$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23f103f0-4be2-4443-9d34-0f0a05ff824e.roa File: 23f103f0-4be2-4443-9d34-0f0a05ff824e.roa (raw, json) Hash identifier: uIYeDES0dPjN0XZ//DqL6daQSYnoekHTyHVaOZXsnbU= Subject key identifier: A9:C4:07:16:81:64:7F:D9:64:02:9A:42:0C:A8:CE:FE:F8:F9:1C:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61B4F2112E5BB31BBA20B2A056AE124F6C995ED6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23f103f0-4be2-4443-9d34-0f0a05ff824e.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b4:f2:11:2e:5b:b3:1b:ba:20:b2:a0:56:ae:12:4f:6c:99:5e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=e7f3b81cc5feeb68ccb478712bc412a4f4c4878bd2de70432cd9a513b45b9783, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:2d:b6:83:ab:71:8e:e2:86:df:b2:ed:77: d5:04:bb:75:66:be:bc:db:98:b1:09:f8:6b:ad:1a: d6:48:72:cd:a9:f2:f7:00:e9:11:dc:fb:12:80:bc: ba:f4:85:9f:fa:e6:1c:d0:10:f7:48:88:6f:03:16: 38:e8:31:e5:3b:4a:91:4a:71:65:c6:08:35:f7:b3: 1d:83:88:8e:73:2d:28:18:2f:90:e9:79:c6:93:77: 60:f2:9e:0b:4a:c4:b3:07:9a:3f:bc:75:0d:16:85: 19:e1:ef:52:ca:fe:36:d2:27:99:a6:73:80:5d:4f: 32:e5:38:54:8f:1f:e2:c5:96:e7:96:9d:94:ef:9a: 36:c5:6c:83:33:41:ec:6d:ba:09:75:87:bf:4d:48: 1a:eb:88:05:a7:7c:ae:3b:a6:ec:45:d6:83:1c:74: 6b:b8:c0:3f:3b:37:bb:29:da:e8:06:4a:8b:46:88: 60:1e:c1:86:ce:d4:c0:81:10:2a:0b:78:e3:26:db: f1:26:d9:6b:da:1f:dc:ee:0c:50:21:1b:fd:73:30: 6a:6a:8b:76:8e:be:fe:58:06:40:7d:b5:b2:28:a5: b7:7f:d7:42:5c:20:a3:91:60:76:5f:36:93:59:80: d7:cf:ec:91:e3:10:da:9c:25:bb:78:be:a6:04:f6: 88:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C4:07:16:81:64:7F:D9:64:02:9A:42:0C:A8:CE:FE:F8:F9:1C:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23f103f0-4be2-4443-9d34-0f0a05ff824e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e::/36 Signature Algorithm: sha256WithRSAEncryption 17:63:9b:16:73:72:5b:1f:98:17:c9:19:05:41:8f:4c:1f:85: 56:82:f3:29:9a:37:0f:66:c8:73:77:15:45:1d:20:15:da:c9: 6d:5a:f2:49:d2:45:9e:53:15:6a:a0:ec:fe:ec:a4:8a:99:2c: 22:e5:4e:90:9a:ac:20:9f:3a:3c:e5:26:52:23:bb:97:84:c1: 1a:03:80:59:0a:a5:3e:ce:c7:31:8c:e2:76:e2:c6:69:4d:42: 36:37:e1:67:04:d5:d9:7d:7c:14:6d:4c:5b:cb:d5:95:4d:21: f1:8e:8d:24:a2:ee:39:4b:95:93:9c:cc:7e:a0:83:52:52:82: 49:c6:2d:87:ff:4a:81:53:d7:98:ee:f0:b5:7e:1e:f5:71:33: 97:be:fa:d5:1e:1d:a5:0b:fd:12:12:ac:a6:27:28:1d:7b:a1: 89:65:7b:43:8a:8e:af:41:2a:32:25:e4:09:e4:b4:dd:ac:d8: 90:59:1f:04:bb:77:20:13:ad:02:90:1b:76:82:dc:78:4d:e0: 1c:58:7a:d3:a4:57:4b:2f:41:96:95:6a:0e:78:13:ce:04:9d: 30:24:69:6b:49:1a:6b:31:b8:86:fe:41:5e:78:ba:a9:df:b4: 21:65:07:7d:30:2a:ce:93:af:4a:fb:f4:50:82:f6:40:4d:2e: 52:ab:d3:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYbTyES5bsxu6ILKgVq4ST2yZXtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2YzYjgxY2M1ZmVlYjY4Y2NiNDc4NzEyYmM0MTJhNGY0 YzQ4NzhiZDJkZTcwNDMyY2Q5YTUxM2I0NWI5NzgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa3y22g6txjuKG37Ltd9UEu3VmvrzbmLEJ+GutGtZIcs2p 8vcA6RHc+xKAvLr0hZ/65hzQEPdIiG8DFjjoMeU7SpFKcWXGCDX3sx2DiI5zLSgY L5DpecaTd2DyngtKxLMHmj+8dQ0WhRnh71LK/jbSJ5mmc4BdTzLlOFSPH+LFlueW nZTvmjbFbIMzQextugl1h79NSBrriAWnfK47puxF1oMcdGu4wD87N7sp2ugGSotG iGAewYbO1MCBECoLeOMm2/Em2WvaH9zuDFAhG/1zMGpqi3aOvv5YBkB9tbIopbd/ 10JcIKORYHZfNpNZgNfP7JHjENqcJbt4vqYE9ojRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqcQHFoFkf9lkAppCDKjO/vj5HC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzZjEwM2YwLTRiZTItNDQ0My05ZDM0LTBmMGEwNWZmODI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8eADANBgkqhkiG9w0BAQsFAAOCAQEAF2ObFnNyWx+YF8kZBUGPTB+F VoLzKZo3D2bIc3cVRR0gFdrJbVrySdJFnlMVaqDs/uykipksIuVOkJqsIJ86POUm UiO7l4TBGgOAWQqlPs7HMYziduLGaU1CNjfhZwTV2X18FG1MW8vVlU0h8Y6NJKLu OUuVk5zMfqCDUlKCScYth/9KgVPXmO7wtX4e9XEzl7761R4dpQv9EhKspicoHXuh iWV7Q4qOr0EqMiXkCeS03azYkFkfBLt3IBOtApAbdoLceE3gHFh606RXSy9BlpVq DngTzgSdMCRpa0kaazG4hv5BXni6qd+0IWUHfTAqzpOvSvv0UIL2QE0uUqvT9g== -----END CERTIFICATE-----Generated at Sat Sep 23 00:38:43 2023 by rpki-client on console-ams.rpki-client.org