$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa File: ecb777e6-e596-438b-aa6c-8dc3055af2de.roa (raw, json) Hash identifier: H0uW+X/itbLJHlzguP942L4Z1Ou11AOJ5iLuiuwLHfQ= Subject key identifier: 8A:4D:41:A4:12:EB:C2:07:EF:05:C3:41:E4:F5:40:1D:2B:25:9D:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0943E18790100C7C42001F018643B43245B212A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:4000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:43:e1:87:90:10:0c:7c:42:00:1f:01:86:43:b4:32:45:b2:12:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=98544ed442371af8164d7fce56a4597b3c5ab75e5ace201c8a2334932d93fc36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:5e:5f:a3:02:09:5f:7f:7f:93:18:4a:f1: d0:95:60:11:3c:ee:79:2c:62:4f:fb:d8:f5:19:12: 29:fa:3d:77:38:3d:54:c6:8c:1c:c8:8e:66:3b:7d: de:e6:fa:57:10:d5:73:ff:17:5a:c4:81:c5:03:f0: 43:13:a4:60:fa:28:4d:d0:ad:3e:35:44:17:67:1e: fc:5d:48:b9:97:7f:2d:8b:e6:09:2b:61:e1:b0:59: 49:1e:54:cf:73:d1:65:72:0b:9a:78:86:f6:f8:00: cd:61:aa:d1:8a:23:a8:7e:22:61:77:f7:b9:fd:f9: 15:80:ef:5d:c3:e0:d1:a4:c2:da:6d:82:ad:d4:8f: ad:bc:4d:59:79:94:a9:d9:15:27:bd:d3:c8:26:05: d1:23:21:f5:07:0d:c6:78:77:36:8d:66:ba:fe:26: 7c:03:85:e7:9b:ec:af:72:f3:84:3d:0a:c2:fc:a8: 67:04:52:22:93:6e:1c:bc:0e:80:da:06:62:9f:77: 16:b2:66:21:17:8c:d2:9f:d3:c1:a1:d2:c8:a8:1c: 12:a7:ed:04:61:a2:3c:b0:26:a7:b4:44:22:05:07: 9b:37:bf:6a:9a:8e:b1:76:d7:14:45:32:14:96:af: b0:96:38:47:68:57:19:e0:84:79:a6:df:cb:f6:d3: 8b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4D:41:A4:12:EB:C2:07:EF:05:C3:41:E4:F5:40:1D:2B:25:9D:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:4000::/39 Signature Algorithm: sha256WithRSAEncryption 0a:14:0d:9c:e7:6e:b7:79:4d:d7:fd:b0:19:22:81:42:d7:f5: d8:83:a5:ce:8d:45:a6:2c:a1:66:93:0a:7d:8c:5a:a8:34:9b: 56:76:b5:75:49:8b:e1:e1:f9:8f:4d:9e:26:f0:c5:b5:1a:a3: 19:90:fe:75:e3:ab:d3:f7:8a:24:d1:78:92:d6:e1:4c:a0:94: a8:4d:35:7d:58:e9:f5:96:dd:1f:6f:ed:7e:83:32:ec:3c:06: ed:25:e0:d3:58:02:01:2f:3b:cc:60:08:9f:71:90:b7:be:ea: 6f:e6:52:34:06:4a:32:88:77:67:a9:e6:8d:4d:56:37:8e:e2: a4:b5:f7:80:8c:47:35:b8:dd:1b:a1:b1:ed:47:a2:89:71:4f: 34:5f:1a:76:85:97:08:df:c3:c6:24:82:d4:89:85:8c:79:5d: da:26:f1:0a:88:9b:1a:65:54:da:68:be:24:2e:8b:85:e2:02: bd:ec:03:da:f0:1a:9d:84:41:70:8d:a6:c3:bc:c5:5a:0f:49: 50:60:89:62:a9:c8:e6:25:5f:30:84:6d:0d:64:7c:26:45:b8: bb:f0:0d:2a:63:69:6d:05:04:23:e8:7b:0a:cd:c3:64:2d:d7: 88:fe:b1:1d:ac:71:5f:a1:f3:44:4d:63:ed:47:49:fe:a1:a8: fb:c3:77:ba -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCUPhh5AQDHxCAB8BhkO0MkWyEqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODU0NGVkNDQyMzcxYWY4MTY0ZDdmY2U1NmE0NTk3YjNj NWFiNzVlNWFjZTIwMWM4YTIzMzQ5MzJkOTNmYzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4AF5fowIJX39/kxhK8dCVYBE87nksYk/72PUZEin6PXc4 PVTGjBzIjmY7fd7m+lcQ1XP/F1rEgcUD8EMTpGD6KE3QrT41RBdnHvxdSLmXfy2L 5gkrYeGwWUkeVM9z0WVyC5p4hvb4AM1hqtGKI6h+ImF397n9+RWA713D4NGkwtpt gq3Uj628TVl5lKnZFSe908gmBdEjIfUHDcZ4dzaNZrr+JnwDheeb7K9y84Q9CsL8 qGcEUiKTbhy8DoDaBmKfdxayZiEXjNKf08Gh0sioHBKn7QRhojywJqe0RCIFB5s3 v2qajrF21xRFMhSWr7CWOEdoVxnghHmm38v204u/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUik1BpBLrwgfvBcNB5PVAHSslnVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjYjc3N2U2LWU1OTYtNDM4Yi1hYTZjLThkYzMwNTVhZjJkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/3QDANBgkqhkiG9w0BAQsFAAOCAQEAChQNnOdut3lN1/2wGSKBQtf1 2IOlzo1FpiyhZpMKfYxaqDSbVna1dUmL4eH5j02eJvDFtRqjGZD+deOr0/eKJNF4 ktbhTKCUqE01fVjp9ZbdH2/tfoMy7DwG7SXg01gCAS87zGAIn3GQt77qb+ZSNAZK Moh3Z6nmjU1WN47ipLX3gIxHNbjdG6Gx7UeiiXFPNF8adoWXCN/DxiSC1ImFjHld 2ibxCoibGmVU2mi+JC6LheICvewD2vAanYRBcI2mw7zFWg9JUGCJYqnI5iVfMIRt DWR8JkW4u/ANKmNpbQUEI+h7Cs3DZC3XiP6xHaxxX6HzRE1j7UdJ/qGo+8N3ug== -----END CERTIFICATE-----Generated at Fri Sep 22 18:22:45 2023 by rpki-client on console-ams.rpki-client.org