$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66b6103b-42bf-4804-87da-374ed23ffff2.roa File: 66b6103b-42bf-4804-87da-374ed23ffff2.roa (raw, json) Hash identifier: L2poe+PE9FkcLVgw4qyJy2IsQwCFwRoVZYyM+gDoWT0= Subject key identifier: 2C:BD:BC:2F:11:D3:47:54:46:0A:22:FE:14:57:C4:4D:5C:A7:23:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64F0D1FF6556AAA6A25532C04CD00BA41FC71AC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66b6103b-42bf-4804-87da-374ed23ffff2.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1c::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f0:d1:ff:65:56:aa:a6:a2:55:32:c0:4c:d0:0b:a4:1f:c7:1a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=7126e1065ce6c10130ee8c1ad4bd9b120961add7afc7e588a2b0fcad8e46fa7d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fb:d9:d6:ea:cd:a4:31:4b:80:13:da:1a:ba: f3:15:8b:c8:04:2f:ea:b1:5b:26:e6:64:b7:1e:d6: a9:ea:fd:2b:e4:87:ea:05:dc:ec:37:b1:e6:df:e3: c6:31:e7:6d:10:8c:9d:6f:6f:14:ed:c9:b2:c8:98: 6c:54:4f:fb:7a:c8:a1:b4:7c:c7:ad:f4:1b:d5:25: 42:13:51:40:2c:a9:43:e8:a1:40:83:c3:35:dd:58: cb:63:2d:cb:3c:3c:29:12:85:b2:9d:53:a9:c2:f1: 8e:21:18:57:dd:cc:57:35:6c:77:3b:75:5e:6a:48: 24:3a:fe:ac:7a:50:81:b0:05:42:0c:7d:5d:c0:d2: 6a:63:4c:c7:19:c7:65:3f:0e:27:4b:46:fc:f2:1e: 11:87:d0:1a:d7:dd:f8:ff:35:f7:14:6b:f4:2a:bc: f6:99:81:17:35:f1:63:96:d1:d4:8b:b8:df:b8:19: 70:66:fd:30:f7:9d:6c:3d:52:19:e4:19:47:9c:5f: 1a:90:b7:07:a7:de:ca:8b:77:f4:5f:d4:b1:8c:9d: 9d:cd:d5:f3:3d:cc:d1:c2:a6:1a:fa:99:1d:5f:69: fe:b4:f6:74:41:5a:7b:84:3e:1b:7f:eb:f2:46:af: 2e:ce:68:94:0f:d1:83:59:3e:00:d2:ad:70:4a:4f: 29:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BD:BC:2F:11:D3:47:54:46:0A:22:FE:14:57:C4:4D:5C:A7:23:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66b6103b-42bf-4804-87da-374ed23ffff2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c::/36 Signature Algorithm: sha256WithRSAEncryption 10:99:e9:6e:6e:ce:f4:d0:1b:37:92:ec:79:09:89:9c:ca:4b: d5:06:d5:2f:3a:30:f5:37:ed:b9:94:d7:7c:4e:09:31:40:52: 08:96:d8:97:bc:4d:93:04:6d:d1:7d:1c:f8:2a:c4:d5:16:ec: 23:c2:12:6b:62:3e:7d:6e:85:71:eb:ad:a7:95:c1:4c:52:1d: 19:84:67:23:2f:e0:81:5a:8f:40:77:8c:12:9c:6f:41:69:4f: 35:c8:6a:8c:85:77:b3:9b:46:c8:22:45:bc:a7:e6:bb:8b:67: 0f:ea:70:53:0f:71:17:89:d9:3f:43:c9:0f:45:1e:04:2c:1a: 59:6f:ec:ae:7b:75:b3:96:69:ee:83:ad:47:93:cb:a2:70:90: 90:de:69:55:f6:b2:cc:86:d0:d2:e6:b7:ca:24:bd:02:de:37: 05:7c:88:1a:e0:e3:5d:19:13:37:48:dd:36:30:c0:2a:3f:42: ec:40:94:77:be:4f:9c:89:49:39:0b:0e:f0:e9:13:9e:d3:7d: 48:c0:ad:2e:83:4b:f8:3e:17:7f:7e:e2:18:fd:f3:ca:e7:95: 09:21:7e:08:89:97:df:74:6f:82:7b:61:aa:12:07:34:8a:d5: 52:cf:ed:aa:17:71:9a:45:16:2e:e3:31:dc:38:3d:99:1d:3b: e7:d8:54:96 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZPDR/2VWqqaiVTLATNALpB/HGsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTI2ZTEwNjVjZTZjMTAxMzBlZThjMWFkNGJkOWIxMjA5 NjFhZGQ3YWZjN2U1ODhhMmIwZmNhZDhlNDZmYTdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDt+9nW6s2kMUuAE9oauvMVi8gEL+qxWybmZLce1qnq/Svk h+oF3Ow3sebf48Yx520QjJ1vbxTtybLImGxUT/t6yKG0fMet9BvVJUITUUAsqUPo oUCDwzXdWMtjLcs8PCkShbKdU6nC8Y4hGFfdzFc1bHc7dV5qSCQ6/qx6UIGwBUIM fV3A0mpjTMcZx2U/DidLRvzyHhGH0BrX3fj/NfcUa/QqvPaZgRc18WOW0dSLuN+4 GXBm/TD3nWw9UhnkGUecXxqQtwen3sqLd/Rf1LGMnZ3N1fM9zNHCphr6mR1faf60 9nRBWnuEPht/6/JGry7OaJQP0YNZPgDSrXBKTyk/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULL28LxHTR1RGCiL+FFfETVynI1kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2YjYxMDNiLTQyYmYtNDgwNC04N2RhLTM3NGVkMjNmZmZmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8cADANBgkqhkiG9w0BAQsFAAOCAQEAEJnpbm7O9NAbN5LseQmJnMpL 1QbVLzow9TftuZTXfE4JMUBSCJbYl7xNkwRt0X0c+CrE1RbsI8ISa2I+fW6Fceut p5XBTFIdGYRnIy/ggVqPQHeMEpxvQWlPNchqjIV3s5tGyCJFvKfmu4tnD+pwUw9x F4nZP0PJD0UeBCwaWW/srnt1s5Zp7oOtR5PLonCQkN5pVfayzIbQ0ua3yiS9At43 BXyIGuDjXRkTN0jdNjDAKj9C7ECUd75PnIlJOQsO8OkTntN9SMCtLoNL+D4Xf37i GP3zyueVCSF+CImX33RvgnthqhIHNIrVUs/tqhdxmkUWLuMx3Dg9mR0759hUlg== -----END CERTIFICATE-----Generated at Fri Sep 22 19:51:40 2023 by rpki-client on console-ams.rpki-client.org