$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa File: 9b0748cf-edf9-47ce-9877-29fee7abf992.roa (raw, json) Hash identifier: nv6tEr8e0/UwsI4rgvOTSuOKIvVOkk10jEUMsWC/Sw0= Subject key identifier: 86:14:78:09:8A:57:F0:4F:E9:BF:D0:D3:63:F7:E5:5C:FD:2B:32:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A1ECBFC886EAFF6D7FF1F23BD05871AF6AB2B28 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:1e:cb:fc:88:6e:af:f6:d7:ff:1f:23:bd:05:87:1a:f6:ab:2b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=919da4598d69f4db5ecf50e24d913bcc479f5f27469f96dc16d4b43a1288dd07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:15:fe:95:20:8d:80:a3:2e:6a:be:7a:36:40: fe:b5:19:f1:21:de:1a:88:2d:1a:ab:95:e6:56:09: df:e8:4f:2a:81:80:c9:fb:ca:99:9f:6f:19:42:fb: 11:b9:60:12:52:00:de:ef:74:d0:5f:04:31:fd:b2: b3:b6:9c:60:69:79:e9:a6:50:df:fd:f5:a9:d7:0f: cd:72:61:9e:46:55:4e:cf:fd:17:b2:c9:93:a8:c6: 9e:aa:b8:35:4b:2c:f6:4b:3c:80:26:52:21:f6:8d: be:97:6b:64:59:34:da:13:69:c5:d5:6c:1f:83:79: d6:c0:27:79:58:2f:c0:69:34:4c:1e:62:20:1e:23: bf:69:b1:f7:72:cf:6e:bd:ed:2c:af:5d:33:16:92: 8e:3c:20:9c:6c:9f:ad:ef:ce:88:fa:7b:5d:17:58: 84:59:ad:1c:79:10:cc:10:f4:4f:a2:70:75:28:4b: c8:67:f7:cd:1e:69:13:38:f1:63:7c:37:66:cd:49: d5:71:55:f8:9c:26:69:18:51:49:33:dc:dc:c4:23: 70:cd:5e:26:29:f2:0d:6a:82:d0:58:d1:bc:e9:91: 75:b9:89:1e:f4:81:4b:51:8e:2e:4c:96:f7:8b:99: 9c:dc:f7:e0:14:e9:f4:fc:99:52:de:76:14:e1:eb: 4b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:14:78:09:8A:57:F0:4F:E9:BF:D0:D3:63:F7:E5:5C:FD:2B:32:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1e:e6:11:0c:25:53:ee:aa:8e:34:7b:1f:b7:6e:aa:f1:a3:58: 00:5c:0a:5c:a7:6b:aa:df:cc:7a:83:5c:59:d2:1d:76:db:06: 59:a0:2c:48:bd:dc:7f:0c:5b:9d:38:2a:88:89:9f:ca:e1:aa: dc:72:31:72:dd:16:c9:ce:e9:2d:db:94:33:e9:67:59:fd:dc: 96:9a:3a:ff:bd:38:31:e6:23:c7:d2:65:db:3a:b8:78:1b:5a: 4f:d2:82:72:ea:09:58:fb:fe:de:8c:3b:00:39:da:d2:60:0d: c0:a4:e3:2c:64:70:ab:46:71:6b:a4:6c:ac:fb:c7:dd:ef:f3: 19:a1:cd:40:1a:a7:29:5b:0e:2b:f3:b2:87:2c:0f:6c:c6:43: e4:bb:50:bb:39:70:77:be:20:b0:85:ab:13:30:f2:14:47:74: ee:a9:9c:74:63:52:85:af:e7:9e:70:60:7d:36:9d:fe:ae:a9: f4:50:91:e5:18:c8:4e:57:90:80:e8:4b:b1:13:d5:60:fe:8a: 40:0d:c7:4a:56:1d:d6:c0:68:1b:13:7c:90:a5:64:c3:af:53: 7a:de:ea:f3:1d:65:29:0d:0d:c0:10:29:fe:7b:05:18:25:e0: 75:02:7c:22:62:63:b6:a0:e3:bd:f3:37:d1:3c:89:e4:36:3e: 90:40:a5:30 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOh7L/Ihur/bX/x8jvQWHGvarKygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTlkYTQ1OThkNjlmNGRiNWVjZjUwZTI0ZDkxM2JjYzQ3 OWY1ZjI3NDY5Zjk2ZGMxNmQ0YjQzYTEyODhkZDA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Ff6VII2Aoy5qvno2QP61GfEh3hqILRqrleZWCd/oTyqB gMn7ypmfbxlC+xG5YBJSAN7vdNBfBDH9srO2nGBpeemmUN/99anXD81yYZ5GVU7P /ReyyZOoxp6quDVLLPZLPIAmUiH2jb6Xa2RZNNoTacXVbB+DedbAJ3lYL8BpNEwe YiAeI79psfdyz2697SyvXTMWko48IJxsn63vzoj6e10XWIRZrRx5EMwQ9E+icHUo S8hn980eaRM48WN8N2bNSdVxVficJmkYUUkz3NzEI3DNXiYp8g1qgtBY0bzpkXW5 iR70gUtRji5MlveLmZzc9+AU6fT8mVLedhTh60vRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhhR4CYpX8E/pv9DTY/flXP0rMhowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliMDc0OGNmLWVkZjktNDdjZS05ODc3LTI5ZmVlN2FiZjk5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//EDANBgkqhkiG9w0BAQsFAAOCAQEAHuYRDCVT7qqONHsft26q8aNY AFwKXKdrqt/MeoNcWdIddtsGWaAsSL3cfwxbnTgqiImfyuGq3HIxct0Wyc7pLduU M+lnWf3clpo6/704MeYjx9Jl2zq4eBtaT9KCcuoJWPv+3ow7ADna0mANwKTjLGRw q0Zxa6RsrPvH3e/zGaHNQBqnKVsOK/OyhywPbMZD5LtQuzlwd74gsIWrEzDyFEd0 7qmcdGNSha/nnnBgfTad/q6p9FCR5RjITleQgOhLsRPVYP6KQA3HSlYd1sBoGxN8 kKVkw69Tet7q8x1lKQ0NwBAp/nsFGCXgdQJ8ImJjtqDjvfM30TyJ5DY+kEClMA== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:07 2023 by rpki-client on console-ams.rpki-client.org