$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa File: 03ae4e74-5acd-4e00-b992-05190479b91d.roa (raw, json) Hash identifier: TBb8q1rmmylO9BWAy+GATlzWkB5gbaWnYZwJZUS0rQc= Subject key identifier: 96:01:80:50:FB:E0:C4:DF:2A:6F:65:BE:62:06:18:A4:99:17:62:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E1E38A7EB8B89892C24C84573BC08BFF763545C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f12:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1e:38:a7:eb:8b:89:89:2c:24:c8:45:73:bc:08:bf:f7:63:54:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=0ce869389cce26e5a0a86e946c9a89ca4392216925051b14c066cb71648b2acb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:cc:49:00:59:85:dd:6d:2e:4b:08:36:36: 8e:89:2f:a3:66:47:24:6d:ce:38:dd:c2:fd:aa:3a: a1:50:16:88:fc:ab:a2:ad:bd:60:09:62:8e:71:0a: fd:2c:a6:03:e2:db:e9:d7:90:07:6a:56:45:af:af: 98:6b:83:ce:04:90:20:ec:07:60:3d:9b:09:8a:d9: e5:76:86:12:12:9f:d4:99:17:18:1c:17:28:49:02: ad:82:a8:ad:01:26:4f:0d:bc:d8:03:04:d0:cc:d4: 02:f7:da:c8:13:29:d1:77:9c:e3:23:eb:f5:8e:c4: 75:6f:65:13:d6:7b:b4:49:27:e4:21:43:35:79:57: 97:3e:6b:ce:0f:28:85:be:f4:01:34:e5:16:d9:fb: a0:ab:5f:1d:19:31:d5:68:85:c8:f9:8a:2a:dc:ed: b2:e8:9b:f4:ae:92:76:34:3c:f2:7c:d5:3d:32:e6: 77:29:91:d6:9b:1f:e6:1b:0c:47:c8:d1:ca:eb:f9: 9d:80:c1:7b:bb:37:0d:0f:9c:32:6e:2d:8a:b2:49: 35:00:11:1c:75:7c:ac:3c:a2:17:2b:1f:2b:ad:73: 5e:d6:ee:93:8a:02:22:cb:91:52:ea:f0:45:a5:d1: 58:8a:b7:bd:d1:79:d3:7a:ae:48:a1:2a:56:cf:62: 7f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:01:80:50:FB:E0:C4:DF:2A:6F:65:BE:62:06:18:A4:99:17:62:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03ae4e74-5acd-4e00-b992-05190479b91d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:8000::/36 Signature Algorithm: sha256WithRSAEncryption 5a:df:7f:6c:2e:82:52:76:fe:b5:44:57:ca:58:f8:2b:2e:24: 11:cf:1b:c1:35:db:e9:76:54:10:6f:6a:98:22:de:38:17:8d: 12:37:8a:d3:7e:47:3f:1b:47:f2:ad:bd:ea:f4:e4:03:30:e2: 03:20:aa:b2:3d:e9:2f:68:6c:d0:7c:02:b8:f4:5d:a4:26:99: fa:7d:54:52:08:d4:ab:ce:1e:d3:c3:be:36:b4:63:af:7c:fd: 86:93:fb:7e:86:e9:36:ae:aa:94:ba:96:82:d7:75:47:df:e5: bf:43:89:da:5b:10:b6:7d:10:02:e9:d4:c2:d4:d6:a2:bc:69: 4b:30:c4:30:26:62:6b:99:6a:f1:b7:9a:6f:0a:92:9d:31:e8: 27:5f:fc:b2:33:66:d0:75:d7:7f:5d:78:b2:13:95:8b:02:d1: 84:53:f6:07:c6:9b:40:ea:48:14:06:cf:13:24:53:db:90:e2: ff:40:41:10:bf:9e:39:4e:4c:b1:52:bd:67:f5:c9:1a:aa:46: 0c:9f:8a:9d:6d:15:4d:b1:dc:9e:08:36:74:a9:da:d8:77:d1: 86:15:1b:40:ab:88:10:dd:dd:a2:61:15:d5:84:02:b3:0e:b3: a0:f4:ce:fc:c5:4b:70:be:82:f0:10:16:a2:9f:f9:a2:98:25: 54:0f:30:d5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTh44p+uLiYksJMhFc7wIv/djVFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2U4NjkzODljY2UyNmU1YTBhODZlOTQ2YzlhODljYTQz OTIyMTY5MjUwNTFiMTRjMDY2Y2I3MTY0OGIyYWNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2esxJAFmF3W0uSwg2No6JL6NmRyRtzjjdwv2qOqFQFoj8 q6KtvWAJYo5xCv0spgPi2+nXkAdqVkWvr5hrg84EkCDsB2A9mwmK2eV2hhISn9SZ FxgcFyhJAq2CqK0BJk8NvNgDBNDM1AL32sgTKdF3nOMj6/WOxHVvZRPWe7RJJ+Qh QzV5V5c+a84PKIW+9AE05RbZ+6CrXx0ZMdVohcj5iirc7bLom/SuknY0PPJ81T0y 5ncpkdabH+YbDEfI0crr+Z2AwXu7Nw0PnDJuLYqySTUAERx1fKw8ohcrHyutc17W 7pOKAiLLkVLq8EWl0ViKt73RedN6rkihKlbPYn9NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlgGAUPvgxN8qb2W+YgYYpJkXYl0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzYWU0ZTc0LTVhY2QtNGUwMC1iOTkyLTA1MTkwNDc5YjkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8SgDANBgkqhkiG9w0BAQsFAAOCAQEAWt9/bC6CUnb+tURXylj4Ky4k Ec8bwTXb6XZUEG9qmCLeOBeNEjeK035HPxtH8q296vTkAzDiAyCqsj3pL2hs0HwC uPRdpCaZ+n1UUgjUq84e08O+NrRjr3z9hpP7fobpNq6qlLqWgtd1R9/lv0OJ2lsQ tn0QAunUwtTWorxpSzDEMCZia5lq8beabwqSnTHoJ1/8sjNm0HXXf114shOViwLR hFP2B8abQOpIFAbPEyRT25Di/0BBEL+eOU5MsVK9Z/XJGqpGDJ+KnW0VTbHcngg2 dKna2HfRhhUbQKuIEN3domEV1YQCsw6zoPTO/MVLcL6C8BAWop/5opglVA8w1Q== -----END CERTIFICATE-----Generated at Fri Sep 22 18:20:52 2023 by rpki-client on console-fra.rpki-client.org