$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa File: ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa (raw, json) Hash identifier: 8rlMUugKf5zOpVi/wTfv+F/Z3XIjZronJ49QS063JSI= Subject key identifier: FD:E5:70:58:54:9D:53:70:E5:5F:79:0A:4C:03:27:CC:0D:DE:75:82 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 3B5262B020EAA28EC4A4E3EB9193A57A795CF747 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:52:62:b0:20:ea:a2:8e:c4:a4:e3:eb:91:93:a5:7a:79:5c:f7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=ec902bc2a4cd69e3e6ac587ef34cda2fb941f3914f5c9bd37501c1006484fd5f, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:87:f8:91:f9:27:a7:79:e6:64:f9:31:d0:fd: 64:32:13:a4:11:f5:78:87:59:34:2e:4f:03:0e:80: 68:9b:34:ac:63:7e:f6:19:2a:86:3b:f6:5c:34:96: 26:09:a8:67:44:7a:1d:40:c9:e9:84:00:9f:57:bf: 24:8b:01:ca:b5:c9:2d:cb:a2:77:7a:53:38:80:ff: c3:47:ff:6a:93:5d:8a:88:4c:c9:c7:4b:76:a2:c0: b0:31:47:c5:8a:73:40:a2:f6:ee:b9:55:5c:55:3f: 58:a3:da:e2:5c:89:52:de:6a:84:26:8f:c6:b8:43: 21:d5:23:41:19:c0:5a:08:0d:93:74:8d:64:c3:d0: 61:03:5c:c1:72:ca:0e:31:36:5e:3a:bf:f5:d8:b8: 33:29:17:dd:22:ba:66:17:9f:f6:5c:91:f8:7c:63: b3:1a:c8:13:c1:5a:f4:82:25:77:35:c8:3c:b6:b1: f2:34:ca:08:c6:aa:19:35:71:c2:bf:79:71:28:b5: 91:61:e6:ed:a3:09:d3:a4:30:15:c5:00:cb:91:24: d0:9e:0b:b9:e8:f9:10:4f:c1:be:17:e3:2e:ac:2a: 61:78:64:34:23:d3:6d:c8:90:07:5a:19:57:c4:bc: fa:f6:4f:7f:bf:30:4f:74:c7:ed:c2:73:62:ad:15: c5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E5:70:58:54:9D:53:70:E5:5F:79:0A:4C:03:27:CC:0D:DE:75:82 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffd::/48 Signature Algorithm: sha256WithRSAEncryption 04:69:1d:d7:e7:3d:b1:e1:1a:dd:b0:bd:bb:0d:e2:8a:98:a0: 53:69:6f:fc:38:3f:87:60:8f:3b:0c:ed:b9:72:31:65:0a:84: 35:f7:7b:20:2f:5f:5a:88:76:4b:b9:97:6f:ff:91:36:1a:63: b4:be:20:df:16:ca:65:ff:f0:99:ff:8e:76:d6:d3:b1:1b:9f: 5f:49:15:38:95:60:68:b7:f8:d4:25:3b:56:03:10:73:ca:a0: 16:43:9e:4a:2a:df:6f:4f:f4:fb:59:1a:4c:51:0c:c5:d9:e3: 72:46:0d:30:86:3c:be:bf:d8:5c:b2:f3:95:58:fa:5d:b1:90: df:d0:4e:3e:e3:06:b7:b5:39:82:c9:33:10:79:84:92:c7:29: 7a:a5:09:a1:4b:b4:98:ae:91:8c:87:cc:03:8d:e6:7d:03:d7: 2b:86:f2:21:bc:ca:5a:f0:6d:6e:59:9d:d7:23:96:2f:54:dc: 1d:05:3f:cd:34:97:77:ea:17:22:73:39:38:50:38:f9:f7:02: 71:88:9a:67:ce:a0:cd:f7:56:a3:51:04:ba:77:33:d7:a4:9a: 55:3d:08:65:81:f6:97:64:33:ad:92:ce:ff:2a:5f:e7:59:31: 04:89:e6:91:5b:6b:b2:7a:7a:6c:70:1c:3e:84:6f:78:ca:3a: 8b:29:16:e4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO1JisCDqoo7EpOPrkZOlenlc90cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzkwMmJjMmE0Y2Q2OWUzZTZhYzU4N2VmMzRjZGEyZmI5 NDFmMzkxNGY1YzliZDM3NTAxYzEwMDY0ODRmZDVmMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHh/iR+SeneeZk+THQ/WQyE6QR9XiHWTQuTwMOgGibNKxj fvYZKoY79lw0liYJqGdEeh1AyemEAJ9XvySLAcq1yS3Lond6UziA/8NH/2qTXYqI TMnHS3aiwLAxR8WKc0Ci9u65VVxVP1ij2uJciVLeaoQmj8a4QyHVI0EZwFoIDZN0 jWTD0GEDXMFyyg4xNl46v/XYuDMpF90iumYXn/Zckfh8Y7MayBPBWvSCJXc1yDy2 sfI0ygjGqhk1ccK/eXEotZFh5u2jCdOkMBXFAMuRJNCeC7no+RBPwb4X4y6sKmF4 ZDQj023IkAdaGVfEvPr2T3+/ME90x+3Cc2KtFcXZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/eVwWFSdU3DlX3kKTAMnzA3edYIwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2NhM2I3OTA1LWZjM2UtNDg4Yi05ZjM2LTVmYTM4MmJmMDdjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//0wDQYJKoZIhvcNAQELBQADggEBAARpHdfnPbHhGt2wvbsN4oqY oFNpb/w4P4dgjzsM7blyMWUKhDX3eyAvX1qIdku5l2//kTYaY7S+IN8WymX/8Jn/ jnbW07Ebn19JFTiVYGi3+NQlO1YDEHPKoBZDnkoq329P9PtZGkxRDMXZ43JGDTCG PL6/2Fyy85VY+l2xkN/QTj7jBre1OYLJMxB5hJLHKXqlCaFLtJiukYyHzAON5n0D 1yuG8iG8ylrwbW5Zndcjli9U3B0FP800l3fqFyJzOThQOPn3AnGImmfOoM33VqNR BLp3M9ekmlU9CGWB9pdkM62Szv8qX+dZMQSJ5pFba7J6emxwHD6Eb3jKOospFuQ= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org