$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ce602f7-7486-45e9-a328-b819c68190d3.roa File: 7ce602f7-7486-45e9-a328-b819c68190d3.roa (raw, json) Hash identifier: /OBVWXFbZnOxliawXraZuf15M6KNk/VHWUEQ7NQqJic= Subject key identifier: F4:32:D6:F3:B9:43:AF:13:61:84:43:23:94:52:56:51:3F:B4:AA:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F9CEC750A2DE8A1C41AD21AB450EA29CF509C35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ce602f7-7486-45e9-a328-b819c68190d3.roa Signing time: Tue 29 Aug 2023 00:00:00 +0000 ROA not before: Tue 29 Aug 2023 00:00:00 +0000 ROA not after: Tue 03 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffc:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 12:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9c:ec:75:0a:2d:e8:a1:c4:1a:d2:1a:b4:50:ea:29:cf:50:9c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:00:00 2023 GMT Not After : Oct 3 23:59:59 2023 GMT Subject: serialNumber=de1d29c76b841411710c4559ad31d705a421a2dc46d80051b44c4f6ef87cec4b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ef:9a:d1:b5:e4:81:72:98:c6:52:c0:20:3c: 76:42:b6:63:c1:2c:a7:cb:34:61:35:4e:2f:41:81: 82:24:41:a5:84:ba:25:fa:d3:da:93:38:19:78:fc: b0:19:5a:3c:4a:ef:e8:35:6e:e9:7f:8f:ea:f7:67: ae:f7:d8:45:2d:c0:05:f8:ac:62:76:79:85:80:83: 64:e0:36:72:66:f7:d4:55:95:22:30:5d:8d:20:df: 0a:a1:65:69:3f:b7:a8:47:0a:39:4a:8e:87:5f:b5: 7e:7e:c1:54:73:a5:a1:20:bf:b7:34:85:68:19:72: 9c:73:f2:34:1a:50:e9:b8:10:0a:01:04:59:b8:e4: 4d:5c:bb:c5:ec:d0:e8:f7:59:a4:1d:3e:33:37:15: 00:59:e7:39:ed:95:45:b9:50:f6:9f:6e:89:a9:39: 0c:57:43:24:ff:66:58:08:fd:33:c7:57:41:ff:77: e4:69:7d:f0:90:64:b3:d7:ab:46:dd:85:ce:38:fb: ee:a3:0a:70:2e:dc:56:7e:60:15:15:d7:7e:93:a2: 33:ec:4f:47:a1:1e:f4:d4:ca:55:72:56:d8:2f:1e: 20:2d:33:4a:35:e8:40:bc:d4:ec:bb:4c:30:a4:4a: da:5f:70:c1:ac:2f:48:d7:17:75:e4:70:09:e4:99: 65:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:32:D6:F3:B9:43:AF:13:61:84:43:23:94:52:56:51:3F:B4:AA:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ce602f7-7486-45e9-a328-b819c68190d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffc:6000::/40 Signature Algorithm: sha256WithRSAEncryption 2f:e0:41:7c:0d:b0:1d:53:e6:25:8e:e3:46:ea:9d:bf:81:ac: 8a:f6:35:6a:bd:9e:05:00:36:4f:14:15:1a:6e:66:08:18:73: d6:af:5e:ef:ad:3c:4f:07:d2:e9:98:05:3e:e6:46:26:31:26: ee:11:7b:ce:19:ea:5b:b7:dc:0f:9d:ae:e6:34:ab:83:1f:80: 89:6a:90:7a:f4:20:c1:7c:bb:36:8b:8e:03:d1:f8:52:55:ff: 2c:d6:ec:fb:8a:fc:aa:57:fb:f7:57:aa:0f:d8:89:35:00:b7: 4d:01:51:b1:fd:5f:ea:41:19:74:f7:e6:6a:c7:95:38:71:85: 93:12:a0:67:42:c9:fc:44:b3:bd:2b:2d:b0:f6:55:8c:f9:a0: 0a:1d:b6:45:a3:57:95:37:36:c6:91:90:08:39:1f:28:90:95: 69:c0:1f:c9:4e:33:11:12:5d:3b:6e:e7:62:a7:63:5e:c9:a0: 93:4d:97:65:1c:84:3a:f3:ed:f6:27:51:b6:b7:19:21:05:84: 8c:18:c4:8a:63:3e:f2:7f:74:89:da:80:48:94:f0:fa:71:53: c6:e6:dd:f7:67:e3:fe:8c:aa:63:2b:35:bc:84:86:9f:d5:13: 4a:0b:56:2f:a7:ce:d5:83:46:39:09:67:5d:37:a3:5e:c9:5c: 48:57:5a:24 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP5zsdQot6KHEGtIatFDqKc9QnDUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI5MDAwMDAwWhcNMjMxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTFkMjljNzZiODQxNDExNzEwYzQ1NTlhZDMxZDcwNWE0 MjFhMmRjNDZkODAwNTFiNDRjNGY2ZWY4N2NlYzRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj75rRteSBcpjGUsAgPHZCtmPBLKfLNGE1Ti9BgYIkQaWE uiX609qTOBl4/LAZWjxK7+g1bul/j+r3Z6732EUtwAX4rGJ2eYWAg2TgNnJm99RV lSIwXY0g3wqhZWk/t6hHCjlKjodftX5+wVRzpaEgv7c0hWgZcpxz8jQaUOm4EAoB BFm45E1cu8Xs0Oj3WaQdPjM3FQBZ5zntlUW5UPafbompOQxXQyT/ZlgI/TPHV0H/ d+RpffCQZLPXq0bdhc44++6jCnAu3FZ+YBUV136TojPsT0ehHvTUylVyVtgvHiAt M0o16EC81Oy7TDCkStpfcMGsL0jXF3XkcAnkmWWzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9DLW87lDrxNhhEMjlFJWUT+0qi0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjZTYwMmY3LTc0ODYtNDVlOS1hMzI4LWI4MTljNjgxOTBkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/8YDANBgkqhkiG9w0BAQsFAAOCAQEAL+BBfA2wHVPmJY7jRuqdv4Gs ivY1ar2eBQA2TxQVGm5mCBhz1q9e7608TwfS6ZgFPuZGJjEm7hF7zhnqW7fcD52u 5jSrgx+AiWqQevQgwXy7NouOA9H4UlX/LNbs+4r8qlf791eqD9iJNQC3TQFRsf1f 6kEZdPfmaseVOHGFkxKgZ0LJ/ESzvSstsPZVjPmgCh22RaNXlTc2xpGQCDkfKJCV acAfyU4zERJdO27nYqdjXsmgk02XZRyEOvPt9idRtrcZIQWEjBjEimM+8n90idqA SJTw+nFTxubd92fj/oyqYys1vISGn9UTSgtWL6fO1YNGOQlnXTejXslcSFdaJA== -----END CERTIFICATE-----Generated at Tue Aug 29 00:34:12 2023 by rpki-client on console-fra.rpki-client.org