$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e13bc7d-f445-4505-84d7-e1d893aa7bd8.roa File: 1e13bc7d-f445-4505-84d7-e1d893aa7bd8.roa (raw, json) Hash identifier: WDl9Xddc9HKfzUcITxFLwrzK2ifx0N3YkblY4HEJHyA= Subject key identifier: CB:41:83:B6:E2:A0:B6:5C:A8:64:D0:E5:67:42:1E:DD:0A:6C:5B:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14FB2F39E0FED174CDA991DACF9525595F8A6318 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e13bc7d-f445-4505-84d7-e1d893aa7bd8.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fb:2f:39:e0:fe:d1:74:cd:a9:91:da:cf:95:25:59:5f:8a:63:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=9555f3bba54708ce3451ace4673edfb3b6d36745b0703df3f9a78023ed436acc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2a:f5:f5:eb:32:6c:3b:66:9e:f7:2e:6a:2c: 77:27:10:e0:7f:79:12:84:6d:f3:30:0d:c1:44:ce: 64:28:e6:8a:6e:82:cf:f7:cf:24:7d:34:5f:89:a4: f7:b4:2d:77:70:bf:24:c3:07:35:ca:fc:4a:3b:a6: 15:01:9f:f3:7c:ee:21:1a:df:7b:be:51:9f:ab:08: 8d:12:0b:16:b8:99:08:cb:16:83:0f:11:4d:93:e8: fa:1c:42:ed:d1:50:8b:bd:85:96:a5:c3:07:b9:28: 6c:ca:c1:7f:2c:02:30:2f:cb:bb:ed:00:be:e8:f6: f9:42:72:11:80:ae:ce:f3:22:a9:e1:9c:c9:f0:6d: 1e:26:d5:16:c0:fa:93:ee:54:a5:dd:e1:93:2d:3c: c8:b3:c3:89:81:38:4f:19:c5:07:1a:65:13:65:69: 70:77:c5:c3:25:26:43:02:60:3a:cc:56:e2:87:1f: 9d:82:f9:43:8e:81:78:97:bb:34:5f:b4:ae:42:07: c3:32:a9:4e:e6:40:8c:77:9c:3b:95:26:4c:e5:bd: 98:86:d9:e4:bd:45:c9:cd:08:82:4a:ca:0c:65:3f: de:a8:95:33:0e:a1:15:8e:db:36:a9:ff:15:0c:25: ea:dd:ef:04:a1:a0:c3:b6:86:ce:ec:92:4a:02:3a: e7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:41:83:B6:E2:A0:B6:5C:A8:64:D0:E5:67:42:1E:DD:0A:6C:5B:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e13bc7d-f445-4505-84d7-e1d893aa7bd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:e000::/40 Signature Algorithm: sha256WithRSAEncryption ac:32:bc:b7:ce:34:e4:9c:29:76:28:a4:aa:f9:94:89:f7:fe: 26:f6:bb:57:67:2f:21:89:c8:68:c5:a9:bf:9d:6f:43:8c:79: ed:dc:ca:2f:cc:1f:28:f8:ab:6f:a5:e3:e9:5b:67:bc:52:ff: 3d:5d:21:ba:12:a7:53:1c:81:38:a1:30:b4:bd:01:1e:1d:49: cd:ff:8a:d3:52:46:ad:e1:a0:af:b9:d3:d1:c0:d5:b6:1e:d1: 9b:08:24:66:12:8e:2f:1a:28:42:4f:e6:a9:bb:4d:20:06:c2: d0:11:59:e6:1e:cf:bd:46:42:c1:79:26:0e:99:72:12:3e:08: 7d:03:ba:03:71:f4:86:e1:84:44:cb:49:51:c1:fd:86:27:3c: 49:20:d9:ab:77:8d:2e:be:b6:8f:59:2e:cc:98:16:78:9e:f0: 16:6d:bd:c9:e4:4b:2e:ac:5a:2c:57:f8:5f:2e:8c:c9:be:b0: 94:7a:ef:56:83:a1:b0:3f:8a:3a:58:07:40:c2:f7:09:1d:ea: 7b:0f:9d:10:25:aa:32:fa:05:d7:5f:96:79:4d:fd:b4:ea:3a: 21:22:55:dc:be:24:b6:76:8a:96:39:8f:c3:c7:de:aa:e5:6a: d6:30:21:95:80:e3:bb:41:a1:ab:80:d6:1a:57:d4:98:1e:1e: 2c:32:3a:3c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFPsvOeD+0XTNqZHaz5UlWV+KYxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTU1ZjNiYmE1NDcwOGNlMzQ1MWFjZTQ2NzNlZGZiM2I2 ZDM2NzQ1YjA3MDNkZjNmOWE3ODAyM2VkNDM2YWNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqKvX16zJsO2ae9y5qLHcnEOB/eRKEbfMwDcFEzmQo5opu gs/3zyR9NF+JpPe0LXdwvyTDBzXK/Eo7phUBn/N87iEa33u+UZ+rCI0SCxa4mQjL FoMPEU2T6PocQu3RUIu9hZalwwe5KGzKwX8sAjAvy7vtAL7o9vlCchGArs7zIqnh nMnwbR4m1RbA+pPuVKXd4ZMtPMizw4mBOE8ZxQcaZRNlaXB3xcMlJkMCYDrMVuKH H52C+UOOgXiXuzRftK5CB8MyqU7mQIx3nDuVJkzlvZiG2eS9RcnNCIJKygxlP96o lTMOoRWO2zap/xUMJerd7wShoMO2hs7skkoCOue1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUy0GDtuKgtlyoZNDlZ0Ie3QpsWygwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMTNiYzdkLWY0NDUtNDUwNS04NGQ3LWUxZDg5M2FhN2JkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/w4DANBgkqhkiG9w0BAQsFAAOCAQEArDK8t8405JwpdiikqvmUiff+ Jva7V2cvIYnIaMWpv51vQ4x57dzKL8wfKPirb6Xj6VtnvFL/PV0huhKnUxyBOKEw tL0BHh1Jzf+K01JGreGgr7nT0cDVth7RmwgkZhKOLxooQk/mqbtNIAbC0BFZ5h7P vUZCwXkmDplyEj4IfQO6A3H0huGERMtJUcH9hic8SSDZq3eNLr62j1kuzJgWeJ7w Fm29yeRLLqxaLFf4Xy6Myb6wlHrvVoOhsD+KOlgHQML3CR3qew+dECWqMvoF11+W eU39tOo6ISJV3L4ktnaKljmPw8fequVq1jAhlYDju0Ghq4DWGlfUmB4eLDI6PA== -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:53 2023 by rpki-client on console-fra.rpki-client.org