$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa File: 3b907310-5554-4e18-b6d9-3d4b33f6c030.roa (raw, json) Hash identifier: nZXk30uA8JR/t1dyxqvsDRWgharW99idQ9Cupnrq7YE= Subject key identifier: 32:9D:B5:B2:40:62:6C:61:61:C8:87:1B:48:E3:14:72:64:7A:4D:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A7D7F513349531523F58886486C51D3F623D6BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7d:7f:51:33:49:53:15:23:f5:88:86:48:6c:51:d3:f6:23:d6:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=ec5a2d96a9c98bcf701a00178832dd7dc1149fb39bf5f5ad3a9add4225849bd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b1:6e:22:c4:21:35:4f:fc:5d:ac:f4:2a:b4: 4b:20:6d:e3:f8:dd:5e:50:ed:d1:59:c2:14:56:c9: e3:1b:73:06:58:ea:1a:78:53:57:97:64:15:bd:f3: 4b:2a:83:63:42:12:84:51:41:95:50:95:2f:ba:b0: 85:78:c4:d2:51:46:75:10:69:54:2f:71:bd:e3:01: 0a:63:d9:61:d1:12:41:10:d5:d8:19:40:4f:60:75: 06:e0:32:0d:23:ac:d1:a9:c7:af:18:43:94:07:7b: a5:ad:07:1a:29:e5:87:58:58:8e:b2:2f:af:a2:c5: b7:00:ce:ce:84:8c:da:2a:c6:86:81:08:98:bc:c7: e9:26:0d:73:52:ef:eb:23:d1:85:ac:b0:0c:fa:0e: fc:b9:f4:b2:95:52:aa:01:f3:6d:4b:fb:70:f9:2b: 19:3b:0d:9d:9d:37:a6:77:9c:8c:d1:f8:21:b4:40: d6:99:23:b3:6e:13:4a:10:fe:3b:9f:a1:d7:68:fb: 9f:15:fc:03:2a:18:4a:b8:02:d9:1c:1f:ac:c9:3d: 24:20:2a:d6:96:50:60:17:6a:2c:cd:30:de:9b:81: f9:de:d9:22:62:68:dc:ac:f1:8b:30:98:37:72:8c: e1:3d:40:48:c2:52:3b:00:99:54:7a:e1:35:23:30: 6a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9D:B5:B2:40:62:6C:61:61:C8:87:1B:48:E3:14:72:64:7A:4D:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:6000::/40 Signature Algorithm: sha256WithRSAEncryption 9e:0c:76:80:e6:22:fd:34:db:a7:c0:9e:90:1f:7c:79:c0:53: d0:31:50:28:94:45:ee:36:aa:e9:fd:28:1c:72:ae:65:1e:7e: 73:13:73:01:b6:c8:17:a9:83:25:e0:19:fc:31:62:da:f4:18: e7:0a:0b:5c:d9:0a:70:c7:8a:4a:1e:49:54:8a:30:a3:d5:90: bd:ae:92:d9:f0:23:29:4a:2a:d9:a6:6e:31:78:15:28:fc:0c: 3b:a0:d3:96:2b:95:53:f6:55:0c:93:e9:9d:ff:87:8f:5e:9f: 93:1b:8d:44:5a:0a:2f:8d:7e:e4:1a:53:3b:4c:62:b6:22:61: 7c:25:ad:13:19:cb:0e:18:7b:2a:e9:2e:96:a0:95:31:08:7e: 1b:10:a3:17:ba:fc:56:c8:da:66:e8:db:67:1a:18:62:7e:9d: ef:3c:cd:a3:9c:a1:8e:08:11:e6:79:44:ea:85:9e:32:8e:82: b7:05:a8:3a:b2:1b:e1:66:35:d7:f2:c0:2e:59:7b:d9:1f:01: de:f8:5c:e0:fd:5a:53:4e:cc:1f:18:36:79:30:5c:2f:44:24: 78:1a:3e:00:f5:28:d1:2b:0d:9d:28:24:80:f4:a3:99:11:b6: 9f:78:29:73:5a:60:13:d5:42:59:b6:f1:91:39:32:3c:27:26: 5c:6f:2f:41 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUan1/UTNJUxUj9YiGSGxR0/Yj1r8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzVhMmQ5NmE5Yzk4YmNmNzAxYTAwMTc4ODMyZGQ3ZGMx MTQ5ZmIzOWJmNWY1YWQzYTlhZGQ0MjI1ODQ5YmQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpsW4ixCE1T/xdrPQqtEsgbeP43V5Q7dFZwhRWyeMbcwZY 6hp4U1eXZBW980sqg2NCEoRRQZVQlS+6sIV4xNJRRnUQaVQvcb3jAQpj2WHREkEQ 1dgZQE9gdQbgMg0jrNGpx68YQ5QHe6WtBxop5YdYWI6yL6+ixbcAzs6EjNoqxoaB CJi8x+kmDXNS7+sj0YWssAz6Dvy59LKVUqoB821L+3D5Kxk7DZ2dN6Z3nIzR+CG0 QNaZI7NuE0oQ/jufoddo+58V/AMqGEq4AtkcH6zJPSQgKtaWUGAXaizNMN6bgfne 2SJiaNys8YswmDdyjOE9QEjCUjsAmVR64TUjMGrnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMp21skBibGFhyIcbSOMUcmR6TaAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiOTA3MzEwLTU1NTQtNGUxOC1iNmQ5LTNkNGIzM2Y2YzAzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6YDANBgkqhkiG9w0BAQsFAAOCAQEAngx2gOYi/TTbp8CekB98ecBT 0DFQKJRF7jaq6f0oHHKuZR5+cxNzAbbIF6mDJeAZ/DFi2vQY5woLXNkKcMeKSh5J VIowo9WQva6S2fAjKUoq2aZuMXgVKPwMO6DTliuVU/ZVDJPpnf+Hj16fkxuNRFoK L41+5BpTO0xitiJhfCWtExnLDhh7KukulqCVMQh+GxCjF7r8VsjaZujbZxoYYn6d 7zzNo5yhjggR5nlE6oWeMo6CtwWoOrIb4WY11/LALll72R8B3vhc4P1aU07MHxg2 eTBcL0QkeBo+APUo0SsNnSgkgPSjmRG2n3gpc1pgE9VCWbbxkTkyPCcmXG8vQQ== -----END CERTIFICATE-----Generated at Sat Sep 23 00:38:44 2023 by rpki-client on console-ams.rpki-client.org