$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa File: c5e869f4-a046-4227-a965-632f217c044e.roa (raw, json) Hash identifier: yWPbzVIlpsL9LuUJbyoHLHiao6TLip7xGkAhRjGkQG0= Subject key identifier: DF:B2:B9:C1:D4:2E:E7:C4:30:32:4E:5C:6D:71:43:03:24:8E:1C:55 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 20336A860097167A61E5966E014A55A52F1322 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00c:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:33:6a:86:00:97:16:7a:61:e5:96:6e:01:4a:55:a5:2f:13:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=d96a0c31526590eff6dd5a0b17331d79324cac98d246dba492266b0ddb874974, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:da:dc:cd:c6:77:1a:cb:8c:8e:dc:bf:b7:12: 3e:cf:9d:9b:00:39:c5:6f:5b:e3:2b:e9:a5:f2:c5: f5:ca:c8:b9:08:40:39:6b:78:d8:b8:60:56:b0:ee: ef:b5:e6:01:25:12:db:49:b9:45:79:f7:2f:46:34: 44:5e:4b:85:8f:f7:44:52:aa:47:3c:ee:8b:46:bf: 48:af:2d:c3:75:1c:48:1d:40:10:2f:89:9a:14:48: ab:f3:f3:4d:d0:ac:5f:87:19:ea:4a:8a:5b:3d:37: 8f:df:15:b4:94:a3:3e:2d:b6:fa:bb:6a:ff:da:40: 2b:e7:0f:d6:0d:50:fe:55:b3:9d:6a:14:b3:53:c0: a1:cb:eb:19:a3:cf:47:97:c6:2b:3c:c3:34:d3:7b: ca:d1:40:58:d0:2a:5d:1a:9d:af:ec:23:e1:93:5d: 20:9f:24:bf:9e:66:91:aa:02:51:99:fd:bc:9c:72: fb:a9:1e:4f:7b:51:46:3a:05:00:89:41:25:15:bc: 9c:af:75:ef:08:87:7e:9d:74:4a:29:b1:aa:1c:c5: 3d:64:f8:a9:af:bd:44:7e:66:d8:bf:5a:ba:d3:84: ad:02:da:ff:b1:9c:05:80:b6:9e:c2:ba:8f:af:0b: 7a:55:1e:d8:17:76:24:48:d7:75:1e:59:3d:01:f7: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B2:B9:C1:D4:2E:E7:C4:30:32:4E:5C:6D:71:43:03:24:8E:1C:55 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c:8000::/39 Signature Algorithm: sha256WithRSAEncryption 35:cf:9f:d3:2e:8c:94:da:4c:85:ff:5a:b2:6b:5c:31:d5:3b: 50:dd:ec:e0:17:a2:29:75:ed:5b:55:22:1b:4f:b3:af:88:42: e1:6e:55:01:87:14:6a:1b:c2:9c:7a:82:40:f1:99:42:4e:4f: c6:41:06:67:09:8b:9d:80:54:1f:ca:55:37:d7:4f:55:cb:5d: 73:73:f7:ce:a7:94:0d:5b:62:b5:13:25:48:25:25:01:51:d9: e9:cb:e3:f1:ac:0b:a0:29:41:22:07:4c:5d:0c:6f:70:44:e6: 39:2e:81:de:b4:5a:b0:28:5c:b8:28:5e:6b:96:e5:d3:fd:0e: b7:54:25:1b:ce:98:1e:44:7e:ca:c0:c9:55:c6:9e:f6:ea:f9: dc:b8:63:a1:c5:9b:6f:3b:65:08:1b:dc:ed:12:80:c6:2d:ec: 99:17:b5:69:ce:c5:79:ed:cc:a7:fa:28:dc:3c:ef:33:70:2a: 16:eb:f8:8b:11:5e:4f:a8:ac:83:50:59:ce:6f:4b:1e:c1:6a: be:04:f3:e7:bc:eb:cd:9b:e1:64:92:9c:a1:32:98:71:8b:f4: 81:01:dd:95:47:1c:96:7c:a2:86:22:b4:06:52:b9:14:0b:1b: 60:35:6d:5f:50:1b:c9:25:17:c0:58:4d:ef:76:55:79:9a:91: 3b:c2:c4:75 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITIDNqhgCXFnph5ZZuAUpVpS8TIjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yMzA5MDkwMDAwMDBaFw0yMzEwMTQyMzU5NTla MHoxSTBHBgNVBAUTQGQ5NmEwYzMxNTI2NTkwZWZmNmRkNWEwYjE3MzMxZDc5MzI0 Y2FjOThkMjQ2ZGJhNDkyMjY2YjBkZGI4NzQ5NzQxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALTa3M3GdxrLjI7cv7cSPs+dmwA5xW9b4yvppfLF9crIuQhA OWt42LhgVrDu77XmASUS20m5RXn3L0Y0RF5LhY/3RFKqRzzui0a/SK8tw3UcSB1A EC+JmhRIq/PzTdCsX4cZ6kqKWz03j98VtJSjPi22+rtq/9pAK+cP1g1Q/lWznWoU s1PAocvrGaPPR5fGKzzDNNN7ytFAWNAqXRqdr+wj4ZNdIJ8kv55mkaoCUZn9vJxy +6keT3tRRjoFAIlBJRW8nK917wiHfp10SimxqhzFPWT4qa+9RH5m2L9autOErQLa /7GcBYC2nsK6j68LelUe2Bd2JEjXdR5ZPQH3MwcCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBTfsrnB1C7nxDAyTlxtcUMDJI4cVTAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvYzVlODY5ZjQtYTA0Ni00MjI3LWE5NjUtNjMyZjIxN2MwNDRlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGASYA8AyAMA0GCSqGSIb3DQEBCwUAA4IBAQA1z5/TLoyU2kyF/1qya1wx1TtQ 3ezgF6Ipde1bVSIbT7OviELhblUBhxRqG8KceoJA8ZlCTk/GQQZnCYudgFQfylU3 109Vy11zc/fOp5QNW2K1EyVIJSUBUdnpy+PxrAugKUEiB0xdDG9wROY5LoHetFqw KFy4KF5rluXT/Q63VCUbzpgeRH7KwMlVxp726vncuGOhxZtvO2UIG9ztEoDGLeyZ F7VpzsV57cyn+ijcPO8zcCoW6/iLEV5PqKyDUFnOb0sewWq+BPPnvOvNm+Fkkpyh Mphxi/SBAd2VRxyWfKKGIrQGUrkUCxtgNW1fUBvJJRfAWE3vdlV5mpE7wsR1 -----END CERTIFICATE-----Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org