$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/581079aa-e45c-47a4-8220-b7349db46f20.roa File: 581079aa-e45c-47a4-8220-b7349db46f20.roa (raw, json) Hash identifier: IQT7Ir9VXhF5Rk4sVrjoojUHFuFHYBRQDWJ1/GtbNpI= Subject key identifier: 12:43:EB:33:FF:C3:4C:00:87:E7:C4:C1:D9:C7:0E:8D:4E:C7:29:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A134C01CF3C2F85B9351C6AB08F4B89C86FE816 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/581079aa-e45c-47a4-8220-b7349db46f20.roa Signing time: Tue 29 Aug 2023 00:00:00 +0000 ROA not before: Tue 29 Aug 2023 00:00:00 +0000 ROA not after: Tue 03 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 12:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:13:4c:01:cf:3c:2f:85:b9:35:1c:6a:b0:8f:4b:89:c8:6f:e8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:00:00 2023 GMT Not After : Oct 3 23:59:59 2023 GMT Subject: serialNumber=d20775cf5b854a23676dff509bc7e5be2eea4594c1ec3c5e20e9aefa5cb71bfd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:15:3b:27:3d:91:1d:e0:46:22:94:52:90:af: c9:e4:8d:a1:96:9e:a5:58:93:4f:de:46:fd:b2:a2: c9:e0:e8:2f:e6:d3:93:95:4f:2a:06:95:ba:14:ac: 24:10:b3:e6:fa:34:00:4b:6f:20:40:bb:06:cf:20: 14:af:dd:56:68:73:be:3b:01:da:7c:bd:99:82:37: 78:30:9d:2e:b0:4a:de:39:f5:a1:73:84:3b:35:f0: 3a:24:fe:a3:63:9e:1d:86:75:82:38:39:fb:22:79: 70:09:e9:46:7d:2e:95:80:5c:d0:02:23:17:df:26: ca:de:2c:0b:61:6b:cf:53:ac:c6:ae:07:cc:18:f2: 27:7a:7b:45:62:db:d4:fe:a1:20:e7:0e:10:ab:c7: 38:9a:70:dd:64:54:b7:e3:0b:11:f2:f6:64:22:a6: 20:4a:be:1d:a8:3d:d3:4e:32:e3:47:15:82:30:a6: 84:bb:83:9f:0a:b2:49:17:e4:a4:4f:c0:7d:8f:c8: e0:67:df:97:60:33:8d:50:d2:ed:48:46:a3:59:b0: f9:76:63:f7:81:27:46:48:46:a5:a2:81:22:dd:fd: c8:12:77:34:e3:bd:79:0c:64:c3:3b:c9:30:14:9c: 6a:cf:89:01:97:07:b4:9a:14:83:71:c0:47:68:1f: 03:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:43:EB:33:FF:C3:4C:00:87:E7:C4:C1:D9:C7:0E:8D:4E:C7:29:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/581079aa-e45c-47a4-8220-b7349db46f20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11::/36 Signature Algorithm: sha256WithRSAEncryption 8d:60:a8:26:3f:89:69:dd:cb:6d:59:c5:bd:f6:0f:27:d2:3f: f4:69:8d:61:9f:ec:ca:a9:17:64:bd:a9:c7:93:48:c9:e6:34: bb:1d:cb:2b:bd:70:0a:ec:0d:56:44:a7:6c:f4:d7:68:9e:44: a4:b2:f5:1f:ed:85:d1:98:98:d7:1e:cc:0f:1c:6d:58:1f:e2: d3:d7:88:2c:66:6a:7a:c1:c5:7c:09:d0:6f:53:c3:31:20:88: 70:ae:98:a3:0c:d2:93:db:32:00:fd:c6:46:f0:1b:29:ed:81: 8e:95:8e:73:9f:89:c9:e2:62:be:9f:86:72:69:a2:b5:5e:21: d3:49:53:20:68:bc:d9:41:8a:07:6a:aa:12:24:b5:89:6d:8c: 2e:1f:d2:a9:d7:ed:95:26:21:e2:c8:1d:2e:d9:9c:21:b3:9e: 72:d8:c6:a2:14:d9:93:1e:2e:0f:0e:79:15:e9:c1:52:56:04: 08:1e:fe:f9:47:4f:45:96:c8:58:2a:7d:64:64:b6:17:78:f6: a1:2d:a5:b9:76:f8:e5:82:3d:af:80:0a:50:83:28:83:1e:d8: 49:ef:ab:00:7f:7e:75:a9:b9:b5:e2:13:dd:57:ab:13:1a:14: 88:44:8d:29:4e:fd:b7:63:11:fc:78:29:e7:64:05:2c:94:0b: a1:ea:0e:ab -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUehNMAc88L4W5NRxqsI9Lichv6BYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI5MDAwMDAwWhcNMjMxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjA3NzVjZjViODU0YTIzNjc2ZGZmNTA5YmM3ZTViZTJl ZWE0NTk0YzFlYzNjNWUyMGU5YWVmYTVjYjcxYmZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqFTsnPZEd4EYilFKQr8nkjaGWnqVYk0/eRv2yosng6C/m 05OVTyoGlboUrCQQs+b6NABLbyBAuwbPIBSv3VZoc747Adp8vZmCN3gwnS6wSt45 9aFzhDs18Dok/qNjnh2GdYI4OfsieXAJ6UZ9LpWAXNACIxffJsreLAtha89TrMau B8wY8id6e0Vi29T+oSDnDhCrxziacN1kVLfjCxHy9mQipiBKvh2oPdNOMuNHFYIw poS7g58KskkX5KRPwH2PyOBn35dgM41Q0u1IRqNZsPl2Y/eBJ0ZIRqWigSLd/cgS dzTjvXkMZMM7yTAUnGrPiQGXB7SaFINxwEdoHwN7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEkPrM//DTACH58TB2ccOjU7HKTkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4MTA3OWFhLWU0NWMtNDdhNC04MjIwLWI3MzQ5ZGI0NmYyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8RADANBgkqhkiG9w0BAQsFAAOCAQEAjWCoJj+Jad3LbVnFvfYPJ9I/ 9GmNYZ/syqkXZL2px5NIyeY0ux3LK71wCuwNVkSnbPTXaJ5EpLL1H+2F0ZiY1x7M DxxtWB/i09eILGZqesHFfAnQb1PDMSCIcK6YowzSk9syAP3GRvAbKe2BjpWOc5+J yeJivp+GcmmitV4h00lTIGi82UGKB2qqEiS1iW2MLh/SqdftlSYh4sgdLtmcIbOe ctjGohTZkx4uDw55FenBUlYECB7++UdPRZbIWCp9ZGS2F3j2oS2luXb45YI9r4AK UIMogx7YSe+rAH9+dam5teIT3VerExoUiESNKU79t2MR/Hgp52QFLJQLoeoOqw== -----END CERTIFICATE-----Generated at Tue Aug 29 00:34:11 2023 by rpki-client on console-fra.rpki-client.org