$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa File: 57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa (raw, json) Hash identifier: MzkOMQiu5zkMCQT3XehoDmMnCn+8X4rGegVoNGVS8LY= Subject key identifier: BD:D0:6A:56:08:C4:ED:55:0F:17:72:E1:7F:E9:8A:70:B4:50:7F:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34EE132DFC3084212FAC392F52BB85C6777588D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ee:13:2d:fc:30:84:21:2f:ac:39:2f:52:bb:85:c6:77:75:88:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=092386be0f74206f466bc78756cdb5899f6da76b4c99e076014904ce3753641d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:60:81:b1:93:c1:c4:21:bb:51:de:a1:74: e4:d8:aa:f6:88:b3:f5:3b:19:fd:2c:de:17:b3:4e: a4:fd:3e:ef:59:6c:d3:10:c0:6c:0b:be:4a:44:95: 56:d0:e7:72:72:2a:70:a2:3a:fc:f3:64:8a:bc:dd: b5:f6:2c:03:eb:4d:77:e0:25:c8:fa:40:2f:4a:41: af:46:03:d7:4b:74:95:94:ac:28:22:22:c1:87:bb: f4:eb:c9:88:c9:f1:6b:14:9c:b3:25:cb:fa:89:73: a9:bc:03:8d:84:41:69:84:68:41:a6:38:5b:23:65: 8e:34:93:5a:7c:c0:37:b3:26:30:9d:ae:93:28:d0: 67:96:ad:b0:18:c5:f2:71:8c:98:88:ef:66:4a:23: d5:af:5e:bd:df:c7:a9:32:18:63:09:b9:a2:78:f4: e4:81:f3:0b:ba:7f:b3:a2:0d:a4:61:f3:56:16:5c: 5f:e8:d5:71:28:23:95:f3:64:21:70:7c:ed:70:da: 8f:2e:fd:be:74:67:fa:55:93:83:79:92:71:e2:ec: e7:54:74:a1:a8:f4:cc:47:ac:e6:55:fa:67:f8:65: 68:4b:54:62:2b:5f:e9:ab:20:9b:04:0f:a4:e7:ed: b2:82:e4:29:8e:23:0a:d7:9a:0b:dd:01:7d:79:83: 97:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D0:6A:56:08:C4:ED:55:0F:17:72:E1:7F:E9:8A:70:B4:50:7F:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:5000::/40 Signature Algorithm: sha256WithRSAEncryption d8:ab:ae:c6:9d:83:43:46:a9:4f:cc:02:61:63:fa:94:be:05: 0f:8d:69:35:a5:33:5b:2f:2f:50:2a:98:f7:36:d8:0d:0e:ec: 4c:6e:c0:a7:79:b1:37:b2:0c:c8:f4:4c:87:84:39:78:94:3c: ff:66:f4:21:60:d7:a6:b6:93:ef:5c:06:04:df:e5:90:35:3e: f4:9e:9f:1a:e8:cc:9c:c6:33:b8:61:c1:7a:f7:5f:18:74:5c: 5f:37:3c:ad:de:ca:30:f5:c1:33:6e:76:7d:3b:ed:8c:f0:ce: 4d:7c:f2:85:d7:fe:fa:b2:6a:2b:01:bf:94:d3:b0:09:8a:64: e7:6d:8f:0e:f9:91:fe:07:2d:84:e9:66:15:06:20:4a:74:55: b9:fe:11:61:40:cd:e0:2c:0f:77:40:fd:31:f7:4c:e6:a6:99: 4d:60:c4:c3:9e:6d:98:e9:db:52:85:68:51:a3:25:65:2b:d6: 43:73:be:5b:8e:13:5b:60:99:48:14:d3:8e:94:11:f6:c9:d0: e4:f9:3e:dc:bf:38:f8:45:6d:4b:79:8f:27:ce:21:7c:f1:6f: 9e:c2:b0:e3:7a:c2:1b:5f:88:a9:be:46:4b:f2:bc:f8:5d:f0: 42:95:8a:03:d7:52:22:99:70:9a:3f:6d:94:cd:2a:6e:84:6b: 2c:66:28:26 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNO4TLfwwhCEvrDkvUruFxnd1iNEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTIzODZiZTBmNzQyMDZmNDY2YmM3ODc1NmNkYjU4OTlm NmRhNzZiNGM5OWUwNzYwMTQ5MDRjZTM3NTM2NDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8jGCBsZPBxCG7Ud6hdOTYqvaIs/U7Gf0s3hezTqT9Pu9Z bNMQwGwLvkpElVbQ53JyKnCiOvzzZIq83bX2LAPrTXfgJcj6QC9KQa9GA9dLdJWU rCgiIsGHu/TryYjJ8WsUnLMly/qJc6m8A42EQWmEaEGmOFsjZY40k1p8wDezJjCd rpMo0GeWrbAYxfJxjJiI72ZKI9WvXr3fx6kyGGMJuaJ49OSB8wu6f7OiDaRh81YW XF/o1XEoI5XzZCFwfO1w2o8u/b50Z/pVk4N5knHi7OdUdKGo9MxHrOZV+mf4ZWhL VGIrX+mrIJsED6Tn7bKC5CmOIwrXmgvdAX15g5clAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvdBqVgjE7VUPF3Lhf+mKcLRQfxYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3YjliNjUyLWE2ZTAtNGQ1MC1iNGE4LWJmOWVhMjcyNDgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oUDANBgkqhkiG9w0BAQsFAAOCAQEA2Kuuxp2DQ0apT8wCYWP6lL4F D41pNaUzWy8vUCqY9zbYDQ7sTG7Ap3mxN7IMyPRMh4Q5eJQ8/2b0IWDXpraT71wG BN/lkDU+9J6fGujMnMYzuGHBevdfGHRcXzc8rd7KMPXBM252fTvtjPDOTXzyhdf+ +rJqKwG/lNOwCYpk522PDvmR/gcthOlmFQYgSnRVuf4RYUDN4CwPd0D9MfdM5qaZ TWDEw55tmOnbUoVoUaMlZSvWQ3O+W44TW2CZSBTTjpQR9snQ5Pk+3L84+EVtS3mP J84hfPFvnsKw43rCG1+Iqb5GS/K8+F3wQpWKA9dSIplwmj9tlM0qboRrLGYoJg== -----END CERTIFICATE-----Generated at Fri Sep 22 17:25:45 2023 by rpki-client on console-fra.rpki-client.org