$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa File: caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa (raw, json) Hash identifier: i2C1ClQiUPJvlb/46vNNgo7edXEHAUdp2Y9/PKomys4= Subject key identifier: 4B:7D:02:91:9E:C2:E9:FE:E4:90:C8:ED:F1:21:D1:ED:76:4A:EE:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DB77954D4764305A66782595890D9905C4699FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:4870::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b7:79:54:d4:76:43:05:a6:67:82:59:58:90:d9:90:5c:46:99:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=090fc7668d933694ea313c98d9e5d49791a80eb66d11844ab35432c077a54a3a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a4:82:59:10:35:e1:c3:95:79:2a:c7:fa:39: 0f:6e:e1:00:68:79:ac:aa:ea:53:d7:d6:54:d3:a8: 7e:f5:1c:e6:e6:94:35:50:d4:12:76:db:0e:55:33: ca:7f:cc:ac:8d:e1:1c:61:85:87:49:89:6d:4c:5d: b3:d5:46:07:e3:44:e7:e8:18:7c:84:87:41:ca:c7: 4f:ac:14:35:56:a4:5b:7f:e6:35:19:91:8d:76:87: 02:04:cd:cb:36:50:60:0f:b7:ef:ea:90:06:92:d7: 4f:2f:fa:70:89:ff:fb:64:e4:b6:91:59:93:65:42: 07:1c:2b:24:6b:d8:a8:08:11:86:91:5b:88:43:16: 3b:32:3e:d3:e5:3c:65:a8:2b:2c:21:1f:ed:76:2b: e7:4b:4e:e0:84:f5:af:af:2f:55:22:64:f7:ce:35: 9d:39:43:43:8b:ed:87:4c:86:7b:6a:c3:ca:a2:53: 65:b8:1a:ed:3f:ab:b8:44:b0:17:76:6e:87:a1:34: 00:3c:4d:2a:aa:55:cf:43:5e:5b:1f:a7:6b:58:52: dd:00:76:04:27:2b:1c:f1:1b:cc:e7:f7:f3:ca:e6: 74:c3:97:ff:d3:c4:09:b1:0f:88:d0:c8:d7:12:57: 80:1c:6c:3c:a4:9f:0d:ac:bb:fd:db:8f:59:42:b8: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7D:02:91:9E:C2:E9:FE:E4:90:C8:ED:F1:21:D1:ED:76:4A:EE:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4870::/47 Signature Algorithm: sha256WithRSAEncryption 45:65:53:df:9b:ef:3e:2d:05:2f:96:f1:63:b1:0b:81:04:9f: b9:1e:e0:d8:e3:f3:30:69:1f:29:20:7c:1f:48:74:25:1a:d7: d8:99:76:e6:f2:be:a4:12:82:32:de:f0:02:52:d6:7f:47:3c: a1:d8:4f:c9:c6:aa:eb:8d:ce:a5:ca:54:68:f6:d7:44:84:26: c2:ea:99:84:b8:ce:96:ab:7b:8e:d6:ea:b5:fd:46:be:3a:2a: a9:58:ea:59:7b:17:48:0e:0d:3c:c5:c9:ff:63:f3:3d:5e:ac: 70:7f:90:24:ec:30:72:a4:ca:74:47:46:cc:aa:b5:3e:42:69: 98:ba:4f:ca:7d:1f:12:d4:b7:26:81:0e:a6:05:ba:d8:7a:f4: fb:b3:25:fd:db:a4:1c:74:13:15:8b:6c:bc:ca:86:0f:b5:8b: 60:87:56:1b:2a:13:fa:d3:34:ad:cf:ac:c3:c6:0b:67:f8:ab: e1:ef:d6:bc:5d:70:62:5e:5e:95:fe:34:2a:28:f5:26:5b:60: e6:33:37:6b:ee:a0:35:e1:05:b2:96:d3:ec:f6:09:4b:c8:f7: 0d:de:ca:28:65:5b:63:4c:27:9a:24:f3:dd:8d:f1:06:de:92: a4:d0:6e:e4:95:08:5c:fe:96:49:bd:f8:5d:5a:f8:85:62:f4: b3:c0:69:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbbd5VNR2QwWmZ4JZWJDZkFxGmfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTBmYzc2NjhkOTMzNjk0ZWEzMTNjOThkOWU1ZDQ5Nzkx YTgwZWI2NmQxMTg0NGFiMzU0MzJjMDc3YTU0YTNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1pIJZEDXhw5V5Ksf6OQ9u4QBoeayq6lPX1lTTqH71HObm lDVQ1BJ22w5VM8p/zKyN4RxhhYdJiW1MXbPVRgfjROfoGHyEh0HKx0+sFDVWpFt/ 5jUZkY12hwIEzcs2UGAPt+/qkAaS108v+nCJ//tk5LaRWZNlQgccKyRr2KgIEYaR W4hDFjsyPtPlPGWoKywhH+12K+dLTuCE9a+vL1UiZPfONZ05Q0OL7YdMhntqw8qi U2W4Gu0/q7hEsBd2boehNAA8TSqqVc9DXlsfp2tYUt0AdgQnKxzxG8zn9/PK5nTD l//TxAmxD4jQyNcSV4AcbDyknw2su/3bj1lCuCQHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS30CkZ7C6f7kkMjt8SHR7XZK7oEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhZjA1N2VjLTY2ZTktNDViMC05YmQ4LWZjOTVhNDgyMzBmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSHAwDQYJKoZIhvcNAQELBQADggEBAEVlU9+b7z4tBS+W8WOxC4EE n7ke4Njj8zBpHykgfB9IdCUa19iZdubyvqQSgjLe8AJS1n9HPKHYT8nGquuNzqXK VGj210SEJsLqmYS4zpare47W6rX9Rr46KqlY6ll7F0gODTzFyf9j8z1erHB/kCTs MHKkynRHRsyqtT5CaZi6T8p9HxLUtyaBDqYFuth69PuzJf3bpBx0ExWLbLzKhg+1 i2CHVhsqE/rTNK3PrMPGC2f4q+Hv1rxdcGJeXpX+NCoo9SZbYOYzN2vuoDXhBbKW 0+z2CUvI9w3eyihlW2NMJ5ok892N8QbekqTQbuSVCFz+lkm9+F1a+IVi9LPAabg= -----END CERTIFICATE-----Generated at Fri Sep 22 22:27:03 2023 by rpki-client on console-fra.rpki-client.org