$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa File: 3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa (raw, json) Hash identifier: iSHQCVhj84UMBGF41dSIXurOICQE9eSIF9meOu692Gk= Subject key identifier: 26:C1:AA:CD:80:56:55:7D:C2:0E:68:80:65:E7:A1:9C:5E:E1:2F:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BAFC06424F86DE2062580FD7DB9B5536EDAD764 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa Signing time: Tue 29 Aug 2023 00:00:00 +0000 ROA not before: Tue 29 Aug 2023 00:00:00 +0000 ROA not after: Tue 03 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 12:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:af:c0:64:24:f8:6d:e2:06:25:80:fd:7d:b9:b5:53:6e:da:d7:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:00:00 2023 GMT Not After : Oct 3 23:59:59 2023 GMT Subject: serialNumber=08e223c890d56c3bd53e22427b741bca98b63ea2e28cd13d3fe3e7923cffcad3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:7f:94:a7:16:e1:09:5a:12:82:81:c0:c0: c2:83:8a:21:b9:15:20:29:19:3b:22:1d:6e:0a:d5: ef:e4:7c:34:5f:14:1e:c9:66:5e:84:84:cc:ec:14: 2b:34:72:ef:88:58:0b:1f:30:d2:ea:6b:da:7c:17: 89:a2:33:7c:77:2b:16:27:9f:d6:ef:94:80:fb:23: 1f:b0:50:1f:d5:76:34:be:ef:77:ff:8b:96:bc:7f: eb:e7:e4:43:ba:a7:6b:15:5b:d7:ed:7a:44:72:01: 7e:ab:22:25:a4:f2:0e:ae:fc:dc:fc:0a:c4:ca:de: 12:85:53:42:0e:bd:9b:d6:67:b0:b6:c4:97:77:f4: 21:2d:78:a1:a4:c9:4a:50:9d:4a:2a:1d:ca:4e:50: 40:8b:e8:e3:a6:e0:bc:7f:7e:de:5c:bf:66:d3:08: ad:97:f3:25:56:83:b7:c5:95:64:e5:30:3e:ee:16: 3c:d0:9b:61:3c:36:a2:c1:fd:4d:5f:b0:2d:a2:43: 34:0b:e1:0d:7d:74:1a:60:da:24:8a:b8:73:f6:bf: ff:f1:62:c6:2a:6e:d3:45:ee:8b:ac:57:2b:bb:d3: d6:65:b7:8b:2a:5d:7d:c9:83:d5:df:29:1d:70:1e: 9e:8d:fb:60:70:46:9c:0d:c5:ce:68:af:6d:a6:c9: 5f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C1:AA:CD:80:56:55:7D:C2:0E:68:80:65:E7:A1:9C:5E:E1:2F:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:4000::/40 Signature Algorithm: sha256WithRSAEncryption a6:7c:58:5c:f4:c8:d2:98:6d:dc:5c:33:80:d9:1e:77:c7:2a: 03:03:9b:18:7e:7d:61:b1:fb:19:da:ff:8c:98:b2:18:bd:55: cd:47:c1:7b:52:49:05:9c:07:88:71:db:e0:ec:4d:90:00:14: 7a:8a:6d:e9:e8:79:78:8c:7f:cc:7e:45:8a:c5:29:b7:51:d6: 37:cf:41:d9:43:71:96:5a:70:99:1b:78:89:6e:43:8f:60:04: 4d:4c:aa:ec:b7:30:9f:81:28:ca:2f:af:c3:95:94:a9:72:3c: 3d:6e:d6:ff:f3:74:e8:43:63:60:fb:29:d7:0c:e0:46:75:4b: 45:35:ef:97:73:2b:e7:f7:8d:66:08:4a:10:7f:c4:4d:74:3e: 46:3f:78:84:96:d1:10:54:01:e9:6c:51:db:28:9a:11:56:0a: 7e:1f:fb:5e:42:5e:ec:1f:16:69:f5:88:ba:7b:23:07:28:92: ba:1e:1f:85:5c:42:e0:ae:3c:65:0c:6d:c9:36:b3:9d:ff:61: e6:ba:0a:0e:d6:62:ad:46:cb:f0:21:cd:e1:7d:3d:db:93:4c: 58:df:51:6f:e5:75:eb:06:6a:23:d6:fb:ec:3d:c8:eb:bb:2f: 8e:ce:20:c0:4d:1a:da:9e:09:d8:68:2d:67:88:04:06:14:e7: 15:7a:3f:5d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUe6/AZCT4beIGJYD9fbm1U27a12QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI5MDAwMDAwWhcNMjMxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGUyMjNjODkwZDU2YzNiZDUzZTIyNDI3Yjc0MWJjYTk4 YjYzZWEyZTI4Y2QxM2QzZmUzZTc5MjNjZmZjYWQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKO3+UpxbhCVoSgoHAwMKDiiG5FSApGTsiHW4K1e/kfDRf FB7JZl6EhMzsFCs0cu+IWAsfMNLqa9p8F4miM3x3KxYnn9bvlID7Ix+wUB/VdjS+ 73f/i5a8f+vn5EO6p2sVW9ftekRyAX6rIiWk8g6u/Nz8CsTK3hKFU0IOvZvWZ7C2 xJd39CEteKGkyUpQnUoqHcpOUECL6OOm4Lx/ft5cv2bTCK2X8yVWg7fFlWTlMD7u FjzQm2E8NqLB/U1fsC2iQzQL4Q19dBpg2iSKuHP2v//xYsYqbtNF7ousVyu709Zl t4sqXX3Jg9XfKR1wHp6N+2BwRpwNxc5or22myV//AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUJsGqzYBWVX3CDmiAZeehnF7hL2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjYmI4YzM0LTc2MjEtNGZhNS05MDJjLTlkZDk1YmJhYmUzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+QDANBgkqhkiG9w0BAQsFAAOCAQEApnxYXPTI0pht3FwzgNked8cq AwObGH59YbH7Gdr/jJiyGL1VzUfBe1JJBZwHiHHb4OxNkAAUeopt6eh5eIx/zH5F isUpt1HWN89B2UNxllpwmRt4iW5Dj2AETUyq7Lcwn4Eoyi+vw5WUqXI8PW7W//N0 6ENjYPsp1wzgRnVLRTXvl3Mr5/eNZghKEH/ETXQ+Rj94hJbREFQB6WxR2yiaEVYK fh/7XkJe7B8WafWIunsjByiSuh4fhVxC4K48ZQxtyTaznf9h5roKDtZirUbL8CHN 4X0925NMWN9Rb+V16wZqI9b77D3I67svjs4gwE0a2p4J2GgtZ4gEBhTnFXo/XQ== -----END CERTIFICATE-----Generated at Tue Aug 29 00:48:24 2023 by rpki-client on console-ams.rpki-client.org