$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa File: 86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa (raw, json) Hash identifier: jrApe8G2AvfuH7CCCFZr/XOb+jMAbdzKNZjcAgeQE24= Subject key identifier: 06:F4:1D:5C:2A:C7:45:3C:63:3D:90:3F:99:01:56:87:11:E1:A0:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02C156693A26F30B19CB25807D25E3969E761D50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c1:56:69:3a:26:f3:0b:19:cb:25:80:7d:25:e3:96:9e:76:1d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=da628f8e08e746defebf390c7b4e4003b8ce8a33c5d1a1064037513997b4624d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:91:9b:fb:1b:6a:c3:33:76:0c:4c:df:fc:9c: ea:7b:ac:e7:bd:27:e6:e4:ed:7a:bb:51:a4:d2:db: d7:67:62:54:88:12:bd:a5:83:bf:4a:dd:b9:4f:68: 8e:09:cb:1d:4f:3b:eb:07:c2:8c:48:03:62:ba:6e: 03:27:fe:fd:74:ac:47:e6:2b:2b:f1:67:40:a8:1b: c7:45:53:c6:6e:41:f4:fb:51:30:fd:5d:bc:89:f7: 52:26:8d:17:d0:78:7d:c9:4a:c8:f1:24:2c:65:4d: d8:d8:37:0a:6c:ea:37:26:53:5d:5c:08:e2:3d:9e: d3:f1:7c:5c:9b:e9:b8:bd:7e:b9:68:47:a0:b0:b4: ab:0a:2e:2a:08:16:31:8f:75:47:98:6e:ef:ef:37: 0f:75:6e:06:f3:a2:5c:3d:54:93:5d:05:78:94:21: a8:9f:4e:c7:7d:ec:10:91:58:a8:4f:9a:e6:d2:a2: 32:9f:e9:2a:d2:23:a2:e2:80:35:8b:e8:4d:d7:d7: 03:73:da:f7:63:40:b2:03:fe:17:76:45:18:f4:2f: 32:6c:1f:61:8e:6a:9a:25:23:95:68:9e:97:e0:da: 6b:1e:f1:b4:9e:b3:c3:72:ae:08:eb:3c:02:9f:20: 0b:7a:0d:f8:45:2e:6a:58:49:9e:d1:b7:8b:a2:c3: 88:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F4:1D:5C:2A:C7:45:3C:63:3D:90:3F:99:01:56:87:11:E1:A0:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:4000::/40 Signature Algorithm: sha256WithRSAEncryption 44:64:15:a0:b1:5a:92:17:34:b8:f6:e3:1d:70:17:ce:ec:d7: 9d:75:0e:f2:44:e2:2f:d5:39:8f:63:32:15:5d:e3:5e:17:29: 04:dd:04:cb:44:65:11:0c:b7:c5:8f:02:4e:44:af:ba:1f:41: e9:cd:29:a7:2e:2e:05:67:32:9f:17:d7:06:5b:16:91:12:a6: 40:3c:43:ae:73:29:50:8a:69:76:af:8e:15:73:8b:6b:5d:1d: f0:72:8b:50:f2:fe:00:c3:07:a7:0a:da:3c:d4:5a:8f:aa:af: 3d:cf:76:01:df:c6:49:36:e1:18:df:af:7b:38:48:1b:58:d6: fc:b3:83:09:19:6b:0d:f3:03:58:bd:2e:c8:00:56:50:89:07: 13:3a:49:10:46:f8:e4:9c:c5:50:66:4f:60:e7:15:59:23:33: a3:64:70:eb:04:91:62:9c:c1:d1:df:50:34:82:59:d4:f0:e7: b1:cf:e3:d4:02:e3:09:1c:99:69:65:c8:21:c1:47:0f:5b:ac: e2:98:32:96:9c:3b:be:1a:13:6c:c2:b1:0f:9b:0a:cf:77:a6: 9c:b5:51:97:a8:91:27:89:09:bd:62:b3:d1:44:a7:7b:60:bb: 2d:ed:d9:46:94:98:b0:e9:e1:6c:06:ff:27:74:2d:ac:d2:10: 2c:f6:26:86 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAsFWaTom8wsZyyWAfSXjlp52HVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTYyOGY4ZTA4ZTc0NmRlZmViZjM5MGM3YjRlNDAwM2I4 Y2U4YTMzYzVkMWExMDY0MDM3NTEzOTk3YjQ2MjRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUkZv7G2rDM3YMTN/8nOp7rOe9J+bk7Xq7UaTS29dnYlSI Er2lg79K3blPaI4Jyx1PO+sHwoxIA2K6bgMn/v10rEfmKyvxZ0CoG8dFU8ZuQfT7 UTD9XbyJ91ImjRfQeH3JSsjxJCxlTdjYNwps6jcmU11cCOI9ntPxfFyb6bi9frlo R6CwtKsKLioIFjGPdUeYbu/vNw91bgbzolw9VJNdBXiUIaifTsd97BCRWKhPmubS ojKf6SrSI6LigDWL6E3X1wNz2vdjQLID/hd2RRj0LzJsH2GOapolI5Vonpfg2mse 8bSes8NyrgjrPAKfIAt6DfhFLmpYSZ7Rt4uiw4gPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBvQdXCrHRTxjPZA/mQFWhxHhoEUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2YzE1Y2M0LTE1ZGUtNGZjNC04MGZkLWE5N2FjZTVjN2U1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gQDANBgkqhkiG9w0BAQsFAAOCAQEARGQVoLFakhc0uPbjHXAXzuzX nXUO8kTiL9U5j2MyFV3jXhcpBN0Ey0RlEQy3xY8CTkSvuh9B6c0ppy4uBWcynxfX BlsWkRKmQDxDrnMpUIppdq+OFXOLa10d8HKLUPL+AMMHpwraPNRaj6qvPc92Ad/G STbhGN+vezhIG1jW/LODCRlrDfMDWL0uyABWUIkHEzpJEEb45JzFUGZPYOcVWSMz o2Rw6wSRYpzB0d9QNIJZ1PDnsc/j1ALjCRyZaWXIIcFHD1us4pgylpw7vhoTbMKx D5sKz3emnLVRl6iRJ4kJvWKz0USne2C7Le3ZRpSYsOnhbAb/J3QtrNIQLPYmhg== -----END CERTIFICATE-----Generated at Sat Sep 23 00:46:20 2023 by rpki-client on console-fra.rpki-client.org