$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae3dc93-17f6-4963-b124-37a6479f0289.roa File: dae3dc93-17f6-4963-b124-37a6479f0289.roa (raw, json) Hash identifier: SG6cW+MhCfXwwHaqYWKgu2JMvnfyFWWvxhmm+nhRHTo= Subject key identifier: 82:6C:18:04:1F:1D:67:A3:63:CF:78:D7:7C:11:0F:0F:22:EE:5D:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3037BE3A3D02B3AE93A8108EC5F5722B05B5D387 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae3dc93-17f6-4963-b124-37a6479f0289.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:37:be:3a:3d:02:b3:ae:93:a8:10:8e:c5:f5:72:2b:05:b5:d3:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=e3fbfeb00f4c5088a66a90b2ddd09127f292087043f9a45e1a3db7adb56339d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:90:bd:7a:aa:99:02:d0:f4:06:ab:4a:8d:1a: 72:f9:bd:a8:04:6d:4d:54:89:19:9b:74:17:fb:60: ba:96:4e:d7:be:76:a3:1c:f5:ad:78:af:ab:1a:53: b5:ab:0c:a8:8b:6d:08:5a:73:3e:45:00:73:72:4b: 87:bf:74:af:21:be:bd:7c:11:ae:de:96:83:2f:c0: 0d:60:61:73:4b:95:d2:c3:2f:d8:2b:0c:19:9f:ef: fc:3b:af:67:ba:90:40:b5:76:86:75:89:24:79:f9: f1:65:09:b9:05:09:6b:d7:d9:f3:11:db:7e:69:7b: 64:19:bf:fc:29:e2:00:18:c7:28:b2:09:70:ac:65: 95:07:13:91:4f:74:60:c7:10:25:0a:77:2c:ab:b3: 11:c0:d7:29:31:ea:c2:71:89:1f:86:84:f9:49:f2: 85:3d:7d:31:7d:46:f8:98:89:39:bb:41:ea:7d:07: c9:68:f6:a2:f2:25:07:85:d8:4d:81:45:9d:e2:30: 2d:b8:a9:a4:50:bd:e0:6c:28:d9:5e:f7:e2:3e:be: 6b:e6:99:cf:8f:bc:cb:0a:5c:76:ef:00:1e:b4:76: b7:c6:19:88:ad:db:61:2d:be:1a:9b:f6:b0:d5:17: da:04:9c:71:ad:87:83:6e:bb:04:2d:94:95:66:34: 0c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6C:18:04:1F:1D:67:A3:63:CF:78:D7:7C:11:0F:0F:22:EE:5D:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae3dc93-17f6-4963-b124-37a6479f0289.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:5000::/40 Signature Algorithm: sha256WithRSAEncryption 7a:09:7e:c5:5b:36:97:66:5a:b2:7b:2d:6e:dd:fd:7f:00:26: 80:09:b7:24:44:08:7c:c6:e3:65:d9:0d:1b:d5:70:94:ab:76: 4c:7b:e9:b7:91:2b:22:94:e0:98:8f:b5:2b:9d:c4:4b:49:f6: 63:31:b2:45:4d:03:d3:7a:bb:0c:5d:27:b8:20:a4:e1:a0:1d: e6:02:a6:c5:ce:0b:f9:4c:42:89:a6:ae:6e:2d:cf:40:ed:b7: 22:b2:18:5e:26:90:ac:e3:6b:a7:36:8a:7b:97:01:c1:d1:78: d4:6d:16:1a:ec:5d:44:51:bb:9c:7a:63:53:62:1e:8e:d6:21: e0:3d:0c:84:2a:55:2e:c1:d1:81:2d:ea:ea:64:78:4b:2a:be: ee:02:ad:2e:9b:74:f2:ad:79:ce:97:8b:8e:8e:38:b7:7a:cd: 9f:8e:b6:f7:a6:b7:5b:ae:fd:29:69:18:29:e6:d4:3b:ac:d2: 21:1f:03:d3:5e:2f:bc:14:3e:d9:e9:83:37:5d:f0:4b:18:ab: 63:8b:8f:1e:cb:e7:84:bb:3d:fb:36:ff:cd:7f:78:a5:f8:45: 64:51:39:58:1c:29:94:4b:f3:54:36:e9:80:72:14:83:de:78: 14:2e:f5:11:bf:30:a1:ac:b1:b5:5b:3f:51:e1:b5:fb:25:d0: f2:0f:f0:bb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMDe+Oj0Cs66TqBCOxfVyKwW104cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2ZiZmViMDBmNGM1MDg4YTY2YTkwYjJkZGQwOTEyN2Yy OTIwODcwNDNmOWE0NWUxYTNkYjdhZGI1NjMzOWQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVkL16qpkC0PQGq0qNGnL5vagEbU1UiRmbdBf7YLqWTte+ dqMc9a14r6saU7WrDKiLbQhacz5FAHNyS4e/dK8hvr18Ea7eloMvwA1gYXNLldLD L9grDBmf7/w7r2e6kEC1doZ1iSR5+fFlCbkFCWvX2fMR235pe2QZv/wp4gAYxyiy CXCsZZUHE5FPdGDHECUKdyyrsxHA1ykx6sJxiR+GhPlJ8oU9fTF9RviYiTm7Qep9 B8lo9qLyJQeF2E2BRZ3iMC24qaRQveBsKNle9+I+vmvmmc+PvMsKXHbvAB60drfG GYit22Etvhqb9rDVF9oEnHGth4NuuwQtlJVmNAwTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgmwYBB8dZ6Njz3jXfBEPDyLuXSwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhZTNkYzkzLTE3ZjYtNDk2My1iMTI0LTM3YTY0NzlmMDI4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wUDANBgkqhkiG9w0BAQsFAAOCAQEAegl+xVs2l2Zasnstbt39fwAm gAm3JEQIfMbjZdkNG9VwlKt2THvpt5ErIpTgmI+1K53ES0n2YzGyRU0D03q7DF0n uCCk4aAd5gKmxc4L+UxCiaaubi3PQO23IrIYXiaQrONrpzaKe5cBwdF41G0WGuxd RFG7nHpjU2IejtYh4D0MhCpVLsHRgS3q6mR4Syq+7gKtLpt08q15zpeLjo44t3rN n46296a3W679KWkYKebUO6zSIR8D014vvBQ+2emDN13wSxirY4uPHsvnhLs9+zb/ zX94pfhFZFE5WBwplEvzVDbpgHIUg954FC71Eb8woayxtVs/UeG1+yXQ8g/wuw== -----END CERTIFICATE-----Generated at Fri Sep 22 22:31:09 2023 by rpki-client on console-ams.rpki-client.org