$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa File: 6e9ea69d-4b33-4a85-894c-5620e610e709.roa (raw, json) Hash identifier: BNDseh8oar5jnP7iWfKChO9AXottVXOy1+QRCzjM+EA= Subject key identifier: 0E:95:17:B0:A4:5B:D1:26:24:6A:32:51:D2:AD:FE:FA:FC:9F:BF:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47FAAB29E18D74AEDC6E6A38845A1035F0A62796 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:85e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:fa:ab:29:e1:8d:74:ae:dc:6e:6a:38:84:5a:10:35:f0:a6:27:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=c0370c7116f01d8332a3de941c0517b953cb155fbf6ae97a52027fde3281893f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:06:d9:7f:e9:42:1b:ed:ac:4b:de:52:85:43: 55:71:5f:15:56:c1:ca:e1:22:25:9b:b8:04:41:4c: c2:2c:e6:d1:bd:fa:84:39:8d:a1:4a:a3:2e:44:48: 22:1b:58:f3:14:1e:e3:3a:63:6c:5b:9b:bf:83:83: 30:a1:f9:10:40:a7:fc:0a:3c:40:ad:29:7b:ef:85: 41:29:fe:49:f7:97:31:e5:2c:94:55:88:69:21:fe: f3:44:26:90:9d:4f:79:52:77:7e:59:23:cb:12:b7: 37:99:3d:ba:cb:45:e2:7a:c1:b2:0f:4e:2f:a3:e9: 6f:5c:24:af:fb:c6:2a:3e:d1:60:a2:d5:50:d6:be: 66:fd:e4:9a:fa:42:55:b4:73:97:a6:e3:ec:29:af: 9c:e2:c7:42:a1:fa:35:a3:e2:30:32:ee:38:bb:b7: 54:9c:a9:40:64:4e:7d:0b:c1:6a:cc:1e:f0:f2:18: c7:75:a9:cb:8e:66:41:4e:21:e1:fd:32:63:22:d1: df:f2:8b:c4:f2:ec:dc:3a:a3:79:a4:2b:9d:bb:64: b1:12:8f:95:24:54:66:3c:32:81:69:40:bb:31:23: 4d:8d:55:cc:85:39:08:c2:e4:a7:4d:11:26:ad:56: 4e:78:06:ea:c7:87:d1:0e:2c:d2:81:f7:6a:29:b2: c7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:95:17:B0:A4:5B:D1:26:24:6A:32:51:D2:AD:FE:FA:FC:9F:BF:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:85e8::/48 Signature Algorithm: sha256WithRSAEncryption 1a:88:57:5b:ab:82:5d:4e:ad:ec:0c:61:d4:f8:d1:48:b4:ae: 7c:1c:48:f5:bd:f3:3e:d5:15:59:84:25:bc:39:ef:3c:5f:12: 8e:1f:aa:f4:a2:53:3f:bc:22:54:c2:08:5d:ea:2f:b6:7b:43: 33:5f:d3:f8:db:4c:41:d8:07:2c:ad:9c:8b:52:f0:3b:18:be: df:bb:d7:5c:37:38:7b:04:9a:46:cc:95:47:89:96:b7:06:96: a8:86:1e:30:c6:99:5a:e6:a7:2f:67:0d:46:b5:f3:5a:dc:7e: d1:e6:1d:89:ae:f0:ab:57:ac:52:74:94:e0:4f:4d:32:7a:98: 2c:ef:bc:cd:4a:1f:12:9b:bb:20:cf:28:68:28:29:92:f4:81: f5:00:10:a1:45:4f:25:81:fc:5d:19:68:ce:22:06:c9:d3:19: 2a:aa:8e:4c:ce:fd:00:eb:d3:86:db:a5:70:7c:00:78:6c:d8: 5c:8b:63:f4:f3:9e:7c:b2:36:6b:6b:bf:c4:1e:93:c0:31:d4: dc:a2:1b:b4:f4:fe:03:dc:d7:43:30:ed:94:96:0a:ea:84:58: b7:44:4b:2e:7b:8c:e2:9b:b8:02:43:61:ec:43:f5:73:c3:13: 3c:af:9e:db:49:0b:5d:68:cc:a2:ef:5f:f8:79:19:40:88:fc: 94:8a:b4:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR/qrKeGNdK7cbmo4hFoQNfCmJ5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDM3MGM3MTE2ZjAxZDgzMzJhM2RlOTQxYzA1MTdiOTUz Y2IxNTVmYmY2YWU5N2E1MjAyN2ZkZTMyODE4OTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHBtl/6UIb7axL3lKFQ1VxXxVWwcrhIiWbuARBTMIs5tG9 +oQ5jaFKoy5ESCIbWPMUHuM6Y2xbm7+DgzCh+RBAp/wKPECtKXvvhUEp/kn3lzHl LJRViGkh/vNEJpCdT3lSd35ZI8sStzeZPbrLReJ6wbIPTi+j6W9cJK/7xio+0WCi 1VDWvmb95Jr6QlW0c5em4+wpr5zix0Kh+jWj4jAy7ji7t1ScqUBkTn0LwWrMHvDy GMd1qcuOZkFOIeH9MmMi0d/yi8Ty7Nw6o3mkK527ZLESj5UkVGY8MoFpQLsxI02N VcyFOQjC5KdNESatVk54BurHh9EOLNKB92opssfFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDpUXsKRb0SYkajJR0q3++vyfv8owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlOWVhNjlkLTRiMzMtNGE4NS04OTRjLTU2MjBlNjEwZTcwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hegwDQYJKoZIhvcNAQELBQADggEBABqIV1urgl1OrewMYdT40Ui0 rnwcSPW98z7VFVmEJbw57zxfEo4fqvSiUz+8IlTCCF3qL7Z7QzNf0/jbTEHYByyt nItS8DsYvt+711w3OHsEmkbMlUeJlrcGlqiGHjDGmVrmpy9nDUa181rcftHmHYmu 8KtXrFJ0lOBPTTJ6mCzvvM1KHxKbuyDPKGgoKZL0gfUAEKFFTyWB/F0ZaM4iBsnT GSqqjkzO/QDr04bbpXB8AHhs2FyLY/TznnyyNmtrv8Qek8Ax1NyiG7T0/gPc10Mw 7ZSWCuqEWLdESy57jOKbuAJDYexD9XPDEzyvnttJC11ozKLvX/h5GUCI/JSKtAM= -----END CERTIFICATE-----Generated at Fri Sep 22 16:30:53 2023 by rpki-client on console-fra.rpki-client.org