$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa File: ceb67e80-419a-468c-9de9-477adbe51133.roa (raw, json) Hash identifier: uOGFsJY+hkCaoASqRBosp2TXbUCbTF57KLnfb29QxXA= Subject key identifier: 08:C6:78:F2:4F:A9:71:5A:EC:D6:A1:C8:D6:A3:9D:43:95:95:C5:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CEE23512028E6302E88EAC77B1F4E219AD918A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa Signing time: Mon 28 Aug 2023 00:00:00 +0000 ROA not before: Mon 28 Aug 2023 00:00:00 +0000 ROA not after: Mon 02 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Aug 2023 10:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ee:23:51:20:28:e6:30:2e:88:ea:c7:7b:1f:4e:21:9a:d9:18:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 28 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2023 GMT Subject: serialNumber=6446b18bc842f11c641c190b4dcd7711fc79fefb7ebf8dcf010188fc9676232a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bc:74:45:7d:5b:b9:ad:46:f1:c0:8e:f7:56: dd:5d:98:b3:62:10:9c:3f:b8:9e:77:34:cd:91:83: 28:80:f9:0c:02:23:4e:b2:87:43:ad:d9:1d:41:91: f8:46:b6:28:4e:86:77:ee:c8:82:c4:b9:26:75:ab: 88:b3:8c:e8:be:08:c1:6e:0c:06:b1:78:5a:f4:bf: a9:40:71:eb:d9:93:2e:40:56:4d:47:ab:bb:14:7a: 77:7b:89:7f:c0:62:ac:3b:83:57:73:c7:dd:60:0f: 75:c4:56:9d:ee:77:7e:5c:a6:7c:59:17:65:3f:f8: e0:a7:bf:d1:b9:5e:b7:e8:2b:e7:dd:ff:3f:b1:b1: 6c:86:e7:e7:44:af:8d:9e:91:9a:89:a1:6e:aa:8a: 2b:e4:5d:d8:a3:fb:c1:d9:79:a5:16:0c:1a:dd:63: d6:e6:7f:d1:7c:4e:72:58:a8:92:ae:f2:54:6f:49: d6:07:13:87:c8:b4:63:90:e0:88:83:5e:9c:28:d7: c4:9d:fa:a8:bf:5a:93:d1:bb:5f:d3:13:e2:e5:35: db:17:6a:e0:6b:ef:77:5b:de:ba:4b:19:ed:6d:19: 75:7a:2d:1b:b7:6b:2a:4a:06:cc:25:ce:c2:41:3a: ce:ea:91:c3:14:85:e0:8a:59:87:9b:f1:08:12:0e: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C6:78:F2:4F:A9:71:5A:EC:D6:A1:C8:D6:A3:9D:43:95:95:C5:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:5000::/40 Signature Algorithm: sha256WithRSAEncryption 64:a9:d5:e0:2e:49:65:14:3a:8c:a1:74:94:38:f5:2e:24:3a: 93:26:aa:a8:5d:0f:5d:8a:e0:e3:f8:11:da:00:3a:8c:0f:97: 3b:8e:04:9b:41:9f:82:2d:1c:2d:3f:e9:0d:23:20:0b:42:eb: c6:2d:ca:82:11:ea:3f:99:3c:f2:de:33:14:16:33:f2:1a:33: 3b:b8:4d:15:84:6e:8b:7e:90:36:2c:ee:54:db:a6:69:ea:a4: b0:3c:42:68:a5:5f:65:ac:c8:2d:94:f0:a2:4b:c6:8e:cd:68: 63:1a:00:df:5e:e7:08:16:f3:9c:ee:d4:e3:f6:66:00:65:52: 35:cc:19:71:c4:b8:e6:f1:b9:31:b8:e5:a1:23:48:c4:0c:09: bc:bf:58:d5:5d:5c:83:1f:4a:cb:a9:45:ce:5c:4c:8b:ac:ff: 1d:84:60:e9:aa:c4:f3:4b:cd:0c:4a:e6:df:7b:f4:a4:89:42: a1:29:d3:4a:50:0f:47:b2:d7:43:d2:15:76:1d:1d:9c:3d:8e: 9b:14:8a:cb:75:89:bc:ed:3c:23:e5:58:fc:cc:fe:14:d3:4e: ed:36:81:c5:34:01:66:b9:a1:3a:ba:40:e4:5e:95:f0:88:e1: e8:20:be:dd:31:93:83:dc:ca:95:6d:56:25:4a:79:35:60:6c: 38:82:5e:fd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHO4jUSAo5jAuiOrHex9OIZrZGKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDQ2YjE4YmM4NDJmMTFjNjQxYzE5MGI0ZGNkNzcxMWZj NzlmZWZiN2ViZjhkY2YwMTAxODhmYzk2NzYyMzJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWvHRFfVu5rUbxwI73Vt1dmLNiEJw/uJ53NM2RgyiA+QwC I06yh0Ot2R1BkfhGtihOhnfuyILEuSZ1q4izjOi+CMFuDAaxeFr0v6lAcevZky5A Vk1Hq7sUend7iX/AYqw7g1dzx91gD3XEVp3ud35cpnxZF2U/+OCnv9G5XrfoK+fd /z+xsWyG5+dEr42ekZqJoW6qiivkXdij+8HZeaUWDBrdY9bmf9F8TnJYqJKu8lRv SdYHE4fItGOQ4IiDXpwo18Sd+qi/WpPRu1/TE+LlNdsXauBr73db3rpLGe1tGXV6 LRu3aypKBswlzsJBOs7qkcMUheCKWYeb8QgSDhfNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCMZ48k+pcVrs1qHI1qOdQ5WVxbAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYjY3ZTgwLTQxOWEtNDY4Yy05ZGU5LTQ3N2FkYmU1MTEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6UDANBgkqhkiG9w0BAQsFAAOCAQEAZKnV4C5JZRQ6jKF0lDj1LiQ6 kyaqqF0PXYrg4/gR2gA6jA+XO44Em0Gfgi0cLT/pDSMgC0Lrxi3KghHqP5k88t4z FBYz8hozO7hNFYRui36QNizuVNumaeqksDxCaKVfZazILZTwokvGjs1oYxoA317n CBbznO7U4/ZmAGVSNcwZccS45vG5MbjloSNIxAwJvL9Y1V1cgx9Ky6lFzlxMi6z/ HYRg6arE80vNDErm33v0pIlCoSnTSlAPR7LXQ9IVdh0dnD2OmxSKy3WJvO08I+VY /Mz+FNNO7TaBxTQBZrmhOrpA5F6V8Ijh6CC+3TGTg9zKlW1WJUp5NWBsOIJe/Q== -----END CERTIFICATE-----Generated at Mon Aug 28 22:49:03 2023 by rpki-client on console-fra.rpki-client.org