$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa File: 7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa (raw, json) Hash identifier: ztLgSkYIo/bRjITlc+sWia0eSIP4FnZZacskjvMK70Q= Subject key identifier: 85:BA:98:8A:7C:14:82:D4:A4:8E:B0:97:D8:45:FE:02:81:09:98:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D1C3E04DCDCC8CCE9E676C3D7DFC75B32A1E387 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1c:3e:04:dc:dc:c8:cc:e9:e6:76:c3:d7:df:c7:5b:32:a1:e3:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=b8730e41c5af9c912efe8b32850b4807a93e7c90501a97edfa0353e634eb8bde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:96:1d:82:66:23:68:ce:65:0c:5d:fe:de:b6: 22:e9:a3:7b:f2:6a:6f:4d:d8:93:1e:26:c9:3a:81: 6f:85:97:8d:bf:e6:0e:c4:ac:f2:fb:19:37:63:53: 53:9c:a0:0d:9c:eb:d5:34:27:dd:7d:e2:a4:a1:57: 6b:99:0c:4b:8c:57:f0:e0:80:0d:06:f8:38:89:0f: cd:10:a2:75:45:e2:67:4c:73:2b:29:0e:56:8d:04: 97:93:a2:9b:dd:a2:2a:5e:a9:c6:df:06:c5:82:a7: 43:ee:4f:01:9b:be:7f:5c:a3:81:f8:5e:10:b6:21: c7:76:58:88:d4:3d:99:cc:c8:45:90:11:9b:e6:7d: 26:6e:fc:94:af:0c:f7:59:41:54:30:de:d1:e3:21: b8:77:b2:76:41:35:ef:d2:7f:3b:44:c4:6c:67:b5: e4:8b:b6:30:ff:64:b9:de:13:2e:fb:39:55:e9:40: d8:47:c0:20:17:8e:e8:3b:f8:8f:59:4b:84:0b:83: 63:b5:86:33:1e:76:e4:e9:d2:7a:e4:0b:3b:bb:ad: 45:4e:9e:b2:8c:53:26:dd:14:f5:f3:10:95:8e:24: 22:8b:0c:68:3f:14:bd:4b:76:ce:0d:17:9b:eb:40: 9a:10:56:0f:23:b4:2b:43:a1:d7:6c:0b:1e:ff:c6: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BA:98:8A:7C:14:82:D4:A4:8E:B0:97:D8:45:FE:02:81:09:98:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:c000::/40 Signature Algorithm: sha256WithRSAEncryption cd:17:b0:a9:1a:4a:fd:8e:da:f3:36:b3:ff:e1:ed:64:93:b0: 6e:a9:d8:3f:5f:b0:48:4e:d1:2f:33:c1:36:e9:c4:36:57:7d: 67:28:1d:93:86:ce:f7:f7:cb:7a:c3:20:8f:ec:05:af:b2:38: ad:a5:bb:ea:67:f6:08:b3:b3:9c:1b:4d:9e:33:0c:1f:f5:f1: d5:e7:5c:1d:3e:16:e5:64:3c:56:95:1e:6c:41:d5:96:5c:75: b4:0b:75:3a:a3:a4:8a:b6:38:4e:f9:e7:13:de:be:f3:d7:da: 22:d7:a5:de:d9:d0:ee:0c:e3:c3:80:56:70:a5:e3:83:c5:4b: b9:d6:fa:e0:98:a2:c5:1e:1f:2f:0a:b9:68:21:31:44:bd:55: 4f:85:ff:bd:a9:5d:c8:61:b9:ff:80:6a:08:01:84:b5:17:80: 65:95:70:45:d0:f8:6d:f6:40:be:09:64:24:60:5c:84:b1:6a: 27:1e:4d:8c:c4:ec:17:31:e2:94:02:a6:f5:c9:9f:2a:33:3a: 53:c1:81:58:53:22:be:e6:e7:7c:77:e1:88:df:62:2a:b4:bb: 71:31:7d:a7:c5:c1:6f:26:4a:6d:ea:4d:9e:4b:6f:f7:cc:e2: 86:f8:77:9d:ba:88:d5:ef:3b:dd:03:b1:1f:b8:98:c2:a0:68: 49:24:93:15 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPRw+BNzcyMzp5nbD19/HWzKh44cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODczMGU0MWM1YWY5YzkxMmVmZThiMzI4NTBiNDgwN2E5 M2U3YzkwNTAxYTk3ZWRmYTAzNTNlNjM0ZWI4YmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKlh2CZiNozmUMXf7etiLpo3vyam9N2JMeJsk6gW+Fl42/ 5g7ErPL7GTdjU1OcoA2c69U0J9194qShV2uZDEuMV/DggA0G+DiJD80QonVF4mdM cyspDlaNBJeTopvdoipeqcbfBsWCp0PuTwGbvn9co4H4XhC2Icd2WIjUPZnMyEWQ EZvmfSZu/JSvDPdZQVQw3tHjIbh3snZBNe/SfztExGxnteSLtjD/ZLneEy77OVXp QNhHwCAXjug7+I9ZS4QLg2O1hjMeduTp0nrkCzu7rUVOnrKMUybdFPXzEJWOJCKL DGg/FL1Lds4NF5vrQJoQVg8jtCtDoddsCx7/xnUxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhbqYinwUgtSkjrCX2EX+AoEJmKswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ODhkMzZjLTExYTEtNGI3Zi1hZDllLTcxYWY2YjFmYThiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xwDANBgkqhkiG9w0BAQsFAAOCAQEAzRewqRpK/Y7a8zaz/+HtZJOw bqnYP1+wSE7RLzPBNunENld9Zygdk4bO9/fLesMgj+wFr7I4raW76mf2CLOznBtN njMMH/Xx1edcHT4W5WQ8VpUebEHVllx1tAt1OqOkirY4TvnnE96+89faItel3tnQ 7gzjw4BWcKXjg8VLudb64JiixR4fLwq5aCExRL1VT4X/valdyGG5/4BqCAGEtReA ZZVwRdD4bfZAvglkJGBchLFqJx5NjMTsFzHilAKm9cmfKjM6U8GBWFMivubnfHfh iN9iKrS7cTF9p8XBbyZKbepNnktv98zihvh3nbqI1e873QOxH7iYwqBoSSSTFQ== -----END CERTIFICATE-----Generated at Fri Sep 22 20:24:24 2023 by rpki-client on console-ams.rpki-client.org