$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/7b42a858-c151-4232-9c6a-fac95474a828.roa File: 7b42a858-c151-4232-9c6a-fac95474a828.roa (raw, json) Hash identifier: 7PRixLP5oA3FKoUMIbPpS8uWI88DvQtgtlJqilWAZG8= Subject key identifier: F2:98:B1:9B:60:BB:A3:63:15:6E:77:34:01:2D:86:C8:14:4B:63:C5 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 7E0D3AAD2EA64E2B16BF865082B9E020F196B426 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/7b42a858-c151-4232-9c6a-fac95474a828.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0d:3a:ad:2e:a6:4e:2b:16:bf:86:50:82:b9:e0:20:f1:96:b4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=1111b1c37db81308f5959a5173c1d49ddd9bc3bba74d727fed95c975e6d55b3d, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ab:52:34:11:aa:04:56:fa:fd:87:e0:cd:73: ca:30:81:24:09:2c:43:a2:32:c0:e2:40:8c:c0:1f: b6:99:c8:86:c7:25:8b:e9:89:b3:f5:75:9b:24:88: 49:c9:98:7e:ef:c6:67:ec:73:19:3c:59:b6:34:49: 63:6c:b7:db:59:aa:91:2c:aa:34:6f:a2:51:8c:5d: de:ca:c6:b9:c6:1f:b1:57:c7:9a:51:a1:4d:f1:e9: 06:68:f2:51:55:ff:e9:b7:e5:3d:ea:37:23:55:24: 2a:8c:3a:15:86:31:45:69:65:f7:d2:07:d1:a0:28: dd:14:5a:14:4f:f1:a8:0d:b6:7d:34:96:12:20:3a: 64:44:2a:ac:1a:96:89:1c:db:22:e9:85:5b:b6:cc: 0b:3d:93:d7:30:73:ca:85:8e:de:b3:b4:00:04:53: b2:6b:03:9a:b9:c2:59:ed:1c:02:68:d5:89:9a:67: 20:d3:1d:39:9f:a2:66:0d:dd:0b:ab:b0:12:9a:48: 97:7a:f4:1f:1e:f5:77:75:1e:fd:7c:60:f0:f5:cf: 18:66:33:74:5a:3b:2b:65:7a:d5:20:1d:38:81:84: 64:1f:62:da:d4:92:79:fe:cd:8d:f7:c6:56:87:2b: d0:72:7c:6c:e9:49:91:9d:95:15:a3:09:1c:fe:3c: 81:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:98:B1:9B:60:BB:A3:63:15:6E:77:34:01:2D:86:C8:14:4B:63:C5 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/7b42a858-c151-4232-9c6a-fac95474a828.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 9f:a5:60:06:3c:27:dd:84:bf:26:8c:7d:3d:c6:d1:78:ec:59: cd:f0:15:d3:cb:e4:96:eb:6e:ec:d5:3c:19:07:ba:06:5d:6e: b7:2d:23:60:1f:b9:2d:95:d2:97:6e:22:99:a6:27:af:ed:28: c6:1d:cf:88:d5:cc:54:29:56:86:e3:77:a1:86:88:6f:ed:15: 73:5f:f8:f6:79:e4:0d:33:4b:bb:cb:83:25:b5:bb:02:cd:72: 19:0c:e5:3d:62:d9:b7:62:ad:b1:6b:11:83:ba:ff:89:37:71: 5e:e0:27:7b:35:09:3c:d4:3a:aa:c0:50:1e:64:b1:51:67:74: 82:ea:a2:d8:be:bd:0d:be:77:55:1e:31:e7:a3:56:8a:b6:a3: 68:15:aa:a6:5b:d7:20:c0:3e:e0:6b:cb:e3:81:1a:5f:57:1c: b3:d6:77:3c:2d:b7:0f:99:44:ce:41:62:e8:be:22:b9:2f:44: e8:93:90:70:12:51:31:28:31:a9:69:8d:ac:08:d0:94:b5:3c: e1:88:e2:63:cb:4d:20:4c:48:da:c7:2c:99:18:09:5e:f2:8a: f6:3e:ad:60:98:45:8b:09:f8:1c:b1:93:ab:d5:6a:06:c9:1f: 14:84:fd:92:5a:13:cf:ac:8e:ee:f0:ba:68:dc:44:3a:dc:d7: e1:2b:6f:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfg06rS6mTisWv4ZQgrngIPGWtCYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTExYjFjMzdkYjgxMzA4ZjU5NTlhNTE3M2MxZDQ5ZGRk OWJjM2JiYTc0ZDcyN2ZlZDk1Yzk3NWU2ZDU1YjNkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbq1I0EaoEVvr9h+DNc8owgSQJLEOiMsDiQIzAH7aZyIbH JYvpibP1dZskiEnJmH7vxmfscxk8WbY0SWNst9tZqpEsqjRvolGMXd7KxrnGH7FX x5pRoU3x6QZo8lFV/+m35T3qNyNVJCqMOhWGMUVpZffSB9GgKN0UWhRP8agNtn00 lhIgOmREKqwalokc2yLphVu2zAs9k9cwc8qFjt6ztAAEU7JrA5q5wlntHAJo1Yma ZyDTHTmfomYN3QursBKaSJd69B8e9Xd1Hv18YPD1zxhmM3RaOytletUgHTiBhGQf YtrUknn+zY33xlaHK9ByfGzpSZGdlRWjCRz+PIHpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8pixm2C7o2MVbnc0AS2GyBRLY8UwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzdiNDJhODU4LWMxNTEtNDIzMi05YzZhLWZhYzk1NDc0YTgyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//8wDQYJKoZIhvcNAQELBQADggEBAJ+lYAY8J92EvyaMfT3G0Xjs Wc3wFdPL5JbrbuzVPBkHugZdbrctI2AfuS2V0pduIpmmJ6/tKMYdz4jVzFQpVobj d6GGiG/tFXNf+PZ55A0zS7vLgyW1uwLNchkM5T1i2bdirbFrEYO6/4k3cV7gJ3s1 CTzUOqrAUB5ksVFndILqoti+vQ2+d1UeMeejVoq2o2gVqqZb1yDAPuBry+OBGl9X HLPWdzwttw+ZRM5BYui+IrkvROiTkHASUTEoMalpjawI0JS1POGI4mPLTSBMSNrH LJkYCV7yivY+rWCYRYsJ+Byxk6vVagbJHxSE/ZJaE8+sju7wumjcRDrc1+Erb+Y= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org