$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa File: 222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa (raw, json) Hash identifier: 4TfA8Jq3WtCld0+uxmI0qs3gU5hwcWGg3QfPLObzogs= Subject key identifier: 49:B6:73:ED:AE:2C:4B:B2:55:19:BC:06:CE:40:C9:84:F4:50:79:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0CC85510ABD92CC25CDA0B8C786665C358B2511F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa Signing time: Tue 19 Sep 2023 00:00:00 +0000 ROA not before: Tue 19 Sep 2023 00:00:00 +0000 ROA not after: Tue 24 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 20 Sep 2023 12:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c8:55:10:ab:d9:2c:c2:5c:da:0b:8c:78:66:65:c3:58:b2:51:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 19 00:00:00 2023 GMT Not After : Oct 24 23:59:59 2023 GMT Subject: serialNumber=42862c99f3d4f93fd7af5fd0c18a3bda45bd01af899e49d1440926eedf6abf04, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:53:e8:cd:60:1f:cf:4d:23:8e:96:74:24: a4:e3:0a:7e:f1:e9:d2:54:be:86:84:17:c3:02:b8: 47:2d:80:04:96:0a:ca:dc:6a:f3:74:42:aa:37:c9: 1b:1e:fb:a2:a8:29:de:07:5e:c8:1e:43:8a:57:09: f9:30:f3:d9:04:ec:85:cf:9f:f9:66:44:2e:d8:71: 37:4c:d3:89:c1:72:2e:cf:a2:4a:c7:31:4f:92:6b: 2d:63:93:6f:04:4b:f4:f6:12:d3:78:67:95:d9:f1: 2c:7a:a1:44:96:20:d8:a0:4f:49:3d:30:cc:e6:69: e2:74:21:81:ca:36:f7:74:f1:bb:01:9c:80:5c:b8: e8:fb:09:80:c8:b4:f5:8f:67:ef:73:e7:d9:c6:98: 9c:91:dc:cb:47:a6:64:a4:f2:f8:4f:2c:cf:24:44: 15:75:1c:ea:67:29:f2:70:b3:a6:d6:16:5e:a3:d2: 1f:e7:2b:da:ff:f5:9c:95:69:5f:52:3a:36:45:d1: c1:ae:f5:0e:6b:fb:61:19:aa:4a:29:73:c1:c1:ff: 7c:93:38:49:59:8e:0d:2a:16:f6:38:62:b3:df:c5: f9:c9:c4:79:98:f0:36:14:e9:d0:8b:2c:6d:c3:27: 4d:32:87:d0:b9:2f:b2:6c:ab:f4:00:7b:be:88:ee: 01:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B6:73:ED:AE:2C:4B:B2:55:19:BC:06:CE:40:C9:84:F4:50:79:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:40::/48 Signature Algorithm: sha256WithRSAEncryption 15:9f:50:d2:8c:57:11:c2:af:2f:4e:34:f2:44:37:a6:ef:0c: 07:4a:41:bd:75:2b:d3:e2:14:74:d7:36:a1:0b:81:3b:e7:d1: ea:db:1a:c2:a8:7d:3e:03:89:7f:e0:43:d3:f5:89:c7:d8:b9: c6:24:79:f6:25:9c:1d:71:1c:af:28:19:16:6c:a7:ac:d3:06: 31:3f:50:32:f7:d6:f7:e2:b1:00:94:ee:a6:1f:2e:b6:07:26: 7c:d1:19:51:76:a1:a2:41:2e:e6:02:fe:a8:1b:e7:ea:dd:b9: 93:19:1e:33:da:1e:85:f9:7b:ef:05:ac:03:6f:7d:f4:8c:c2: c2:a6:bc:dd:dd:43:5b:b1:5a:87:d5:1a:05:ba:de:ba:6c:d4: fe:41:44:a0:3a:ab:9c:ff:8e:91:50:fd:7b:cd:d0:0a:a9:0f: 84:a8:99:9c:95:af:f7:4f:71:a3:8d:57:75:2c:7b:2b:a5:67: 1e:be:ed:4c:06:b0:fb:c2:82:ca:2d:b3:a0:6f:52:ee:28:27: ac:dc:98:67:d8:af:de:2c:08:58:ce:e9:94:a7:2f:ba:d1:d6: 6a:f6:89:43:bd:9a:fc:42:2b:b4:31:a9:8d:90:c6:09:34:55: 8e:3c:bc:cb:f1:ce:99:9a:ea:1b:5d:15:f0:44:19:c4:67:94: 50:93:8b:87 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDMhVEKvZLMJc2guMeGZlw1iyUR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjMwOTE5MDAwMDAwWhcNMjMxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Mjg2MmM5OWYzZDRmOTNmZDdhZjVmZDBjMThhM2JkYTQ1 YmQwMWFmODk5ZTQ5ZDE0NDA5MjZlZWRmNmFiZjA0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDECVPozWAfz00jjpZ0JKTjCn7x6dJUvoaEF8MCuEctgASW CsrcavN0Qqo3yRse+6KoKd4HXsgeQ4pXCfkw89kE7IXPn/lmRC7YcTdM04nBci7P okrHMU+Say1jk28ES/T2EtN4Z5XZ8Sx6oUSWINigT0k9MMzmaeJ0IYHKNvd08bsB nIBcuOj7CYDItPWPZ+9z59nGmJyR3MtHpmSk8vhPLM8kRBV1HOpnKfJws6bWFl6j 0h/nK9r/9ZyVaV9SOjZF0cGu9Q5r+2EZqkopc8HB/3yTOElZjg0qFvY4YrPfxfnJ xHmY8DYU6dCLLG3DJ00yh9C5L7Jsq/QAe76I7gHnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSbZz7a4sS7JVGbwGzkDJhPRQeWYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIyMjkwNmQyLWE2YTAtNDBhZC05ZTQxLWVhYjJkN2ZmMzVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAEAwDQYJKoZIhvcNAQELBQADggEBABWfUNKMVxHCry9ONPJEN6bv DAdKQb11K9PiFHTXNqELgTvn0erbGsKofT4DiX/gQ9P1icfYucYkefYlnB1xHK8o GRZsp6zTBjE/UDL31vfisQCU7qYfLrYHJnzRGVF2oaJBLuYC/qgb5+rduZMZHjPa HoX5e+8FrANvffSMwsKmvN3dQ1uxWofVGgW63rps1P5BRKA6q5z/jpFQ/XvN0Aqp D4SomZyVr/dPcaONV3UseyulZx6+7UwGsPvCgsots6BvUu4oJ6zcmGfYr94sCFjO 6ZSnL7rR1mr2iUO9mvxCK7QxqY2Qxgk0VY48vMvxzpma6htdFfBEGcRnlFCTi4c= -----END CERTIFICATE-----Generated at Tue Sep 19 00:19:36 2023 by rpki-client on console-ams.rpki-client.org