$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa File: 2b71043a-784f-4c14-8051-a00191c3b8a3.roa (raw, json) Hash identifier: jZ70vYZ4YWhuFD70S7WUWbNBYtV4NiBbyO2Sw5kGIEY= Subject key identifier: E4:59:48:25:14:B1:42:33:D8:90:BA:3B:70:44:E2:74:EA:5B:9A:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33F002A5FEC81C94D327D80A388D0B2B8F83A980 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f0:02:a5:fe:c8:1c:94:d3:27:d8:0a:38:8d:0b:2b:8f:83:a9:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=059e5c5c66e0fa598c06012450d9fbe8098c5120595402b39ae0308d3720b488, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:ac:fb:20:b6:14:32:e5:11:03:88:fe:fe: 1d:27:bf:b8:d1:e0:c3:2c:28:15:8a:f9:5d:0a:f1: 1e:02:89:f3:ad:4f:a0:bf:0f:44:3e:7c:8c:b3:62: 81:27:e8:6d:16:e1:ec:3b:83:a8:8a:b2:24:be:5b: 2c:af:58:08:aa:73:d5:e1:e8:7c:43:01:1c:c0:fd: f4:3b:fe:56:19:87:98:25:dc:33:4a:89:54:5f:2f: 6c:61:d5:e3:e4:a2:d7:9a:30:a4:f7:33:bf:62:6b: ac:05:37:2c:38:bb:5c:82:06:ec:47:2d:e6:5e:6f: b5:2d:66:ac:a3:45:b4:d7:c1:63:5d:59:30:76:90: 33:b2:d1:b8:cd:9a:fd:53:49:ae:61:a4:6f:39:16: dc:ff:e8:46:cc:6d:6a:a3:f7:4a:ad:81:d3:4f:bc: f8:d9:07:fb:5e:05:2d:8d:43:ae:6b:5f:59:26:a8: 5c:d1:76:96:c9:82:f2:a0:53:4f:a1:20:56:bc:0d: ea:f3:a4:7f:4b:9f:a9:df:c8:be:08:0a:0f:be:14: f7:92:51:1c:40:a7:7a:f3:6b:4c:f4:44:91:8d:77: 7b:58:40:8a:e7:e4:61:17:b8:41:19:64:c1:a9:43: b6:78:2e:58:32:c2:0e:3a:49:2f:40:c5:a8:19:d9: cf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:59:48:25:14:B1:42:33:D8:90:BA:3B:70:44:E2:74:EA:5B:9A:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:6000::/40 Signature Algorithm: sha256WithRSAEncryption 17:d6:c0:e0:9a:d1:5e:b0:fa:6d:16:2c:84:db:dc:6a:e4:af: 74:4c:43:93:8c:b2:9d:d2:d1:79:4f:9c:7d:31:7a:eb:63:10: 6b:df:cb:fc:de:6e:5a:f5:86:ff:3b:ca:52:3c:0e:18:70:c5: ee:99:9a:72:70:9d:70:fe:70:86:57:3d:e4:e2:79:26:09:d9: 82:2c:fb:76:66:93:f0:5e:e1:a3:d3:69:80:b6:d6:11:4e:4e: 0c:e2:45:97:37:d5:a7:7d:e2:e0:35:f7:fa:8e:a1:eb:c9:c0: 66:c5:17:ae:96:97:44:ba:e6:62:8c:53:cf:c2:ef:3f:4e:77: 89:44:e2:b3:d3:f4:0d:3b:db:04:d0:14:1c:32:a6:b5:ba:6f: 5b:e1:bb:a9:e5:51:32:8e:d4:21:92:bc:12:2a:d4:e5:6b:41: 5a:8c:e9:fe:08:6e:91:68:06:12:c8:e8:a9:ee:fd:1c:23:ec: fd:9d:d7:dc:88:45:8d:c8:38:1a:d8:a6:ba:6a:c2:a1:5f:c5: 93:e5:04:86:1e:7b:74:26:31:56:04:22:11:94:39:11:74:b9: 50:5e:6e:e3:a5:8e:fc:55:60:42:0d:55:8f:9a:37:ae:f5:b0: cb:93:52:cd:7b:80:3f:7c:fd:ad:40:bb:14:04:29:1a:9f:90: c0:d7:77:da -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM/ACpf7IHJTTJ9gKOI0LK4+DqYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTllNWM1YzY2ZTBmYTU5OGMwNjAxMjQ1MGQ5ZmJlODA5 OGM1MTIwNTk1NDAyYjM5YWUwMzA4ZDM3MjBiNDg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC21az7ILYUMuURA4j+/h0nv7jR4MMsKBWK+V0K8R4CifOt T6C/D0Q+fIyzYoEn6G0W4ew7g6iKsiS+WyyvWAiqc9Xh6HxDARzA/fQ7/lYZh5gl 3DNKiVRfL2xh1ePkoteaMKT3M79ia6wFNyw4u1yCBuxHLeZeb7UtZqyjRbTXwWNd WTB2kDOy0bjNmv1TSa5hpG85Ftz/6EbMbWqj90qtgdNPvPjZB/teBS2NQ65rX1km qFzRdpbJgvKgU0+hIFa8DerzpH9Ln6nfyL4ICg++FPeSURxAp3rza0z0RJGNd3tY QIrn5GEXuEEZZMGpQ7Z4Llgywg46SS9AxagZ2c8RAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5FlIJRSxQjPYkLo7cETidOpbmuYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiNzEwNDNhLTc4NGYtNGMxNC04MDUxLWEwMDE5MWMzYjhhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/5YDANBgkqhkiG9w0BAQsFAAOCAQEAF9bA4JrRXrD6bRYshNvcauSv dExDk4yyndLReU+cfTF662MQa9/L/N5uWvWG/zvKUjwOGHDF7pmacnCdcP5whlc9 5OJ5JgnZgiz7dmaT8F7ho9NpgLbWEU5ODOJFlzfVp33i4DX3+o6h68nAZsUXrpaX RLrmYoxTz8LvP053iUTis9P0DTvbBNAUHDKmtbpvW+G7qeVRMo7UIZK8EirU5WtB Wozp/ghukWgGEsjoqe79HCPs/Z3X3IhFjcg4GtimumrCoV/Fk+UEhh57dCYxVgQi EZQ5EXS5UF5u46WO/FVgQg1Vj5o3rvWwy5NSzXuAP3z9rUC7FAQpGp+QwNd32g== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:42 2023 by rpki-client on console-ams.rpki-client.org