$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa File: 895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa (raw, json) Hash identifier: Hj95arLVfrmVp8EyBMrcz8gq7NnyZSoWVCzttLwr6OQ= Subject key identifier: B6:91:18:FD:3F:A0:17:DD:F7:10:71:D6:8E:84:90:AD:2C:D6:B7:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B2032039A119D646816EBE083A44999348CAA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8508::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:20:32:03:9a:11:9d:64:68:16:eb:e0:83:a4:49:99:34:8c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=a597f5a02e12fd5c6a624536b89e6aed4dccc80c47e64cd102432bfea801b9c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:a6:18:5b:0d:91:37:98:db:fe:fb:bf:0b: 58:52:17:89:b0:66:3f:87:63:34:5f:af:27:fa:ee: b3:80:9d:ee:1a:21:b2:76:50:94:57:50:9d:3d:05: b0:5f:eb:2d:85:40:e3:d0:7a:64:fc:7c:0a:ab:5a: a6:5f:9e:23:81:28:e0:21:d1:4d:41:10:d0:eb:6c: 6d:f7:d5:9b:b1:5f:cf:3c:4a:60:d4:89:fb:48:75: 04:b5:c7:f9:ce:5c:03:3e:1e:0b:9d:1f:13:23:d3: 85:1e:ec:85:fc:52:06:ad:7e:61:bc:e1:c0:50:27: a4:60:20:f8:6c:b5:d0:93:21:1f:0e:8e:6f:53:6b: ea:b9:9b:65:5a:f8:55:b3:fb:91:5f:8f:28:e5:b9: 24:1e:69:e3:36:83:bf:a3:33:01:2f:42:91:8e:d2: ce:c7:bd:16:30:29:be:5f:52:ed:6d:d1:31:a4:64: f0:bb:f2:4c:26:0b:3e:d3:13:c0:c4:26:a3:6d:39: ce:ef:67:ee:28:eb:63:3c:ce:07:9c:d5:b0:ba:6b: 60:19:97:09:a7:e8:e0:83:f7:8e:7b:a4:8a:54:c0: 55:a8:6f:03:4d:2b:e1:46:06:18:a9:21:27:51:81: 5e:81:b2:07:4c:a7:49:2b:cc:22:39:4c:0d:6c:fd: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:91:18:FD:3F:A0:17:DD:F7:10:71:D6:8E:84:90:AD:2C:D6:B7:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8508::/48 Signature Algorithm: sha256WithRSAEncryption 66:0b:73:d1:b0:2d:15:0b:42:f9:37:74:e2:c2:36:50:4e:00: 8c:95:54:cf:da:9e:2c:89:ab:24:9b:d3:6a:fb:01:75:e4:2e: 1f:70:30:ee:51:ed:43:b4:59:af:eb:dc:12:f6:4f:4a:d4:c6: c3:16:db:73:e6:23:e1:24:55:1e:5c:ed:e6:8d:e8:c0:a6:d3: 19:a1:38:b3:89:07:5d:dc:9c:02:a1:09:cd:8c:40:65:b1:45: 46:68:d9:93:92:31:85:22:02:48:35:78:3d:90:01:d2:d7:ec: e5:46:94:1b:c9:ee:37:e7:14:a2:09:48:dc:ec:de:88:11:f8: 5d:ef:16:4a:6d:3a:dc:9e:46:c2:b7:46:bf:33:da:5a:f9:2c: 04:05:87:2e:19:b4:8c:b9:ca:6f:0b:20:50:3a:dd:90:18:c4: 36:d7:5e:5b:29:94:bd:1e:b3:0a:9b:e0:5b:fb:68:2d:18:a1: 68:59:86:40:f1:45:ad:f8:10:eb:31:e0:a3:4b:8a:54:a6:05: 06:89:c3:5b:24:8e:fd:83:f0:ef:55:68:6b:de:61:d0:51:e4: 79:c2:14:1f:a1:81:a8:6d:d6:34:9b:10:8e:24:7e:d4:c8:3a: 8b:8f:39:c2:c6:81:78:46:0f:c8:75:33:c7:3b:47:80:07:7e: f9:df:1c:ab -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITKyAyA5oRnWRoFuvgg6RJmTSMqjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yMzA5MjIwMDAwMDBaFw0yMzEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQGE1OTdmNWEwMmUxMmZkNWM2YTYyNDUzNmI4OWU2YWVkNGRj Y2M4MGM0N2U2NGNkMTAyNDMyYmZlYTgwMWI5YzAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALV2phhbDZE3mNv++78LWFIXibBmP4djNF+vJ/rus4Cd7hoh snZQlFdQnT0FsF/rLYVA49B6ZPx8Cqtapl+eI4Eo4CHRTUEQ0OtsbffVm7FfzzxK YNSJ+0h1BLXH+c5cAz4eC50fEyPThR7shfxSBq1+YbzhwFAnpGAg+Gy10JMhHw6O b1Nr6rmbZVr4VbP7kV+PKOW5JB5p4zaDv6MzAS9CkY7Szse9FjApvl9S7W3RMaRk 8LvyTCYLPtMTwMQmo205zu9n7ijrYzzOB5zVsLprYBmXCafo4IP3jnukilTAVahv A00r4UYGGKkhJ1GBXoGyB0ynSSvMIjlMDWz9KIUCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBS2kRj9P6AX3fcQcdaOhJCtLNa3CDAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvODk1YzgwMjUtMjNiZS00OGY2LWFhMGQtOGY3NjFiMWM1YmIxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYAH/2FCDANBgkqhkiG9w0BAQsFAAOCAQEAZgtz0bAtFQtC+Td04sI2UE4A jJVUz9qeLImrJJvTavsBdeQuH3Aw7lHtQ7RZr+vcEvZPStTGwxbbc+Yj4SRVHlzt 5o3owKbTGaE4s4kHXdycAqEJzYxAZbFFRmjZk5IxhSICSDV4PZAB0tfs5UaUG8nu N+cUoglI3OzeiBH4Xe8WSm063J5GwrdGvzPaWvksBAWHLhm0jLnKbwsgUDrdkBjE NtdeWymUvR6zCpvgW/toLRihaFmGQPFFrfgQ6zHgo0uKVKYFBonDWySO/YPw71Vo a95h0FHkecIUH6GBqG3WNJsQjiR+1Mg6i485wsaBeEYPyHUzxztHgAd++d8cqw== -----END CERTIFICATE-----Generated at Fri Sep 22 21:28:00 2023 by rpki-client on console-ams.rpki-client.org