$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/229bf8e5-12f8-4b1b-82dc-1aeae916fdbe.roa File: 229bf8e5-12f8-4b1b-82dc-1aeae916fdbe.roa (raw, json) Hash identifier: P0ZFK/lkKF2/11/4FDlf3lRnyXucmtliyA/uPw99Ndc= Subject key identifier: 06:4E:78:DE:B2:A2:22:9D:EA:88:8C:0D:5A:44:34:41:11:46:4C:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B2304F64F5436E363FB3E3AE4030E4BFBBBDFDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/229bf8e5-12f8-4b1b-82dc-1aeae916fdbe.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1a:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:23:04:f6:4f:54:36:e3:63:fb:3e:3a:e4:03:0e:4b:fb:bb:df:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=f4198956f7eb90f1332dcc7f8b70c2465175ea4a830f2fca4b3d8c3ca2da8157, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9f:58:b2:66:8a:e7:af:7c:59:1c:43:e5:58: be:82:17:10:4c:3d:9d:ba:1b:8b:90:06:73:e5:94: a6:08:d1:5c:bb:2a:91:60:20:4c:5d:b0:9b:e1:11: 59:6f:c1:d0:79:30:bd:77:da:93:f2:45:e0:84:ac: 97:40:31:ed:a7:c4:c4:45:77:0c:85:97:fd:1a:ce: 72:4c:99:b8:e6:d3:04:6d:2a:72:b8:ae:03:93:1f: fd:02:55:93:84:ca:50:b4:11:76:b9:c7:d7:43:9a: 0e:ef:c4:c3:72:b0:ee:35:23:7e:4b:49:b7:87:7c: 21:d8:dc:4b:4e:e0:87:14:9c:69:df:d8:da:59:8a: 89:c2:bc:e4:48:dd:bf:9c:d3:ee:3c:43:9e:39:99: 4f:fc:56:eb:85:be:4e:ea:45:ee:d9:95:d1:6a:28: 42:96:cc:25:23:af:46:02:c2:42:5f:cf:14:c1:74: df:4d:da:44:c7:a7:fe:e2:a6:70:cd:b1:71:f7:aa: f4:c8:54:da:a8:e9:c2:e5:8b:80:8b:08:0b:8d:fc: bc:b6:7b:ae:7f:7c:5a:05:76:ca:b2:f8:63:a7:67: b8:ca:e1:79:fb:bd:30:4f:43:e4:21:10:1e:59:73: 55:2e:52:e0:dd:99:05:e6:73:aa:62:24:0d:95:d3: 14:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4E:78:DE:B2:A2:22:9D:EA:88:8C:0D:5A:44:34:41:11:46:4C:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/229bf8e5-12f8-4b1b-82dc-1aeae916fdbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1a:4000::/36 Signature Algorithm: sha256WithRSAEncryption 07:5d:53:b7:96:33:4d:6b:9f:e9:6b:58:cb:a5:73:b8:cf:6e: 87:c1:9a:50:8a:f2:b6:25:df:4b:e6:4e:8e:0d:5c:c9:26:8e: 81:36:6d:d8:5e:48:c7:f6:bc:74:5b:55:ad:bc:7a:86:ac:a3: 70:da:c3:4e:f6:fb:18:61:26:f1:13:b3:9a:8f:96:23:45:52: ad:e3:6d:60:fa:60:70:e4:38:b7:7c:3f:f6:7d:65:c4:6b:33: b7:73:cf:28:70:74:46:bb:97:51:88:6a:37:c9:af:f0:1a:5a: 06:14:3f:b5:aa:a1:b2:56:81:97:63:0d:55:32:fa:a5:61:dc: 20:f7:b4:58:dd:d7:62:26:29:25:22:a9:92:a8:18:ca:db:e4: c1:d6:bc:10:e1:a8:05:c2:d1:36:0c:41:cc:22:ae:32:94:e3: 86:d4:26:f8:3b:05:c4:33:f3:c5:08:af:2d:ae:5e:00:d2:84: 47:06:24:1c:84:4d:3d:3f:47:e4:e8:e6:f0:78:b8:71:e3:4c: 4f:d4:55:28:72:a7:ab:9e:da:d0:34:0e:59:48:a7:93:cb:66: d7:4a:fc:b1:78:03:d0:96:58:16:26:42:33:24:75:aa:85:bc: 97:a3:f4:4a:23:c5:b1:a0:04:8c:48:c4:a2:bf:31:06:f6:b8: f7:34:b0:e1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGyME9k9UNuNj+z465AMOS/u739wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDE5ODk1NmY3ZWI5MGYxMzMyZGNjN2Y4YjcwYzI0NjUx NzVlYTRhODMwZjJmY2E0YjNkOGMzY2EyZGE4MTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSn1iyZornr3xZHEPlWL6CFxBMPZ26G4uQBnPllKYI0Vy7 KpFgIExdsJvhEVlvwdB5ML132pPyReCErJdAMe2nxMRFdwyFl/0aznJMmbjm0wRt KnK4rgOTH/0CVZOEylC0EXa5x9dDmg7vxMNysO41I35LSbeHfCHY3EtO4IcUnGnf 2NpZionCvORI3b+c0+48Q545mU/8VuuFvk7qRe7ZldFqKEKWzCUjr0YCwkJfzxTB dN9N2kTHp/7ipnDNsXH3qvTIVNqo6cLli4CLCAuN/Ly2e65/fFoFdsqy+GOnZ7jK 4Xn7vTBPQ+QhEB5Zc1UuUuDdmQXmc6piJA2V0xQZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBk543rKiIp3qiIwNWkQ0QRFGTKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyOWJmOGU1LTEyZjgtNGIxYi04MmRjLTFhZWFlOTE2ZmRiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8aQDANBgkqhkiG9w0BAQsFAAOCAQEAB11Tt5YzTWuf6WtYy6VzuM9u h8GaUIrytiXfS+ZOjg1cySaOgTZt2F5Ix/a8dFtVrbx6hqyjcNrDTvb7GGEm8ROz mo+WI0VSreNtYPpgcOQ4t3w/9n1lxGszt3PPKHB0RruXUYhqN8mv8BpaBhQ/taqh slaBl2MNVTL6pWHcIPe0WN3XYiYpJSKpkqgYytvkwda8EOGoBcLRNgxBzCKuMpTj htQm+DsFxDPzxQivLa5eANKERwYkHIRNPT9H5Ojm8Hi4ceNMT9RVKHKnq57a0DQO WUink8tm10r8sXgD0JZYFiZCMyR1qoW8l6P0SiPFsaAEjEjEor8xBva49zSw4Q== -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:53 2023 by rpki-client on console-fra.rpki-client.org