$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa File: 348f5e60-8c02-48e8-8bab-280a4365a7cb.roa (raw, json) Hash identifier: Bq03KgLz8Afxbx/+Hr40sRa88yQIaIE26kNfXeUuUb8= Subject key identifier: BC:56:43:E1:FF:9B:C2:69:DA:78:D0:8B:0F:4E:4C:A2:E6:85:B7:08 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2BF2C0CD6EC729B96A2FD48E3DA6A1DC88E96030 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8802::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f2:c0:cd:6e:c7:29:b9:6a:2f:d4:8e:3d:a6:a1:dc:88:e9:60:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=264724a6444c780065f3b942899ce2ce9789dca7de0741a9e7ef659a9b1ec820, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:06:5f:ca:dc:0b:ad:74:fc:64:da:cf:c7: 1b:cd:f0:cc:79:fd:9f:ed:c8:9f:11:c4:8a:a2:8d: 72:ce:6a:db:d2:23:ee:15:04:63:98:99:a9:dd:2f: 30:f3:8a:52:3d:e9:1e:ed:5e:4c:0d:b2:b5:fa:0e: 8f:6d:5c:e1:d4:2f:0e:f5:ab:c9:47:95:46:7c:81: f0:a7:ad:bd:76:3c:6b:4c:80:66:39:9d:86:f1:30: e2:33:f0:13:c8:a2:eb:63:60:c7:0d:e3:36:94:be: c8:1a:ca:85:3c:9d:90:c6:63:aa:5b:94:d8:f9:bd: ae:b3:00:93:37:24:a8:88:a2:27:b5:ee:e4:93:0a: 8c:24:6b:2e:a0:41:92:05:2e:dc:88:f1:87:49:4b: d2:f7:91:80:24:9e:27:81:22:ab:cc:ea:e2:c6:7d: e9:e9:dd:d7:19:c2:37:49:a3:16:2b:e2:1e:dc:e1: dd:06:e6:ea:57:41:40:ec:b8:92:88:24:10:50:16: 7d:a7:42:e0:54:1e:eb:62:86:2b:02:5b:2e:82:27: b3:ac:fc:fa:03:59:6c:18:a1:8b:9a:1b:b9:91:90: 98:a9:ca:1d:09:9e:8e:13:ca:68:bd:70:41:cf:5c: 00:79:11:30:1e:07:0d:51:aa:27:ca:ef:77:45:ae: 88:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:56:43:E1:FF:9B:C2:69:DA:78:D0:8B:0F:4E:4C:A2:E6:85:B7:08 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8802::/48 Signature Algorithm: sha256WithRSAEncryption 9c:5f:bb:41:26:8e:6d:15:f1:20:76:33:cc:f6:a6:03:39:ac: 30:b2:2f:c1:91:66:7e:a5:fb:f4:93:ce:04:0a:cc:ff:9b:b3: 25:22:6a:2a:88:87:fb:a3:30:f9:a0:9d:ec:18:6f:65:67:3c: 05:df:e4:0b:02:86:f2:d0:0c:e3:da:32:e7:d6:ba:81:f0:89: b2:90:9e:c5:f7:40:05:11:a6:1b:a3:75:f2:c0:75:1a:24:d7: 23:0d:bc:1e:20:cb:ee:1c:9c:7b:1b:c0:76:9c:0b:7e:94:f4: da:02:3a:a2:e0:1e:3c:a7:78:71:e0:e3:dc:d5:9d:63:d7:1a: 91:e9:e5:7b:e7:2b:4e:3b:35:4b:b1:da:7b:a9:a9:85:35:9f: 1a:a8:49:cd:08:ed:3f:98:e2:ff:7f:14:08:98:26:6f:f0:e6: cf:64:89:a5:75:66:3c:7c:df:fd:93:20:c6:58:d9:7d:87:77: 22:3a:16:42:6a:39:7c:d0:1d:af:49:57:19:38:93:e0:ec:a0: f4:8c:03:53:ce:d1:0e:1d:0a:23:5c:5b:0b:ee:ed:a9:25:cc: 25:91:dc:bc:5c:f0:84:70:75:06:12:fa:e3:67:e4:b6:ed:aa: fc:52:7e:e5:8b:b5:7d:bf:e2:80:11:da:6e:20:3f:ed:f5:17: 5c:7f:9f:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK/LAzW7HKblqL9SOPaah3IjpYDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjQ3MjRhNjQ0NGM3ODAwNjVmM2I5NDI4OTljZTJjZTk3 ODlkY2E3ZGUwNzQxYTllN2VmNjU5YTliMWVjODIwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH3QZfytwLrXT8ZNrPxxvN8Mx5/Z/tyJ8RxIqijXLOatvS I+4VBGOYmandLzDzilI96R7tXkwNsrX6Do9tXOHULw71q8lHlUZ8gfCnrb12PGtM gGY5nYbxMOIz8BPIoutjYMcN4zaUvsgayoU8nZDGY6pblNj5va6zAJM3JKiIoie1 7uSTCowkay6gQZIFLtyI8YdJS9L3kYAknieBIqvM6uLGfenp3dcZwjdJoxYr4h7c 4d0G5upXQUDsuJKIJBBQFn2nQuBUHutihisCWy6CJ7Os/PoDWWwYoYuaG7mRkJip yh0Jno4Tymi9cEHPXAB5ETAeBw1RqifK73dFrojXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvFZD4f+bwmnaeNCLD05MouaFtwgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM0OGY1ZTYwLThjMDItNDhlOC04YmFiLTI4MGE0MzY1YTdjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAIwDQYJKoZIhvcNAQELBQADggEBAJxfu0Emjm0V8SB2M8z2pgM5 rDCyL8GRZn6l+/STzgQKzP+bsyUiaiqIh/ujMPmgnewYb2VnPAXf5AsChvLQDOPa MufWuoHwibKQnsX3QAURphujdfLAdRok1yMNvB4gy+4cnHsbwHacC36U9NoCOqLg HjyneHHg49zVnWPXGpHp5XvnK047NUux2nupqYU1nxqoSc0I7T+Y4v9/FAiYJm/w 5s9kiaV1Zjx83/2TIMZY2X2HdyI6FkJqOXzQHa9JVxk4k+DsoPSMA1PO0Q4dCiNc Wwvu7aklzCWR3Lxc8IRwdQYS+uNn5LbtqvxSfuWLtX2/4oAR2m4gP+31F1x/n8A= -----END CERTIFICATE-----Generated at Fri Sep 22 15:34:22 2023 by rpki-client on console-fra.rpki-client.org