$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5872d54-d805-48ad-bd7b-63850a28bc31.roa File: a5872d54-d805-48ad-bd7b-63850a28bc31.roa (raw, json) Hash identifier: 1XgZC+GG5q9kuS7gBWsH8ju+5So9XPMr0+QB8mSRqjU= Subject key identifier: E5:DA:E8:03:3C:5A:8B:71:3E:0B:04:5B:F9:CF:CB:21:22:E5:6C:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 724420AEC9DAB4F95675DA94C53DF541F8AA1D3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5872d54-d805-48ad-bd7b-63850a28bc31.roa Signing time: Sat 23 Sep 2023 00:00:00 +0000 ROA not before: Sat 23 Sep 2023 00:00:00 +0000 ROA not after: Sat 28 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:48b0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 12:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:44:20:ae:c9:da:b4:f9:56:75:da:94:c5:3d:f5:41:f8:aa:1d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 23 00:00:00 2023 GMT Not After : Oct 28 23:59:59 2023 GMT Subject: serialNumber=463e733db279948710a18e8948cdad0cf74825c0f59997d73fa8b667b1c98b26, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:4f:0e:76:48:ec:a4:1c:87:fe:90:ef:c6: 26:9f:23:68:ef:4c:39:7e:5f:70:ec:cc:7a:df:ad: b5:ba:dd:69:d0:7f:7b:62:fb:89:66:3f:1c:2d:ba: 05:af:24:e7:6c:7d:9d:82:e2:12:7f:f2:a3:ff:c9: aa:db:49:2a:2a:0c:2e:a0:c8:58:04:59:0d:73:bc: f9:00:cd:9e:df:b7:f4:48:77:f7:b8:40:7a:39:ea: 79:d6:0d:41:f4:b4:6e:f6:9a:d0:85:d2:57:6a:99: 0f:88:b9:b6:e7:f6:79:69:9c:c1:9b:39:97:e0:41: 7b:fc:7b:1c:84:43:b0:93:25:a9:d8:b0:07:b6:29: 05:4e:7f:33:91:ef:d2:f3:c9:09:d5:3a:88:62:d7: ae:99:a5:86:1f:31:8e:ac:38:da:0e:ea:5b:46:5c: 9b:bd:84:5b:b2:65:22:1c:4e:ce:db:76:58:52:87: 79:45:87:72:5c:0f:23:ea:59:a2:e6:e3:c7:3f:7f: 6b:75:f1:43:1c:b2:22:cd:e8:54:f8:c2:e7:be:44: e9:6b:71:4e:ab:af:e3:a5:26:80:29:46:b0:0c:ce: 0f:e2:5d:75:3d:64:52:05:9d:47:fb:95:e0:a9:fa: 7d:5f:a4:38:48:f1:25:05:96:ed:a6:f6:17:dd:ea: 10:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DA:E8:03:3C:5A:8B:71:3E:0B:04:5B:F9:CF:CB:21:22:E5:6C:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5872d54-d805-48ad-bd7b-63850a28bc31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:48b0::/47 Signature Algorithm: sha256WithRSAEncryption c4:e3:2b:21:a7:6d:b8:2d:f9:84:02:b6:1e:63:78:1f:d3:1d: c6:d2:a7:9c:f0:6e:01:5a:93:2f:4f:f2:e0:00:72:df:20:a6: 62:63:01:01:19:88:15:11:6d:b1:85:3c:d8:3e:26:c3:3f:32: 28:7c:32:72:6f:a7:f3:73:c4:dc:aa:f4:ec:f2:51:34:9b:93: b9:b3:9d:b3:32:37:f3:0b:b3:3a:ff:8c:cd:a0:8b:34:5d:6d: d1:de:6c:f1:2a:9b:ba:8c:4d:9b:23:47:46:cb:9b:34:9a:42: 18:65:63:22:34:de:01:7c:04:0d:71:f0:69:02:f2:b0:9b:22: 34:7b:1d:1a:1a:c8:e0:d5:36:9c:3f:77:8a:73:56:d9:52:51: 0e:4b:c0:4f:c0:d8:0b:3c:f1:89:87:9a:b4:7c:3f:d0:a8:98: 78:2a:e7:74:d9:71:f7:32:46:4a:ef:ba:fb:39:2c:7a:8c:fb: 25:8c:a1:0c:57:46:06:39:6f:19:66:60:25:bb:04:fb:2d:ed: a8:b0:8e:e1:04:f4:a4:23:0d:d3:85:7a:02:b2:8b:03:ec:36: 7f:59:f0:29:8f:6f:21:18:da:ba:89:40:89:2d:42:b8:ef:cb: f3:5c:43:91:07:ca:4e:8a:15:db:3f:d2:84:f3:6a:81:34:a7: fe:77:05:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUckQgrsnatPlWddqUxT31QfiqHT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIzMDAwMDAwWhcNMjMxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjNlNzMzZGIyNzk5NDg3MTBhMThlODk0OGNkYWQwY2Y3 NDgyNWMwZjU5OTk3ZDczZmE4YjY2N2IxYzk4YjI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxS08OdkjspByH/pDvxiafI2jvTDl+X3DszHrfrbW63WnQ f3ti+4lmPxwtugWvJOdsfZ2C4hJ/8qP/yarbSSoqDC6gyFgEWQ1zvPkAzZ7ft/RI d/e4QHo56nnWDUH0tG72mtCF0ldqmQ+Iubbn9nlpnMGbOZfgQXv8exyEQ7CTJanY sAe2KQVOfzOR79LzyQnVOohi166ZpYYfMY6sONoO6ltGXJu9hFuyZSIcTs7bdlhS h3lFh3JcDyPqWaLm48c/f2t18UMcsiLN6FT4wue+ROlrcU6rr+OlJoApRrAMzg/i XXU9ZFIFnUf7leCp+n1fpDhI8SUFlu2m9hfd6hCvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5droAzxai3E+CwRb+c/LISLlbFMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ODcyZDU0LWQ4MDUtNDhhZC1iZDdiLTYzODUwYTI4YmMzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSLAwDQYJKoZIhvcNAQELBQADggEBAMTjKyGnbbgt+YQCth5jeB/T HcbSp5zwbgFaky9P8uAAct8gpmJjAQEZiBURbbGFPNg+JsM/Mih8MnJvp/NzxNyq 9OzyUTSbk7mznbMyN/MLszr/jM2gizRdbdHebPEqm7qMTZsjR0bLmzSaQhhlYyI0 3gF8BA1x8GkC8rCbIjR7HRoayODVNpw/d4pzVtlSUQ5LwE/A2As88YmHmrR8P9Co mHgq53TZcfcyRkrvuvs5LHqM+yWMoQxXRgY5bxlmYCW7BPst7aiwjuEE9KQjDdOF egKyiwPsNn9Z8CmPbyEY2rqJQIktQrjvy/NcQ5EHyk6KFds/0oTzaoE0p/53BSs= -----END CERTIFICATE-----Generated at Sat Sep 23 00:38:46 2023 by rpki-client on console-ams.rpki-client.org