$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa File: 37c5a8d3-0377-4588-b874-fb35f89d8d62.roa (raw, json) Hash identifier: umsAXXt+4BwQTMAq3YlYnEBezouE/71wG0P7fSXGbFw= Subject key identifier: B0:90:3A:B9:15:0A:A4:D2:C4:E1:A3:1B:06:62:20:1F:30:56:C8:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1062AD810FBD4B985F1347F6E0657498D8D54B87 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:62:ad:81:0f:bd:4b:98:5f:13:47:f6:e0:65:74:98:d8:d5:4b:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=062b3ce97dc6e928022b64004343c8bc907c2dc22843a119b4dfafe64ab4c900, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:48:9f:b4:2a:db:d7:ea:4a:5f:d5:36:3d: 7c:80:80:6c:ca:34:6d:b9:c6:e3:2d:c6:54:a2:04: d8:01:7f:96:00:78:7e:9f:dc:77:8c:ae:dd:55:57: 56:4f:4b:cf:50:d0:a8:6f:38:52:57:a0:29:90:9c: a0:47:28:78:f2:fe:18:a6:7a:5f:d3:65:f3:41:7c: 7e:c8:ab:45:3f:d2:e8:ab:97:32:8d:b3:8e:78:af: a4:b8:17:91:ce:cf:bd:98:0f:e3:ea:72:48:9d:07: 70:0f:63:b9:cf:0f:c6:10:84:46:87:9e:0f:53:56: 0b:1a:fa:9d:08:a2:f0:09:4d:96:0f:4a:28:53:73: 1a:62:bd:ce:66:cb:17:19:4e:a2:63:92:8e:51:c4: d5:2d:c7:fb:3b:39:8f:17:f4:bd:a3:75:12:02:b6: 61:6d:d4:f4:c3:c9:71:d8:14:f2:7f:b1:89:4e:28: bd:54:2b:ff:f1:b8:a6:62:67:93:55:47:21:ed:8d: 9e:d9:59:98:57:68:87:83:12:7b:dd:fc:a2:4d:0a: 15:6a:e0:63:bd:03:38:fb:37:9d:a0:b6:41:8f:6d: bf:3c:e9:87:e0:4e:c6:55:f0:cb:08:f7:31:44:d9: db:b0:a2:15:26:d5:af:88:52:85:3e:3c:33:43:f6: 46:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:90:3A:B9:15:0A:A4:D2:C4:E1:A3:1B:06:62:20:1F:30:56:C8:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c000::/40 Signature Algorithm: sha256WithRSAEncryption 1b:2e:4d:a1:b0:a7:aa:bf:76:69:6b:48:09:5e:61:78:86:a4: 50:bd:d0:5f:fe:6b:11:1b:53:77:6c:2e:68:17:df:a5:93:34: 6b:06:c1:2b:a4:b4:41:26:5b:37:d0:96:9c:58:71:39:01:c7: ad:0b:16:22:58:a4:63:68:c5:74:6d:97:11:95:e8:26:67:a4: c5:de:85:32:8e:97:b9:06:d9:d1:e9:24:db:42:68:13:ad:61: aa:79:63:bf:a3:3e:ed:69:35:60:28:15:92:19:b7:c3:ba:83: 77:62:70:e3:d1:90:e0:c6:61:28:ac:08:67:83:af:64:af:67: 5a:af:15:43:d4:64:be:dc:ee:c3:44:a8:48:fe:46:69:3b:f0: 54:80:7e:09:fd:76:0e:70:db:87:70:50:42:c3:ae:0a:05:db: 99:ab:15:6a:0f:19:fc:4e:1a:a3:40:e1:e0:9b:79:65:97:dc: 2a:88:73:11:4f:e6:d5:43:6f:c2:96:e1:eb:7d:40:23:f4:05: 8e:8e:46:e1:e6:05:0b:9d:b9:0d:e3:65:ed:32:fb:ed:1f:63: 03:21:0d:3f:4f:74:5d:d2:8f:6a:5c:49:6b:c6:5a:9c:6d:f2: 25:31:6b:b1:1b:c1:8c:35:67:bf:e7:aa:bf:4f:39:a6:48:01: 29:ed:58:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEGKtgQ+9S5hfE0f24GV0mNjVS4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjJiM2NlOTdkYzZlOTI4MDIyYjY0MDA0MzQzYzhiYzkw N2MyZGMyMjg0M2ExMTliNGRmYWZlNjRhYjRjOTAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFNEiftCrb1+pKX9U2PXyAgGzKNG25xuMtxlSiBNgBf5YA eH6f3HeMrt1VV1ZPS89Q0KhvOFJXoCmQnKBHKHjy/himel/TZfNBfH7Iq0U/0uir lzKNs454r6S4F5HOz72YD+PqckidB3APY7nPD8YQhEaHng9TVgsa+p0IovAJTZYP SihTcxpivc5myxcZTqJjko5RxNUtx/s7OY8X9L2jdRICtmFt1PTDyXHYFPJ/sYlO KL1UK//xuKZiZ5NVRyHtjZ7ZWZhXaIeDEnvd/KJNChVq4GO9Azj7N52gtkGPbb88 6YfgTsZV8MsI9zFE2duwohUm1a+IUoU+PDND9kYxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsJA6uRUKpNLE4aMbBmIgHzBWyJwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3YzVhOGQzLTAzNzctNDU4OC1iODc0LWZiMzVmODlkOGQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//wDANBgkqhkiG9w0BAQsFAAOCAQEAGy5NobCnqr92aWtICV5heIak UL3QX/5rERtTd2wuaBffpZM0awbBK6S0QSZbN9CWnFhxOQHHrQsWIlikY2jFdG2X EZXoJmekxd6FMo6XuQbZ0ekk20JoE61hqnljv6M+7Wk1YCgVkhm3w7qDd2Jw49GQ 4MZhKKwIZ4OvZK9nWq8VQ9Rkvtzuw0SoSP5GaTvwVIB+Cf12DnDbh3BQQsOuCgXb masVag8Z/E4ao0Dh4Jt5ZZfcKohzEU/m1UNvwpbh631AI/QFjo5G4eYFC525DeNl 7TL77R9jAyENP090XdKPalxJa8ZanG3yJTFrsRvBjDVnv+eqv085pkgBKe1YZw== -----END CERTIFICATE-----Generated at Mon Aug 28 23:41:39 2023 by rpki-client on console-fra.rpki-client.org