$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa File: be58a495-3b46-4802-b20e-0b767c46bf90.roa (raw, json) Hash identifier: S/Am368jTuaNP+gGCgh1bxfvXV2NKoDa0wFHbellcdk= Subject key identifier: 1B:9E:C8:4B:F6:E3:FA:69:24:A6:B6:9B:75:ED:B0:91:84:95:38:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34C1E06D9D2347B4D6FE4928EF773B1BAA66820D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c1:e0:6d:9d:23:47:b4:d6:fe:49:28:ef:77:3b:1b:aa:66:82:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=53edf3f9b97aef4f99a4afa4437ca538f373b0b6316992f02051099e089edb64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:51:c5:bf:cc:95:71:be:0b:13:6f:35:4b:2c: ae:0b:27:c1:88:62:e8:c4:a5:09:5b:0b:62:d0:6e: f3:db:f0:22:60:ac:05:f5:37:c7:84:4b:84:7b:a8: 20:9b:3e:e6:69:cd:13:38:d4:62:2d:61:b8:42:51: 4f:02:84:89:3b:15:18:ac:36:23:f0:d4:cd:d6:30: de:38:9c:83:55:6c:e8:a6:be:13:7b:9b:cf:3f:8b: 70:1f:0e:42:7b:46:51:3f:be:67:fe:3c:0a:1c:96: 8a:bd:3c:7b:6d:3f:ed:9b:3f:41:d5:82:2f:2a:89: 18:95:36:de:3b:73:a6:1f:56:9b:2d:ed:0d:96:a9: ce:ff:20:73:95:e0:4b:b3:e5:75:64:28:2b:9f:e1: 76:87:bf:4a:ad:fb:e3:b0:f9:d4:49:4c:a7:41:31: 27:27:43:3d:40:fa:2e:d7:0c:0b:20:5c:4b:ba:91: af:cb:83:d0:d9:34:53:77:ce:02:8c:8f:49:3e:9c: aa:88:93:1a:ec:4d:b4:dd:ba:11:73:c0:69:30:74: dd:65:11:31:15:58:55:c9:6b:23:48:0a:66:a3:cb: 7b:53:16:b2:85:58:79:ef:89:0d:b9:71:03:c7:73: 12:98:7f:95:cd:06:44:70:12:e2:47:02:48:0c:8b: 88:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9E:C8:4B:F6:E3:FA:69:24:A6:B6:9B:75:ED:B0:91:84:95:38:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:e000::/40 Signature Algorithm: sha256WithRSAEncryption d2:e7:90:8a:8c:87:5b:ab:a6:ac:b2:82:8e:e0:02:b3:80:4d: c5:88:a6:39:1b:87:ca:24:90:71:65:2e:4d:f5:84:1d:0e:c7: 55:7e:af:41:ea:fe:8a:99:de:1e:6b:55:32:d0:38:8b:81:69: c5:d1:12:84:fe:df:fb:0a:56:80:7f:19:2e:86:92:fc:0c:b4: 0d:33:ee:fd:15:93:c2:58:ff:29:4c:a3:29:11:a0:b2:ec:c9: 1f:b0:20:19:2a:12:af:fd:09:47:1e:91:e9:04:1b:0f:85:89: b0:c7:17:d9:5b:81:2d:8e:e7:c2:8b:90:a8:6c:03:7d:1f:35: 97:ae:2a:aa:a3:22:88:43:9f:7c:2d:86:3a:6b:de:dc:a3:82: fd:01:1e:64:47:91:93:64:fc:68:90:c2:b3:b3:21:d3:a4:a5: cd:3b:87:b0:94:11:8d:f1:48:d4:b4:7b:0e:96:7b:7a:58:e5: 23:d7:d1:7e:32:ea:d5:c4:39:cb:06:d0:d6:d7:16:f5:59:36: 95:f4:33:39:f0:c2:96:3f:75:2e:00:5d:3c:0b:9c:9e:d3:1a: 04:73:54:2e:f2:ff:6c:1c:f5:7d:e9:c0:04:a3:95:02:3f:d1: b4:cb:0f:19:bc:1d:ba:34:d3:9c:b7:2e:dc:a8:36:5b:58:c4: 6a:9e:28:ec -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNMHgbZ0jR7TW/kko73c7G6pmgg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2VkZjNmOWI5N2FlZjRmOTlhNGFmYTQ0MzdjYTUzOGYz NzNiMGI2MzE2OTkyZjAyMDUxMDk5ZTA4OWVkYjY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2UcW/zJVxvgsTbzVLLK4LJ8GIYujEpQlbC2LQbvPb8CJg rAX1N8eES4R7qCCbPuZpzRM41GItYbhCUU8ChIk7FRisNiPw1M3WMN44nINVbOim vhN7m88/i3AfDkJ7RlE/vmf+PAocloq9PHttP+2bP0HVgi8qiRiVNt47c6YfVpst 7Q2Wqc7/IHOV4Euz5XVkKCuf4XaHv0qt++Ow+dRJTKdBMScnQz1A+i7XDAsgXEu6 ka/Lg9DZNFN3zgKMj0k+nKqIkxrsTbTduhFzwGkwdN1lETEVWFXJayNICmajy3tT FrKFWHnviQ25cQPHcxKYf5XNBkRwEuJHAkgMi4jLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUG57IS/bj+mkkprabde2wkYSVOAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlNThhNDk1LTNiNDYtNDgwMi1iMjBlLTBiNzY3YzQ2YmY5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/64DANBgkqhkiG9w0BAQsFAAOCAQEA0ueQioyHW6umrLKCjuACs4BN xYimORuHyiSQcWUuTfWEHQ7HVX6vQer+ipneHmtVMtA4i4FpxdEShP7f+wpWgH8Z LoaS/Ay0DTPu/RWTwlj/KUyjKRGgsuzJH7AgGSoSr/0JRx6R6QQbD4WJsMcX2VuB LY7nwouQqGwDfR81l64qqqMiiEOffC2GOmve3KOC/QEeZEeRk2T8aJDCs7Mh06Sl zTuHsJQRjfFI1LR7DpZ7eljlI9fRfjLq1cQ5ywbQ1tcW9Vk2lfQzOfDClj91LgBd PAucntMaBHNULvL/bBz1fenABKOVAj/RtMsPGbwdujTTnLcu3Kg2W1jEap4o7A== -----END CERTIFICATE-----Generated at Fri Sep 22 15:45:16 2023 by rpki-client on console-ams.rpki-client.org