$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97cde7c4-6669-4413-a7f3-d5e5482cb671.roa File: 97cde7c4-6669-4413-a7f3-d5e5482cb671.roa (raw, json) Hash identifier: JFcB23trtgaQsr72/TZe6e+cH9nZbU9Ms3f0COljbLw= Subject key identifier: AA:98:9C:1F:D2:64:9F:A9:70:73:FE:B4:1D:8B:51:9F:F8:93:E8:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C6F0A72EDD328335531D6D7BDCF98462A321DA3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97cde7c4-6669-4413-a7f3-d5e5482cb671.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:6f:0a:72:ed:d3:28:33:55:31:d6:d7:bd:cf:98:46:2a:32:1d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=43739c607e409f585c991328762259891fe05d095f27e612d61143808ee59398, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3d:5d:6b:ab:c7:11:7e:3a:b4:17:44:e6:f8: f8:7c:78:35:c3:b1:6d:cb:9a:2d:4d:d3:1e:8f:65: dc:35:3a:bc:a8:b5:9c:d4:22:fd:b8:db:ed:4f:3e: a5:d9:25:1a:a0:94:e1:c2:ad:69:32:20:ca:88:8c: e6:26:1e:c2:b5:e4:92:e7:ae:4b:0d:2b:48:dd:9d: e7:dc:40:49:01:d4:7b:4c:20:20:05:5f:c9:ab:e9: 3b:da:34:08:b2:ca:46:41:b0:9c:f8:10:9f:a4:60: 15:91:91:a9:66:2f:78:22:32:d6:09:30:18:30:7d: 0a:dd:9c:33:64:65:dc:1e:de:6e:87:2a:a4:4f:18: fb:e2:fa:30:58:70:31:f7:98:5e:dd:18:49:22:8d: 27:8a:eb:bd:8d:87:fe:56:e1:73:41:6d:62:dc:6b: 0a:76:90:4c:06:2c:87:c5:cd:71:06:3c:8b:d0:d6: d0:9d:8f:e1:27:a8:5f:39:85:0b:4e:3d:d9:55:7b: ed:d1:80:86:35:d5:c6:ff:8c:9a:f7:0a:64:c6:3e: ec:04:ea:97:3c:92:39:83:b1:cb:04:9f:da:1e:d2: dd:7e:ec:f7:a3:6e:76:ee:b4:55:4b:1d:5e:02:f6: 4d:6e:87:05:bb:9c:a4:d9:de:d2:e4:9b:b3:66:af: 05:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:98:9C:1F:D2:64:9F:A9:70:73:FE:B4:1D:8B:51:9F:F8:93:E8:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97cde7c4-6669-4413-a7f3-d5e5482cb671.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:a400::/40 Signature Algorithm: sha256WithRSAEncryption c1:90:11:cb:b6:12:77:38:9a:c6:5f:9d:79:c9:ed:57:2c:05: 23:37:57:28:11:5d:70:0c:8b:e9:83:d2:87:bb:4f:ea:b4:ae: 57:7a:b4:01:7e:21:08:52:b5:be:3c:7e:82:1e:30:ee:f0:91: 31:62:b7:0d:b6:89:a2:49:ce:e0:76:12:42:87:4a:4b:8e:f2: 9e:9f:ed:58:78:c5:59:05:41:06:6a:6c:5f:ed:a1:5a:83:73: e8:d9:4d:c8:18:5c:bd:9e:01:cd:7d:37:55:06:7a:05:61:70: 55:67:c7:62:3f:7a:ab:10:72:67:e7:c8:b5:f7:3d:36:22:46: 94:36:a0:09:01:87:5f:28:c7:7d:89:ca:1b:48:58:fa:fd:56: 4f:33:ad:a9:41:ba:f4:b6:89:a5:2f:6e:1c:87:8b:fd:c0:63: 36:e3:9b:4a:84:49:1c:e7:10:dc:d9:fe:fe:a0:ee:28:70:cc: 8a:3b:23:f2:47:27:20:79:09:b2:f1:88:98:1e:91:96:06:15: 4e:87:ed:3e:f6:44:80:37:ce:e3:57:28:27:d5:36:da:f6:39: fc:fd:d8:35:b1:60:a5:e0:0c:4f:c5:d3:49:63:a8:7f:c6:f5: ca:91:e3:89:39:bb:2c:96:b1:06:15:58:68:ed:11:e0:42:f3: 6c:3f:35:bf -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXG8Kcu3TKDNVMdbXvc+YRioyHaMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzczOWM2MDdlNDA5ZjU4NWM5OTEzMjg3NjIyNTk4OTFm ZTA1ZDA5NWYyN2U2MTJkNjExNDM4MDhlZTU5Mzk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXPV1rq8cRfjq0F0Tm+Ph8eDXDsW3Lmi1N0x6PZdw1Oryo tZzUIv242+1PPqXZJRqglOHCrWkyIMqIjOYmHsK15JLnrksNK0jdnefcQEkB1HtM ICAFX8mr6TvaNAiyykZBsJz4EJ+kYBWRkalmL3giMtYJMBgwfQrdnDNkZdwe3m6H KqRPGPvi+jBYcDH3mF7dGEkijSeK672Nh/5W4XNBbWLcawp2kEwGLIfFzXEGPIvQ 1tCdj+EnqF85hQtOPdlVe+3RgIY11cb/jJr3CmTGPuwE6pc8kjmDscsEn9oe0t1+ 7PejbnbutFVLHV4C9k1uhwW7nKTZ3tLkm7NmrwUjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqpicH9Jkn6lwc/60HYtRn/iT6EUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3Y2RlN2M0LTY2NjktNDQxMy1hN2YzLWQ1ZTU0ODJjYjY3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9hpDANBgkqhkiG9w0BAQsFAAOCAQEAwZARy7YSdziaxl+decntVywF IzdXKBFdcAyL6YPSh7tP6rSuV3q0AX4hCFK1vjx+gh4w7vCRMWK3DbaJoknO4HYS QodKS47ynp/tWHjFWQVBBmpsX+2hWoNz6NlNyBhcvZ4BzX03VQZ6BWFwVWfHYj96 qxByZ+fItfc9NiJGlDagCQGHXyjHfYnKG0hY+v1WTzOtqUG69LaJpS9uHIeL/cBj NuObSoRJHOcQ3Nn+/qDuKHDMijsj8kcnIHkJsvGImB6RlgYVToftPvZEgDfO41co J9U22vY5/P3YNbFgpeAMT8XTSWOof8b1ypHjiTm7LJaxBhVYaO0R4ELzbD81vw== -----END CERTIFICATE-----Generated at Sat Sep 23 00:18:54 2023 by rpki-client on console-fra.rpki-client.org