$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa File: 04a1d081-ae93-459e-88cf-fe92a8d30013.roa (raw, json) Hash identifier: VOooEpV2lOAd4skes6/ZkzAlWSzvokWvsSU/Xq6ilKo= Subject key identifier: 76:93:5A:06:2E:9A:88:87:DE:55:13:EE:56:D6:64:EA:BF:2C:22:EA Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 46ED8D2C42EBE3CBB6B009FBB20C75A129D3E99B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa Signing time: Wed 20 Sep 2023 00:00:00 +0000 ROA not before: Wed 20 Sep 2023 00:00:00 +0000 ROA not after: Wed 25 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:546::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Sep 2023 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ed:8d:2c:42:eb:e3:cb:b6:b0:09:fb:b2:0c:75:a1:29:d3:e9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 20 00:00:00 2023 GMT Not After : Oct 25 23:59:59 2023 GMT Subject: serialNumber=aa02192cc3aba0d63c6d9712eff6f5ed0ea3e5db2090ef42815cc602615c35c0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:8c:fb:9e:9f:0e:a8:62:79:24:88:d4:f7: cb:14:b5:e9:98:93:30:4c:fa:e0:62:e6:9f:b1:2b: fa:b9:09:fb:cf:c5:02:51:f5:94:d4:06:78:21:28: a4:cb:10:6f:02:40:eb:5b:d7:56:76:60:43:34:cd: a3:2f:aa:83:69:a2:da:09:63:db:e3:cf:e7:23:79: e1:53:72:39:02:0e:d6:29:27:ae:81:d0:d1:a6:68: 61:29:10:c8:cf:9e:0b:d1:d5:2a:79:7a:de:62:87: 59:d7:a8:1d:56:e4:58:0f:c6:e0:51:54:b5:07:6a: f5:df:4f:a2:36:9f:f5:14:dc:61:02:aa:80:9c:e2: e4:6a:36:cb:5e:4c:64:8e:eb:40:a4:31:0a:15:ab: 3c:0c:e2:1d:19:71:c2:db:68:a2:f6:66:1c:a2:3a: 44:13:8c:3e:d0:ce:f7:ff:c3:f3:60:b8:0c:37:ed: d4:b2:5f:91:2a:eb:16:65:0d:c2:65:95:70:ee:bc: 3e:f9:ec:63:b6:5a:0a:2f:b5:45:61:f9:ed:ba:52: 3d:c3:94:a7:8a:a9:2d:82:e4:18:db:89:44:e6:0c: 5d:6b:36:4e:eb:41:9b:44:d6:ca:30:92:9b:a8:95: c7:c7:1e:46:ec:7e:f4:c4:7c:94:d9:da:53:8e:17: 37:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:93:5A:06:2E:9A:88:87:DE:55:13:EE:56:D6:64:EA:BF:2C:22:EA X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/04a1d081-ae93-459e-88cf-fe92a8d30013.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:546::/48 Signature Algorithm: sha256WithRSAEncryption 83:ce:8c:e7:20:f1:05:46:78:31:9a:7b:ed:82:78:1e:81:62: b4:1b:a6:f7:67:96:24:8b:b4:19:cb:3e:c1:b1:42:85:52:13: c6:62:15:4c:e6:a6:2e:ba:5e:6d:b0:b6:7f:e2:f4:9b:2f:6c: 48:3a:18:b6:0a:21:8f:73:65:f2:b5:76:7c:9a:78:26:77:ca: b7:ad:0a:cc:44:97:41:fc:7a:2b:c9:7c:fb:7f:a7:4b:49:c0: 40:8f:d7:53:07:af:4c:67:4d:21:45:9a:55:60:38:61:09:7e: 5d:32:a2:10:83:ac:af:dc:75:09:dd:f7:64:e5:be:1e:6d:b0: bb:c7:9d:36:3f:7e:de:98:13:4e:f7:14:f4:21:1a:c9:d3:c4: 22:e3:d7:77:86:b8:7e:f8:e2:99:2b:a9:e2:71:da:14:af:9e: 69:b4:86:ab:f1:95:64:e9:99:49:04:63:55:ef:d5:c9:13:ea: f3:8c:6e:88:14:60:ee:e8:2c:20:b7:9a:6f:36:7b:5a:f2:e8: fe:65:4f:e9:34:dd:48:e0:25:a4:11:13:42:8b:19:74:bb:ea: 3c:aa:ac:84:b4:b8:15:e8:17:e4:6c:21:73:c4:f9:e7:f4:7d: 24:25:3b:0b:0a:3e:8d:d7:ae:0d:63:7e:e2:3e:61:8d:fa:ab: f9:af:d4:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURu2NLELr48u2sAn7sgx1oSnT6ZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjMwOTIwMDAwMDAwWhcNMjMxMDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTAyMTkyY2MzYWJhMGQ2M2M2ZDk3MTJlZmY2ZjVlZDBl YTNlNWRiMjA5MGVmNDI4MTVjYzYwMjYxNWMzNWMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLOYz7np8OqGJ5JIjU98sUtemYkzBM+uBi5p+xK/q5CfvP xQJR9ZTUBnghKKTLEG8CQOtb11Z2YEM0zaMvqoNpotoJY9vjz+cjeeFTcjkCDtYp J66B0NGmaGEpEMjPngvR1Sp5et5ih1nXqB1W5FgPxuBRVLUHavXfT6I2n/UU3GEC qoCc4uRqNsteTGSO60CkMQoVqzwM4h0ZccLbaKL2ZhyiOkQTjD7Qzvf/w/NguAw3 7dSyX5Eq6xZlDcJllXDuvD757GO2WgovtUVh+e26Uj3DlKeKqS2C5BjbiUTmDF1r Nk7rQZtE1sowkpuolcfHHkbsfvTEfJTZ2lOOFzfdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdpNaBi6aiIfeVRPuVtZk6r8sIuowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzA0YTFkMDgxLWFlOTMtNDU5ZS04OGNmLWZlOTJhOGQzMDAxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUYwDQYJKoZIhvcNAQELBQADggEBAIPOjOcg8QVGeDGae+2CeB6B YrQbpvdnliSLtBnLPsGxQoVSE8ZiFUzmpi66Xm2wtn/i9JsvbEg6GLYKIY9zZfK1 dnyaeCZ3yretCsxEl0H8eivJfPt/p0tJwECP11MHr0xnTSFFmlVgOGEJfl0yohCD rK/cdQnd92Tlvh5tsLvHnTY/ft6YE073FPQhGsnTxCLj13eGuH744pkrqeJx2hSv nmm0hqvxlWTpmUkEY1Xv1ckT6vOMbogUYO7oLCC3mm82e1ry6P5lT+k03UjgJaQR E0KLGXS76jyqrIS0uBXoF+RsIXPE+ef0fSQlOwsKPo3Xrg1jfuI+YY36q/mv1MA= -----END CERTIFICATE-----Generated at Wed Sep 20 00:26:34 2023 by rpki-client on console-fra.rpki-client.org