$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa File: abe42905-b032-4c0a-b08a-22ef7222b003.roa (raw, json) Hash identifier: MqKzZu8YEpjBpCVrFhnrTL5u8iz1nuBS6Btd/gvxeIY= Subject key identifier: 0A:11:2A:5B:92:4D:83:FD:BE:FA:3E:FE:B2:12:71:82:EC:FC:83:E9 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 2F261DF27711366D3116CDEA34E436F31B0F40B3 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:8400::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:26:1d:f2:77:11:36:6d:31:16:cd:ea:34:e4:36:f3:1b:0f:40:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=fe47b4e9e7b81f5c4a1f27cedc9b282299a40787ef28bdfc8e024a65e76b0095, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:09:bd:e1:1f:e6:9e:cf:e5:39:15:07:0a: 11:2f:37:4e:f1:1a:30:01:8c:0c:d8:c7:82:f1:22: 42:df:cd:9c:7c:e3:2d:1a:7e:8e:b8:ec:0f:83:68: a1:c7:dd:17:28:0b:bc:df:94:28:1c:91:16:a1:6d: d5:b6:49:59:60:bc:06:aa:b8:63:00:59:e4:01:49: a1:60:a8:eb:87:9b:fb:a7:0d:67:8a:64:b7:17:b1: 76:a0:82:dc:6c:40:68:57:0a:3a:5e:44:1f:c4:bb: 80:df:e6:cd:fd:9e:80:5f:ef:6e:8f:67:ba:08:59: 43:c3:9a:b2:d2:42:11:2b:87:9b:75:2f:ec:5e:85: dc:86:ae:1c:91:f7:50:32:6b:09:27:51:8b:fc:3d: af:9f:4a:51:d2:d7:9f:fb:90:d4:40:1c:45:dc:f3: f2:5b:f5:a7:0a:56:83:b0:45:52:46:2d:19:e6:70: 98:d5:b0:ce:c5:f9:02:5d:b9:b6:c8:8e:d2:f2:f1: ab:66:60:74:ff:5d:b5:05:d1:9b:1c:f5:c4:d9:43: 71:e8:84:59:1c:06:db:71:3e:5f:90:91:01:54:bf: 90:fe:ce:f7:32:18:19:22:42:f1:21:e8:08:4e:1a: ef:17:71:63:4e:30:12:77:68:27:36:ac:c6:f1:ba: e0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:11:2A:5B:92:4D:83:FD:BE:FA:3E:FE:B2:12:71:82:EC:FC:83:E9 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8400::/39 Signature Algorithm: sha256WithRSAEncryption 45:67:05:c0:ed:1f:60:8e:43:56:b3:84:5b:9d:a6:92:60:3d: 7e:cd:4f:c8:79:a9:62:35:27:57:58:fd:60:3b:e0:44:7a:37: 23:0e:bc:5b:eb:62:cc:a3:93:da:6c:78:5c:67:21:31:4f:24: 0b:6c:e1:47:2a:89:3d:e5:96:86:07:66:8c:fe:07:07:ed:40: d4:a2:e0:f4:c7:74:30:ee:cc:c2:bb:e5:f1:d7:8f:0c:b6:24: e0:16:6a:66:2f:7e:5d:a6:41:1e:cb:7a:04:38:a7:5e:01:d9: 34:f5:86:36:96:9c:72:b9:69:af:eb:62:89:33:8a:45:11:a0: 6c:c9:74:2a:30:e1:22:cc:fc:8b:31:10:35:17:af:75:6f:46: 68:47:12:f1:9e:a0:d4:67:b6:f4:fe:f9:ab:8d:71:32:e0:d0: 69:dd:12:20:72:ca:11:b0:8b:5c:aa:f6:92:c7:af:ab:81:9f: cd:64:9e:c8:a8:aa:15:2c:6d:c1:4c:3f:0b:72:ea:55:8e:fc: ca:cc:c5:93:6f:f7:75:5b:e1:ae:60:0a:4d:b4:29:92:62:87: f2:9a:aa:d6:66:57:b6:02:ef:98:cd:b3:5c:89:92:04:63:ed: c0:00:b7:f1:36:b6:29:a8:7f:a4:0f:b2:7b:ae:9a:20:f4:12: e9:4a:e2:c8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULyYd8ncRNm0xFs3qNOQ28xsPQLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTQ3YjRlOWU3YjgxZjVjNGExZjI3Y2VkYzliMjgyMjk5 YTQwNzg3ZWYyOGJkZmM4ZTAyNGE2NWU3NmIwMDk1MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyLQm94R/mns/lORUHChEvN07xGjABjAzYx4LxIkLfzZx8 4y0afo647A+DaKHH3RcoC7zflCgckRahbdW2SVlgvAaquGMAWeQBSaFgqOuHm/un DWeKZLcXsXaggtxsQGhXCjpeRB/Eu4Df5s39noBf726PZ7oIWUPDmrLSQhErh5t1 L+xehdyGrhyR91AyawknUYv8Pa+fSlHS15/7kNRAHEXc8/Jb9acKVoOwRVJGLRnm cJjVsM7F+QJdubbIjtLy8atmYHT/XbUF0Zsc9cTZQ3HohFkcBttxPl+QkQFUv5D+ zvcyGBkiQvEh6AhOGu8XcWNOMBJ3aCc2rMbxuuApAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUChEqW5JNg/2++j7+shJxguz8g+kwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2FiZTQyOTA1LWIwMzItNGMwYS1iMDhhLTIyZWY3MjIyYjAwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AhDANBgkqhkiG9w0BAQsFAAOCAQEARWcFwO0fYI5DVrOEW52mkmA9 fs1PyHmpYjUnV1j9YDvgRHo3Iw68W+tizKOT2mx4XGchMU8kC2zhRyqJPeWWhgdm jP4HB+1A1KLg9Md0MO7Mwrvl8dePDLYk4BZqZi9+XaZBHst6BDinXgHZNPWGNpac crlpr+tiiTOKRRGgbMl0KjDhIsz8izEQNRevdW9GaEcS8Z6g1Ge29P75q41xMuDQ ad0SIHLKEbCLXKr2ksevq4GfzWSeyKiqFSxtwUw/C3LqVY78yszFk2/3dVvhrmAK TbQpkmKH8pqq1mZXtgLvmM2zXImSBGPtwAC38Ta2Kah/pA+ye66aIPQS6UriyA== -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org