$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb60b18d-bfa3-4d4c-a07c-c4fc81562002.roa File: eb60b18d-bfa3-4d4c-a07c-c4fc81562002.roa (raw, json) Hash identifier: epzPX6j0ShWWcbQD5J+2ss0fOPrvkHKzi48w0i7avLY= Subject key identifier: 9C:75:C9:05:28:04:07:68:47:AF:98:B3:4D:8B:2D:FC:93:A0:2B:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B014122C80A68ABB2AABE00809D8CFE198E4611 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb60b18d-bfa3-4d4c-a07c-c4fc81562002.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:01:41:22:c8:0a:68:ab:b2:aa:be:00:80:9d:8c:fe:19:8e:46:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=1ee1c672ffd6dc96affa178577dcd4fd419dab3a2c1aa3d759cd1fb8bc5d944f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:d8:65:23:8d:d1:a9:0b:f2:ad:a6:c7:04: a7:1b:17:31:99:d9:0e:26:07:76:6e:13:79:4a:77: cf:91:56:c7:d8:25:1a:ba:53:73:3a:22:10:14:42: e3:f0:bd:52:9c:ff:a4:17:5a:54:10:27:01:b0:76: 8e:d7:6a:44:38:f4:92:3d:63:05:93:8c:a0:6e:75: b8:fa:e3:4d:fe:d1:ca:14:b1:01:be:f1:7d:25:88: ba:42:ea:36:d7:89:b3:e3:2b:38:5f:a2:13:0c:66: 5c:94:d9:7c:d5:1e:02:71:70:46:96:d8:2d:fc:9a: 57:97:f7:f9:c0:7d:2f:e0:7b:e9:03:e1:2d:b1:40: d0:47:57:90:f2:fd:40:a1:92:5a:92:6e:8b:45:9b: fb:d3:f9:6e:57:61:16:34:8c:72:e2:51:4f:b7:cd: c1:76:dc:c1:77:c8:26:98:80:fc:61:0a:67:60:ed: 5e:3b:e5:70:12:93:43:06:87:94:0b:16:05:60:87: 0d:07:42:d6:6a:3b:95:f5:a7:bf:47:0c:28:93:1a: 45:aa:92:a8:eb:ab:2b:2b:6c:7c:37:4a:f6:9c:14: 5f:80:5e:53:6a:fc:ba:63:44:32:aa:f6:af:87:4e: 55:b2:3c:37:a6:cf:7b:a6:46:9d:5f:d0:40:43:ee: 89:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:75:C9:05:28:04:07:68:47:AF:98:B3:4D:8B:2D:FC:93:A0:2B:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb60b18d-bfa3-4d4c-a07c-c4fc81562002.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:a400::/40 Signature Algorithm: sha256WithRSAEncryption 4d:d0:4e:98:6a:2f:76:67:2e:50:5e:6c:c9:9f:87:6a:c1:ce: 00:a3:f5:28:ee:34:36:27:53:c8:eb:1a:a9:da:9e:69:a6:b9: a2:8d:af:a0:05:f7:02:96:c3:bf:18:19:5b:e9:ab:fe:e2:dd: 99:53:e8:13:2f:f6:80:7a:92:82:7c:8c:04:6a:75:da:e9:b1: d1:a7:77:96:8f:54:ca:cc:83:24:1a:34:08:a4:38:a2:e9:0f: f4:ce:c8:00:dc:b7:78:cb:b3:7b:00:40:42:95:c9:e7:e1:e9: bf:17:4d:43:fc:4b:85:b8:a7:39:3b:d2:15:d3:71:18:68:a7: 10:0d:86:ba:40:dd:73:ae:81:f3:e8:71:50:fc:ff:2b:e4:0f: bf:69:a8:7a:f4:6e:c0:da:6e:2e:a7:d6:58:98:e9:91:40:86: be:06:58:3b:17:f0:39:1f:d5:aa:8e:b1:a2:14:bc:aa:ad:3c: 5a:94:04:33:05:01:17:38:6e:aa:c3:52:00:12:96:2d:24:e9: 39:07:57:1b:f9:eb:b5:1d:3b:5d:1c:eb:95:42:93:03:de:e7: fa:a8:21:3b:e1:bf:68:4f:b6:4a:5b:f8:e3:3f:45:71:a3:9f: b2:5f:35:55:23:10:35:c9:de:50:9e:5e:30:af:55:04:56:76: 15:78:b4:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGwFBIsgKaKuyqr4AgJ2M/hmORhEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWUxYzY3MmZmZDZkYzk2YWZmYTE3ODU3N2RjZDRmZDQx OWRhYjNhMmMxYWEzZDc1OWNkMWZiOGJjNWQ5NDRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzIdhlI43RqQvyrabHBKcbFzGZ2Q4mB3ZuE3lKd8+RVsfY JRq6U3M6IhAUQuPwvVKc/6QXWlQQJwGwdo7XakQ49JI9YwWTjKBudbj6403+0coU sQG+8X0liLpC6jbXibPjKzhfohMMZlyU2XzVHgJxcEaW2C38mleX9/nAfS/ge+kD 4S2xQNBHV5Dy/UChklqSbotFm/vT+W5XYRY0jHLiUU+3zcF23MF3yCaYgPxhCmdg 7V475XASk0MGh5QLFgVghw0HQtZqO5X1p79HDCiTGkWqkqjrqysrbHw3SvacFF+A XlNq/LpjRDKq9q+HTlWyPDemz3umRp1f0EBD7omtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnHXJBSgEB2hHr5izTYst/JOgK4kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViNjBiMThkLWJmYTMtNGQ0Yy1hMDdjLWM0ZmM4MTU2MjAwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/3pDANBgkqhkiG9w0BAQsFAAOCAQEATdBOmGovdmcuUF5syZ+HasHO AKP1KO40NidTyOsaqdqeaaa5oo2voAX3ApbDvxgZW+mr/uLdmVPoEy/2gHqSgnyM BGp12umx0ad3lo9UysyDJBo0CKQ4oukP9M7IANy3eMuzewBAQpXJ5+HpvxdNQ/xL hbinOTvSFdNxGGinEA2GukDdc66B8+hxUPz/K+QPv2moevRuwNpuLqfWWJjpkUCG vgZYOxfwOR/Vqo6xohS8qq08WpQEMwUBFzhuqsNSABKWLSTpOQdXG/nrtR07XRzr lUKTA97n+qghO+G/aE+2Slv44z9FcaOfsl81VSMQNcneUJ5eMK9VBFZ2FXi0CA== -----END CERTIFICATE-----Generated at Fri Sep 22 00:27:53 2023 by rpki-client on console-ams.rpki-client.org