$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88550d83-7cf6-4241-8cbd-0c1b7e820c36.roa File: 88550d83-7cf6-4241-8cbd-0c1b7e820c36.roa (raw, json) Hash identifier: 4Fz2QXu1sHz743p8qGrMST67ilXBXHMLOOHqeogzOLY= Subject key identifier: 8A:9C:41:E9:C9:AC:E3:BA:4B:A2:E6:A1:54:23:A2:94:BF:AA:A5:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 393DC9C0939FE8AE0001426D99207CD5577D2E47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88550d83-7cf6-4241-8cbd-0c1b7e820c36.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 11:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3d:c9:c0:93:9f:e8:ae:00:01:42:6d:99:20:7c:d5:57:7d:2e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=893105dc850b9da9ca2f7a643bc80b39e9015e0db47a1f88e92553c3f51394e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:8c:ec:12:71:72:05:f1:c8:98:08:b7:b5:b2: 25:71:12:ab:7d:8e:16:cc:41:b0:7b:82:df:73:8d: bc:9e:7b:ef:23:3e:f4:c4:4a:25:98:b8:a6:b0:ad: 9b:59:00:aa:e7:8b:3a:ff:2d:ca:1f:aa:f6:9a:21: 46:43:33:8a:41:f1:13:22:51:13:be:e8:16:e7:44: 55:c7:3e:24:63:2e:e1:65:5c:f1:7b:89:21:ab:92: 33:9b:d5:63:8d:2e:1e:20:00:3f:e7:7a:36:59:f2: bc:26:a4:f1:d1:bd:c0:5d:dd:d1:78:2d:15:24:5d: ce:ad:b3:db:7a:7b:c3:3e:29:2d:50:0a:4c:1e:f8: f2:36:03:ea:50:7f:60:cc:8f:78:e2:6c:4c:ab:9f: e4:34:36:3b:60:5b:71:0f:eb:19:f9:d7:90:58:94: a5:fc:75:ce:ee:b8:9d:d0:1a:30:68:0f:c5:3e:dc: 8c:b9:f1:cb:2b:14:b0:5c:67:8f:9e:c9:05:62:66: ff:59:e2:2c:9f:9d:b9:8c:d2:1f:80:10:82:72:e1: 4d:d5:54:ee:a0:fb:4f:56:d6:ec:75:53:20:56:21: f6:c6:90:a9:e4:dd:3c:5a:9d:13:fe:98:f4:db:1d: 2f:2e:c7:73:cd:f0:f5:30:8d:22:af:dd:74:ff:95: 2f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9C:41:E9:C9:AC:E3:BA:4B:A2:E6:A1:54:23:A2:94:BF:AA:A5:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88550d83-7cf6-4241-8cbd-0c1b7e820c36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/34 Signature Algorithm: sha256WithRSAEncryption 65:99:68:f5:06:f9:8c:f1:b5:cb:50:cf:f4:fc:1a:b2:33:ff: b0:aa:18:a8:91:77:c4:73:c3:00:01:27:cd:d7:f6:9c:34:8f: 6d:80:a9:b6:a6:6c:67:3c:bd:11:29:17:4b:7a:8a:5e:76:de: 11:18:ff:af:2d:d1:30:58:b1:78:f7:b4:98:37:4e:01:80:3d: 61:51:cc:f6:5a:e1:e0:fd:80:00:40:ac:2c:1a:d1:bb:f9:24: 42:c5:f1:14:62:10:43:42:13:37:23:ec:e7:14:69:31:3f:3f: d4:df:a3:2a:51:79:78:52:ba:b1:74:80:a2:f5:a8:1a:46:de: af:b8:69:79:24:b2:70:c8:31:dc:fa:36:59:5c:fd:c4:25:96: 8e:20:a2:8c:7d:b4:81:f1:56:f2:50:d1:6b:eb:0e:d1:62:f0: 9e:9b:40:b1:d8:26:99:54:88:d5:51:e4:a1:39:97:22:ec:f9: fd:85:20:40:11:87:fe:b9:dc:a5:8b:d8:c4:69:a6:e7:68:6c: 1e:df:ef:1e:51:ad:65:c9:28:80:62:d3:b7:8f:d2:dc:32:a3: 1a:fc:25:86:26:bf:b7:fa:d6:ba:60:7d:16:b2:45:3c:aa:33: 8f:5b:40:09:ec:ec:99:9b:83:a3:44:d0:0f:22:8a:e8:4b:c7: fd:4d:d1:2d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOT3JwJOf6K4AAUJtmSB81Vd9LkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTMxMDVkYzg1MGI5ZGE5Y2EyZjdhNjQzYmM4MGIzOWU5 MDE1ZTBkYjQ3YTFmODhlOTI1NTNjM2Y1MTM5NGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEjOwScXIF8ciYCLe1siVxEqt9jhbMQbB7gt9zjbyee+8j PvTESiWYuKawrZtZAKrnizr/LcofqvaaIUZDM4pB8RMiURO+6BbnRFXHPiRjLuFl XPF7iSGrkjOb1WONLh4gAD/nejZZ8rwmpPHRvcBd3dF4LRUkXc6ts9t6e8M+KS1Q Ckwe+PI2A+pQf2DMj3jibEyrn+Q0NjtgW3EP6xn515BYlKX8dc7uuJ3QGjBoD8U+ 3Iy58csrFLBcZ4+eyQViZv9Z4iyfnbmM0h+AEIJy4U3VVO6g+09W1ux1UyBWIfbG kKnk3TxanRP+mPTbHS8ux3PN8PUwjSKv3XT/lS8fAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUipxB6cms47pLouahVCOilL+qpZowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4NTUwZDgzLTdjZjYtNDI0MS04Y2JkLTBjMWI3ZTgyMGMzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAZZlo9Qb5jPG1y1DP9PwasjP/ sKoYqJF3xHPDAAEnzdf2nDSPbYCptqZsZzy9ESkXS3qKXnbeERj/ry3RMFixePe0 mDdOAYA9YVHM9lrh4P2AAECsLBrRu/kkQsXxFGIQQ0ITNyPs5xRpMT8/1N+jKlF5 eFK6sXSAovWoGkber7hpeSSycMgx3Po2WVz9xCWWjiCijH20gfFW8lDRa+sO0WLw nptAsdgmmVSI1VHkoTmXIuz5/YUgQBGH/rncpYvYxGmm52hsHt/vHlGtZckogGLT t4/S3DKjGvwlhia/t/rWumB9FrJFPKozj1tACezsmZuDo0TQDyKK6EvH/U3RLQ== -----END CERTIFICATE-----Generated at Mon Aug 28 23:15:01 2023 by rpki-client on console-fra.rpki-client.org