$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/220c06e9-76eb-40aa-8e95-851a0472ce41.roa File: 220c06e9-76eb-40aa-8e95-851a0472ce41.roa (raw, json) Hash identifier: Qi/qJhwil3JgvIJZt5ufLMkV+pccm5wUlsOzwRp2C2I= Subject key identifier: 06:5F:86:35:1D:02:07:92:4E:CF:25:7B:47:ED:88:7F:94:05:12:75 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 73F46654995B8462F0DDDE25D9DD6DC1D63B8EC6 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/220c06e9-76eb-40aa-8e95-851a0472ce41.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:400::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f4:66:54:99:5b:84:62:f0:dd:de:25:d9:dd:6d:c1:d6:3b:8e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=2498915088d3b0f7616334bb1dbb086d5db43b1dd6c54de2e186ae605c9c12ef, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4b:cf:80:8b:9d:ce:69:7a:26:ba:63:47:6e: 36:cb:95:a4:54:25:5c:c3:a5:29:eb:fe:75:e6:94: 4e:c5:66:df:af:ba:b7:a1:b7:d8:f8:e3:cd:0c:aa: b1:a5:9d:3d:9b:c3:92:8c:49:a2:97:95:72:df:24: ba:1b:27:61:22:e0:90:56:f5:40:85:25:8f:8e:0e: 22:3e:76:c4:12:2c:25:cb:fc:a7:72:84:8f:99:6f: a4:af:48:f1:d3:78:c3:58:8d:8d:89:32:1f:5d:9f: ce:2c:94:8b:83:2b:dc:24:14:62:9b:6f:b9:82:a5: c9:de:89:b3:ea:66:3c:9f:a0:50:53:e7:65:31:47: 31:69:11:8b:8a:11:96:4e:46:ea:f0:86:41:79:1f: 8c:fb:6b:6f:e4:64:c9:ae:77:ce:1c:a2:73:0f:fa: 65:bb:4c:42:a4:d1:43:ca:c3:b8:23:7d:8c:be:aa: c2:b4:28:3b:b4:c3:54:c5:4d:18:ef:b9:e6:75:df: 22:11:99:53:8e:49:2b:a5:7c:97:e9:ee:a0:a0:87: f0:24:7e:9b:76:c8:17:30:b9:10:9b:eb:87:49:b2: 68:6d:60:84:8c:43:07:15:b6:a4:11:b5:63:91:2f: 7a:bd:24:dc:d5:99:42:72:aa:17:8e:f4:19:28:c4: b6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5F:86:35:1D:02:07:92:4E:CF:25:7B:47:ED:88:7F:94:05:12:75 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/220c06e9-76eb-40aa-8e95-851a0472ce41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:400::/39 Signature Algorithm: sha256WithRSAEncryption 7b:83:86:82:16:32:1e:42:f8:c3:62:c0:f0:e8:3e:0f:c4:11: 2c:4e:f0:1c:9e:7c:a8:90:94:29:d0:99:e0:52:fd:71:18:4d: 43:d9:10:19:e2:0b:fa:24:97:82:33:83:d4:e4:59:db:c6:fa: ff:7a:9f:00:20:47:17:4a:0d:42:b6:6a:5f:8b:aa:df:e6:81: 0e:cf:8f:86:de:fb:77:56:3a:da:ba:ba:22:66:e1:a8:1f:07: f1:3e:81:78:81:00:86:c9:e6:c1:35:d9:b4:81:21:9c:34:71: a2:17:33:b3:ba:05:26:3c:c2:13:e9:6f:cc:2a:3f:42:80:22: ff:e2:62:b3:c2:2f:79:52:45:59:50:29:48:52:17:e4:60:50: 55:cf:21:67:d7:6c:20:3d:cf:20:8b:0d:a5:99:0c:83:4d:84: dc:8a:20:10:18:c8:01:a9:6c:ab:ed:4a:8f:0d:fc:9a:ec:94: ea:d6:45:17:9e:6e:1a:d5:38:0f:3a:dd:76:26:12:04:25:d2: 9a:d6:b1:44:72:5e:20:23:07:12:b3:67:4e:dd:13:8a:96:0c: 88:7e:6c:a0:a9:3d:6a:44:04:8b:d6:97:7f:b3:63:f2:29:84: 12:5e:98:d0:07:11:dc:08:3f:37:72:3f:5c:5a:fb:04:04:25: 66:c2:b1:06 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUc/RmVJlbhGLw3d4l2d1twdY7jsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDk4OTE1MDg4ZDNiMGY3NjE2MzM0YmIxZGJiMDg2ZDVk YjQzYjFkZDZjNTRkZTJlMTg2YWU2MDVjOWMxMmVmMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTS8+Ai53OaXomumNHbjbLlaRUJVzDpSnr/nXmlE7FZt+v ureht9j4480MqrGlnT2bw5KMSaKXlXLfJLobJ2Ei4JBW9UCFJY+ODiI+dsQSLCXL /KdyhI+Zb6SvSPHTeMNYjY2JMh9dn84slIuDK9wkFGKbb7mCpcneibPqZjyfoFBT 52UxRzFpEYuKEZZORurwhkF5H4z7a2/kZMmud84conMP+mW7TEKk0UPKw7gjfYy+ qsK0KDu0w1TFTRjvueZ13yIRmVOOSSulfJfp7qCgh/Akfpt2yBcwuRCb64dJsmht YISMQwcVtqQRtWORL3q9JNzVmUJyqheO9BkoxLZZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBl+GNR0CB5JOzyV7R+2If5QFEnUwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzIyMGMwNmU5LTc2ZWItNDBhYS04ZTk1LTg1MWEwNDcyY2U0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9ABDANBgkqhkiG9w0BAQsFAAOCAQEAe4OGghYyHkL4w2LA8Og+D8QR LE7wHJ58qJCUKdCZ4FL9cRhNQ9kQGeIL+iSXgjOD1ORZ28b6/3qfACBHF0oNQrZq X4uq3+aBDs+Pht77d1Y62rq6ImbhqB8H8T6BeIEAhsnmwTXZtIEhnDRxohczs7oF JjzCE+lvzCo/QoAi/+Jis8IveVJFWVApSFIX5GBQVc8hZ9dsID3PIIsNpZkMg02E 3IogEBjIAalsq+1Kjw38muyU6tZFF55uGtU4DzrddiYSBCXSmtaxRHJeICMHErNn Tt0TipYMiH5soKk9akQEi9aXf7Nj8imEEl6Y0AcR3Ag/N3I/XFr7BAQlZsKxBg== -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org