$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa File: 2645849a-4d1c-4d39-9157-62ba39467753.roa (raw, json) Hash identifier: e8M1tqXS69p48gFoLSdyYalr9dGmVzKHBhwWQRjPunM= Subject key identifier: 73:E7:F1:F9:45:8E:A3:D3:E9:8F:8D:1E:43:E8:AF:93:89:21:A2:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 025D1996F3DB5D06B09186461DBC6D0905FD2EE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:5d:19:96:f3:db:5d:06:b0:91:86:46:1d:bc:6d:09:05:fd:2e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=63286fe1414f11b4c2106283f9b0db1b2e1a16ef7e254c407cfa0a9eb53f2765, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:31:a5:47:c8:0c:aa:32:98:36:d9:d5:e7: 8f:3d:25:66:cf:12:91:8b:85:42:4f:f1:a9:37:a0: 16:9d:8b:b9:37:41:16:94:aa:70:47:cb:cb:75:a8: ce:65:c4:74:53:08:f1:b2:fe:8b:ae:01:d4:c8:13: e3:97:10:0e:60:f6:01:f3:0e:0e:eb:ea:48:90:5f: ff:dd:6f:9e:0c:f6:8f:5b:ad:9a:c4:2e:ca:8f:84: 9c:26:ab:e7:63:87:1a:34:24:c7:f4:64:ca:55:74: cd:b2:6c:d4:55:68:54:1c:a5:8c:52:e6:5c:de:c5: a2:2b:0e:a8:90:3f:7b:e2:5d:b0:cb:58:fc:30:00: 19:14:b7:af:c2:78:97:71:00:13:2d:48:6f:8a:5e: 74:cb:a8:54:1a:ff:7f:78:17:c9:90:f2:a7:31:c8: ee:76:40:d7:9d:b0:45:55:cc:96:c5:e5:97:0c:e1: 62:54:36:90:a0:28:e7:30:6f:02:10:05:a9:a1:f3: d1:07:8e:62:90:f2:e6:fb:bc:64:b0:b3:f3:36:b7: dd:33:06:d3:ec:37:07:45:1d:71:0a:7a:4e:bd:49: 6f:b5:d4:56:41:bd:4d:2e:9d:14:6c:5b:f8:fe:2f: 53:f9:9e:4a:59:c6:c2:72:03:ae:b1:6d:28:fc:83: 9d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E7:F1:F9:45:8E:A3:D3:E9:8F:8D:1E:43:E8:AF:93:89:21:A2:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:c000::/40 Signature Algorithm: sha256WithRSAEncryption 72:ce:65:f9:5c:b3:35:19:42:67:a9:9b:b5:58:85:8b:29:f3: 9a:10:32:be:69:1f:2f:4d:e3:1c:03:50:11:5e:6e:19:0f:c5: 10:7d:35:6e:58:9f:be:24:e7:ff:4f:c4:e5:ef:1e:bf:e5:48: d0:5b:e2:95:ed:0d:a9:d4:37:bc:12:2a:ca:90:5d:76:15:0d: ff:d8:55:f2:19:a9:71:72:49:a3:e4:75:4f:67:16:11:2a:22: 41:ae:54:39:6e:d5:1c:fe:94:f3:a5:0e:b4:99:c8:e8:f1:24: d5:0f:41:b4:b0:e5:c3:6d:40:da:7a:5c:88:2b:61:8a:8f:e4: a7:60:20:c5:2b:41:35:b7:6e:86:72:27:1b:63:9a:cd:72:2d: 20:a5:bd:3e:3d:4c:ca:ec:c4:86:86:96:a9:bb:20:e7:f8:3c: 90:15:bc:a6:29:00:c1:a9:31:3d:dc:7a:cf:c5:2a:49:d8:1b: 70:46:95:33:2d:d6:34:96:72:a9:55:25:ab:b5:8f:28:6a:2d: 03:f8:ee:ae:19:25:52:bf:01:f2:5a:61:c1:de:21:c7:cb:f8: 9a:27:f8:df:88:8c:71:28:8c:82:63:ee:7d:8b:cc:da:0d:75: 67:02:d7:e5:66:96:18:4c:d1:54:f5:bd:e2:ab:d1:5c:e9:b5: 4b:cb:cc:28 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAl0ZlvPbXQawkYZGHbxtCQX9LuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzI4NmZlMTQxNGYxMWI0YzIxMDYyODNmOWIwZGIxYjJl MWExNmVmN2UyNTRjNDA3Y2ZhMGE5ZWI1M2YyNzY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCufDGlR8gMqjKYNtnV5489JWbPEpGLhUJP8ak3oBadi7k3 QRaUqnBHy8t1qM5lxHRTCPGy/ouuAdTIE+OXEA5g9gHzDg7r6kiQX//db54M9o9b rZrELsqPhJwmq+djhxo0JMf0ZMpVdM2ybNRVaFQcpYxS5lzexaIrDqiQP3viXbDL WPwwABkUt6/CeJdxABMtSG+KXnTLqFQa/394F8mQ8qcxyO52QNedsEVVzJbF5ZcM 4WJUNpCgKOcwbwIQBamh89EHjmKQ8ub7vGSws/M2t90zBtPsNwdFHXEKek69SW+1 1FZBvU0unRRsW/j+L1P5nkpZxsJyA66xbSj8g529AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUc+fx+UWOo9Ppj40eQ+ivk4khop8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NDU4NDlhLTRkMWMtNGQzOS05MTU3LTYyYmEzOTQ2Nzc1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wwDANBgkqhkiG9w0BAQsFAAOCAQEAcs5l+VyzNRlCZ6mbtViFiynz mhAyvmkfL03jHANQEV5uGQ/FEH01blifviTn/0/E5e8ev+VI0Fvile0NqdQ3vBIq ypBddhUN/9hV8hmpcXJJo+R1T2cWESoiQa5UOW7VHP6U86UOtJnI6PEk1Q9BtLDl w21A2npciCthio/kp2AgxStBNbduhnInG2OazXItIKW9Pj1MyuzEhoaWqbsg5/g8 kBW8pikAwakxPdx6z8UqSdgbcEaVMy3WNJZyqVUlq7WPKGotA/jurhklUr8B8lph wd4hx8v4mif434iMcSiMgmPufYvM2g11ZwLX5WaWGEzRVPW94qvRXOm1S8vMKA== -----END CERTIFICATE-----Generated at Fri Sep 22 20:36:13 2023 by rpki-client on console-fra.rpki-client.org