$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: kKG6mxU9PTp9/jUM10WXsYTydgD5bbtJUsXYE+iywjc= Subject key identifier: 0E:CF:71:D9:E4:A9:5E:7D:F2:8F:0C:F1:A0:0E:9F:6A:60:CE:FB:73 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4CA6D6434E1610DD94B7E423CF680613626A3D39 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a6:d6:43:4e:16:10:dd:94:b7:e4:23:cf:68:06:13:62:6a:3d:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=f7f7335eb75025d907749c5340e95a58740a622122a8fb97dcffbb63b1d04291, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:99:67:4b:04:c3:79:90:79:0d:62:6a:43: 52:e3:fc:01:1d:3d:a0:c3:1c:3f:ed:6b:72:0f:3c: 26:88:3b:dd:4d:e2:bc:dc:f6:f1:85:be:8f:df:07: 31:4c:54:8a:e7:98:ea:97:ee:11:f1:25:e0:1f:24: 75:77:be:f8:f6:e6:6e:9e:32:ab:99:83:dd:67:47: e2:eb:98:86:5a:7f:f3:b9:a6:d3:0d:39:db:83:09: 2d:c9:ff:b6:10:b8:1a:f9:b7:a6:86:cb:5e:ee:7e: 2a:e3:a2:b6:a4:6c:cd:f3:5f:f8:14:25:3e:d4:82: 44:94:49:2d:24:46:a6:85:11:be:91:3f:fa:1d:df: 1d:0b:f8:23:2b:96:6d:67:4a:7d:d1:a2:62:d2:58: 6d:ea:8d:c3:b5:67:1a:ad:51:90:9e:b6:22:2a:88: 19:65:09:2a:37:ac:42:3c:56:ff:15:8c:8d:4d:c0: cf:56:d5:ce:2f:68:ae:a7:57:4e:be:5b:cb:9a:5f: 9e:2d:9f:89:36:78:e0:f3:32:5c:91:66:12:8e:42: 69:2b:4f:e7:a7:e6:6b:37:5b:2d:93:eb:6e:fe:46: a8:38:fa:c2:28:dc:62:c2:ed:0d:ab:1a:ab:6a:bf: 05:e9:90:ec:0d:a7:5e:fd:c5:49:2b:e2:a3:d7:34: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CF:71:D9:E4:A9:5E:7D:F2:8F:0C:F1:A0:0E:9F:6A:60:CE:FB:73 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 25:5e:fd:30:31:3e:cc:92:69:ec:73:c2:21:b9:a1:af:c3:de: d4:50:6f:8e:98:52:6c:42:fd:28:e7:1e:cb:d2:86:b4:b3:25: 49:4e:4e:64:20:d3:8f:fb:45:e8:8f:90:4e:2e:57:f1:91:ec: c7:33:8a:66:8a:85:d9:42:c5:6b:38:a3:dd:a9:30:2e:97:36: 50:af:f8:64:a5:18:a6:16:3c:f0:e4:4f:c1:a9:f5:0c:25:8a: 21:88:80:f3:ad:80:2f:7f:bf:11:cd:15:a5:0f:c0:15:46:de: 03:bf:50:ef:34:28:8f:d8:af:f5:02:8c:e3:11:48:13:cd:83: a4:a8:50:20:ae:4a:37:61:30:e5:3d:ae:bf:aa:ae:ef:a3:e5: dc:f2:6a:80:0f:dd:ab:ab:05:7c:8e:60:cc:3a:09:db:ac:ac: 85:eb:b2:80:b5:2d:51:92:e7:a4:1a:24:fb:c0:23:15:e3:69: c4:9d:79:37:22:c2:cf:5c:e6:05:e3:00:61:4c:dd:51:9a:41: 83:39:ce:fc:55:2d:8d:34:16:1d:a5:9a:98:f5:f9:9c:9a:44: 67:02:dc:5b:b0:59:f9:c4:55:ec:3c:aa:69:61:22:3d:d6:fd: 89:3c:4c:e1:ef:33:68:a5:52:05:4b:5f:a1:b8:a5:06:09:40: 7f:bf:c2:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTKbWQ04WEN2Ut+Qjz2gGE2JqPTkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2Y3MzM1ZWI3NTAyNWQ5MDc3NDljNTM0MGU5NWE1ODc0 MGE2MjIxMjJhOGZiOTdkY2ZmYmI2M2IxZDA0MjkxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDACplnSwTDeZB5DWJqQ1Lj/AEdPaDDHD/ta3IPPCaIO91N 4rzc9vGFvo/fBzFMVIrnmOqX7hHxJeAfJHV3vvj25m6eMquZg91nR+LrmIZaf/O5 ptMNOduDCS3J/7YQuBr5t6aGy17ufirjorakbM3zX/gUJT7UgkSUSS0kRqaFEb6R P/od3x0L+CMrlm1nSn3RomLSWG3qjcO1ZxqtUZCetiIqiBllCSo3rEI8Vv8VjI1N wM9W1c4vaK6nV06+W8uaX54tn4k2eODzMlyRZhKOQmkrT+en5ms3Wy2T627+Rqg4 +sIo3GLC7Q2rGqtqvwXpkOwNp179xUkr4qPXNDtNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDs9x2eSpXn3yjwzxoA6famDO+3MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBACVe/TAxPsySaexzwiG5oa/D 3tRQb46YUmxC/SjnHsvShrSzJUlOTmQg04/7ReiPkE4uV/GR7MczimaKhdlCxWs4 o92pMC6XNlCv+GSlGKYWPPDkT8Gp9QwliiGIgPOtgC9/vxHNFaUPwBVG3gO/UO80 KI/Yr/UCjOMRSBPNg6SoUCCuSjdhMOU9rr+qru+j5dzyaoAP3aurBXyOYMw6Cdus rIXrsoC1LVGS56QaJPvAIxXjacSdeTciws9c5gXjAGFM3VGaQYM5zvxVLY00Fh2l mpj1+ZyaRGcC3FuwWfnEVew8qmlhIj3W/Yk8TOHvM2ilUgVLX6G4pQYJQH+/wq8= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org