$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2dff1d1c-ed0c-4bce-b471-b01cd80c2b81.roa File: 2dff1d1c-ed0c-4bce-b471-b01cd80c2b81.roa (raw, json) Hash identifier: AlnLYFFrdS/955HAxYrBtDcH2Gj+du38kOXKh9LBiN4= Subject key identifier: 1C:52:57:0B:22:F7:13:F9:82:5A:CB:B3:E5:A8:FF:B5:B6:5E:AA:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CB77A7C9EF49F1033050EC9BF64D2E009CF3CCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2dff1d1c-ed0c-4bce-b471-b01cd80c2b81.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b7:7a:7c:9e:f4:9f:10:33:05:0e:c9:bf:64:d2:e0:09:cf:3c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=47bed075555df0dcb22676e393a636902d2fe0213abfb8016579546d84075985, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:56:ee:f6:20:c6:5d:a7:3b:bc:28:c1:c0: d2:30:57:86:fe:c5:59:53:b9:da:8f:b7:72:c9:39: 5d:be:ad:b7:05:cb:82:b8:81:f1:ed:bc:00:59:f7: fc:65:ee:42:8b:dc:67:d5:e6:f7:cb:82:0d:c5:81: 66:75:db:9b:4b:0f:a9:b9:2b:17:53:28:83:3d:ee: 1c:fc:6a:fa:9d:bd:b3:74:d2:52:07:37:f1:2e:eb: 91:15:c3:d0:22:b6:4b:e8:b6:24:93:72:f4:51:e1: 96:b4:4f:16:8f:4f:da:02:9f:eb:f5:58:fa:c3:07: 08:d3:f8:4a:66:7e:da:26:fe:e9:a9:b2:59:de:03: 9f:6e:17:b7:0f:47:a1:ee:39:52:39:51:77:cf:b1: 5a:b3:d6:5f:73:64:2b:52:c9:d9:6b:ec:f5:2b:e4: a4:24:68:d4:7e:88:e0:15:24:9d:f8:3c:7e:35:a6: 9e:6d:32:79:2b:9e:50:c6:df:72:1a:c3:a0:67:bd: 5d:b3:d3:9d:89:c4:0f:6c:ac:19:51:cf:a1:eb:72: 1e:f5:6e:6f:5d:1e:9a:1e:b2:1a:d4:87:6f:a0:d8: cd:d0:fd:43:0b:36:31:eb:e7:ba:60:e2:37:bc:ae: 0f:01:40:74:9f:6e:63:1c:3a:db:35:bc:bf:0c:89: 4e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:52:57:0B:22:F7:13:F9:82:5A:CB:B3:E5:A8:FF:B5:B6:5E:AA:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2dff1d1c-ed0c-4bce-b471-b01cd80c2b81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:a400::/40 Signature Algorithm: sha256WithRSAEncryption 20:24:64:0c:d3:64:16:8d:bd:12:04:5e:32:d7:f7:36:10:6b: c9:ab:64:24:4a:dc:f7:19:38:2d:4d:a2:33:15:a2:2c:f2:1c: a7:1a:39:03:71:b1:35:c6:1a:5b:ed:21:97:73:36:41:95:78: c8:13:ed:ac:09:24:ff:51:65:ad:1b:c7:d8:9a:5f:e3:da:ef: 4c:fd:4d:16:0c:91:6f:22:da:c4:db:6f:0e:37:9d:01:55:cb: a3:4c:01:b8:06:dc:6e:7a:8f:c2:4c:c6:ad:b8:65:76:3b:5a: a4:c7:03:35:31:47:45:28:f0:85:da:b8:08:f9:c4:2a:66:4b: 0c:7e:1f:35:03:f3:bd:93:7b:15:86:74:ea:47:2a:5c:1e:5a: 7a:9d:01:93:bc:e0:67:19:7a:60:1f:d2:ab:94:38:2c:e9:80: 7c:0b:0b:f0:4d:cc:dd:bf:3e:86:83:ae:24:5b:0f:00:90:fc: ef:e4:0c:49:fa:be:96:ca:a6:54:5e:2c:0b:1b:da:c2:2e:e9: 32:b5:51:cc:de:2f:c8:33:23:17:d1:c7:24:5a:a7:4b:61:43: cd:4a:b0:bb:b9:5e:1f:14:8c:8b:0e:f7:3d:92:ac:66:98:a7: bd:32:2f:7b:a1:ab:2c:87:3b:a8:66:be:d4:b5:b2:55:88:97: ce:5f:f0:76 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDLd6fJ70nxAzBQ7Jv2TS4AnPPM0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2JlZDA3NTU1NWRmMGRjYjIyNjc2ZTM5M2E2MzY5MDJk MmZlMDIxM2FiZmI4MDE2NTc5NTQ2ZDg0MDc1OTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBwVbu9iDGXac7vCjBwNIwV4b+xVlTudqPt3LJOV2+rbcF y4K4gfHtvABZ9/xl7kKL3GfV5vfLgg3FgWZ125tLD6m5KxdTKIM97hz8avqdvbN0 0lIHN/Eu65EVw9AitkvotiSTcvRR4Za0TxaPT9oCn+v1WPrDBwjT+Epmftom/ump slneA59uF7cPR6HuOVI5UXfPsVqz1l9zZCtSydlr7PUr5KQkaNR+iOAVJJ34PH41 pp5tMnkrnlDG33Iaw6BnvV2z052JxA9srBlRz6Hrch71bm9dHpoeshrUh2+g2M3Q /UMLNjHr57pg4je8rg8BQHSfbmMcOts1vL8MiU4zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHFJXCyL3E/mCWsuz5aj/tbZeqggwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkZmYxZDFjLWVkMGMtNGJjZS1iNDcxLWIwMWNkODBjMmI4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gpDANBgkqhkiG9w0BAQsFAAOCAQEAICRkDNNkFo29EgReMtf3NhBr yatkJErc9xk4LU2iMxWiLPIcpxo5A3GxNcYaW+0hl3M2QZV4yBPtrAkk/1FlrRvH 2Jpf49rvTP1NFgyRbyLaxNtvDjedAVXLo0wBuAbcbnqPwkzGrbhldjtapMcDNTFH RSjwhdq4CPnEKmZLDH4fNQPzvZN7FYZ06kcqXB5aep0Bk7zgZxl6YB/Sq5Q4LOmA fAsL8E3M3b8+hoOuJFsPAJD87+QMSfq+lsqmVF4sCxvawi7pMrVRzN4vyDMjF9HH JFqnS2FDzUqwu7leHxSMiw73PZKsZpinvTIve6GrLIc7qGa+1LWyVYiXzl/wdg== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:04 2023 by rpki-client on console-ams.rpki-client.org