3a:af:2b:db:05:79: cc:e7:a7:07:1a:20:6d:80:17:73:ec:64:84:35:c2: d4:4a:14:ba:4f:de:be:9f:6a:6f:d3:b2:21:c5:8f: 51:a8:5c:48:73:4a:30:d6:dd:29:9b:a6:3f:ae:f5: c8:04:c2:2c:4d:c8:51:0a:8e:9b:9c:fe:d5:4e:dc: 48:19:0e:7a:29:c2:de:ce:66:30:6e:4d:b9:3f:95: 73:4f:c8:43:15:d1:38:6b:55:8f:ba:55:fe:1d:68: 49:73:45:13:10:0d:67:c4:82:a6:a4:e6:09:12:60: c6:89:64:ef:13:c4:e2:3b:7a:4f:e2:5f:3d:3f:49: 71:97:ad:ea:71:e5:d7:5c:91:30:c4:79:8e:05:19: 41:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BC:D9:7C:C1:23:1F:89:9A:BC:A4:63:A7:F3:C0:B7:CA:50:F6:27 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.96.0/20 Signature Algorithm: sha256WithRSAEncryption a0:72:9b:87:2a:8c:68:c4:48:a2:34:53:0e:38:b7:a0:47:d8: df:1e:e0:66:70:8f:c0:3e:1f:b5:7d:21:7a:bd:76:21:4c:37: c2:8f:cf:41:7c:7f:0f:74:98:24:0f:e4:b7:dd:6e:84:28:26: 34:8e:d0:a1:76:e7:6c:9a:48:09:f6:55:14:9a:77:7d:01:68: 20:12:74:92:01:d1:a8:c9:d6:91:46:fd:a9:0d:25:97:1f:01: ed:51:56:f4:15:ef:d3:4f:1e:5c:75:b1:46:cf:f2:17:a8:e5: 28:cb:c0:f0:2c:89:0e:1a:99:60:2f:55:77:6d:61:e6:02:ca: 6e:29:b3:85:cc:4c:a0:3b:d1:89:57:9a:d6:b1:18:95:d0:e5: 92:b2:b6:67:c4:a7:74:a2:4b:45:e5:c2:87:ed:02:69:13:10: 12:bf:dd:3a:ac:bb:b3:f8:f7:4d:18:84:a4:3c:a2:fd:e8:81: 78:ad:f5:1d:c4:95:db:22:fd:86:da:c3:01:01:6b:33:f3:ef: 7f:29:b5:32:e6:61:4d:aa:b1:b5:00:ae:de:a8:6f:23:17:e5: 48:6f:61:22:5b:29:02:de:ad:1d:05:07:4e:9f:fc:ab:2a:f0: b7:19:4f:70:61:04:ac:d4:77:76:2b:91:95:dd:b0:a4:34:eb: a4:25:99:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNyNQ8AO+Di8DKkW9Ad0ngDHJ+EAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwOTEyMDAwMDAwWhcNMjMxMDE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjA1YjhmMTQ5MGJhOGMwYzE2MmNmZDk4MmJlODI4Nzhl ZDlmODRjODYzNzE0YjE1MWNkNGQ4M2RiOGVkN2ExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQHGMI4asHllWdctmNF1GZAFyKoAW9JQ2eQavm9yHnk0RB Q6Cp2yHv7CSdP22boSRzwOA9pYf0dO/0YPBHNIKeb7w6CnhyrDoAoRE6mR6I6DLw 9rsP84spENMlweRdule73z/gZ4W7T0hiawd2zOk5mjqvK9sFecznpwcaIG2AF3Ps ZIQ1wtRKFLpP3r6fam/TsiHFj1GoXEhzSjDW3Smbpj+u9cgEwixNyFEKjpuc/tVO 3EgZDnopwt7OZjBuTbk/lXNPyEMV0ThrVY+6Vf4daElzRRMQDWfEgqak5gkSYMaJ ZO8TxOI7ek/iXz0/SXGXrepx5ddckTDEeY4FGUHVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsLzZfMEjH4mavKRjp/PAt8pQ9icwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyOTgzZGFiLWY0YjMtNDE1ZS04MmU1LWZiZmY2ZDkzYjg4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ0XmAwDQYJKoZIhvcNAQELBQADggEBAKBym4cqjGjESKI0Uw44t6BH2N8e 4GZwj8A+H7V9IXq9diFMN8KPz0F8fw90mCQP5LfdboQoJjSO0KF252yaSAn2VRSa d30BaCASdJIB0ajJ1pFG/akNJZcfAe1RVvQV79NPHlx1sUbP8heo5SjLwPAsiQ4a mWAvVXdtYeYCym4ps4XMTKA70YlXmtaxGJXQ5ZKytmfEp3SiS0XlwoftAmkTEBK/ 3Tqsu7P4900YhKQ8ov3ogXit9R3Eldsi/YbawwEBazPz738ptTLmYU2qsbUArt6o byMX5UhvYSJbKQLerR0FB06f/Ksq8LcZT3BhBKzUd3YrkZXdsKQ066QlmUw= -----END CERTIFICATE-----Generated at Tue Sep 12 15:29:17 2023 by rpki-client on console-fra.rpki-client.org