$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa File: 277fb1fb-3655-4c68-80f2-1f4160a003be.roa (raw, json) Hash identifier: NhduYAGLsAIWhfrQduuoGyixzzF4/OMuURx7IcPXIyo= Subject key identifier: 72:B3:FA:7F:F0:B9:7F:B6:51:2A:39:D7:F8:58:CC:64:4A:B0:7A:F7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5FEA1EA947689941BD30036AE43752C2A27779B8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:398::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 19 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ea:1e:a9:47:68:99:41:bd:30:03:6a:e4:37:52:c2:a2:77:79:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=2576a3f2dd036e4e5da96806732922dff848c0059d1a8d28d594eafd028e78e7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:dd:d5:f7:44:c1:04:76:1d:3e:1b:a1:4a:ea: b1:50:96:3c:00:53:4b:da:92:3d:24:38:4f:34:ec: ef:95:11:8f:6c:b9:a1:d5:5c:ef:8a:c4:58:df:40: f9:88:8d:49:c6:08:1d:8b:f3:80:17:a1:96:df:48: d0:f7:b4:67:31:f0:da:a6:62:ea:82:75:24:59:52: d8:e4:0f:36:58:59:e0:d9:a3:cb:b9:19:f6:8f:33: d9:90:b9:91:93:a4:4f:d9:fb:7e:04:7f:d4:8a:75: ac:c3:86:f7:f4:0e:6b:b2:fe:43:ac:f2:fd:a3:ff: 68:bf:68:f6:bd:ae:9f:07:da:35:c6:69:fb:6d:73: 3d:bc:04:52:81:b0:20:89:1f:26:b6:95:60:0f:fe: 4f:ea:80:7b:7c:79:3e:3b:73:f4:dd:21:49:da:1a: d3:75:6a:7d:83:ef:44:20:b2:2f:8c:b2:0f:45:22: 64:42:12:a8:fc:a7:65:04:71:12:12:77:44:a6:82: 96:7e:59:96:b6:6b:67:cf:88:7e:b3:6e:30:7b:92: f9:0a:86:98:09:f3:03:2d:1c:45:ba:a4:7c:ae:d1: d9:9d:c9:cb:e5:65:d8:98:a9:94:87:8d:45:cb:d6: 30:0d:4d:de:87:e1:45:bb:3b:2e:c9:32:5a:54:b0: 81:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B3:FA:7F:F0:B9:7F:B6:51:2A:39:D7:F8:58:CC:64:4A:B0:7A:F7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/277fb1fb-3655-4c68-80f2-1f4160a003be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:398::/48 Signature Algorithm: sha256WithRSAEncryption 6c:6e:67:d8:cc:ac:9b:ff:f5:58:4c:11:0d:22:d2:67:7d:a0: 01:b2:45:99:9f:13:71:98:e3:95:e3:fe:4b:a6:e1:94:da:a5: cc:a0:d0:80:85:a0:0d:a5:5a:92:42:7d:63:38:5f:79:0e:4b: e6:f2:a5:8b:b9:a1:10:df:a6:0f:18:09:5c:12:18:f7:f3:90: b7:ca:5e:bd:b8:8c:7d:19:9c:56:cc:f7:2a:c2:2b:7b:fb:a7: 3b:e3:e8:90:a2:a8:b6:36:d1:4d:bc:ef:ec:e2:6e:3a:72:5d: e4:d7:8b:0c:57:49:ed:64:fd:85:60:15:b6:4b:27:99:b0:c8: 6a:be:71:bc:1d:56:1c:ee:eb:51:a7:89:84:2c:f6:67:df:d9: 62:6a:c8:4d:93:b4:66:2d:f2:a3:fe:d6:fc:6a:83:36:51:47: 4d:4f:cc:a3:97:e1:e1:12:a8:d9:2d:44:ce:50:85:d3:b4:fb: 97:8b:46:61:30:57:f3:8b:02:8b:15:27:02:2f:49:a8:cd:01: 02:7b:7e:a8:a0:9f:48:ee:65:93:12:5e:10:19:5c:21:87:d7: 34:4a:3c:44:39:d5:4a:bd:95:58:a2:36:d8:76:ef:5b:ab:7c: 37:80:70:0e:e6:e2:0e:7a:d5:81:1a:15:60:cf:56:e0:5e:66: a5:c8:fa:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX+oeqUdomUG9MANq5DdSwqJ3ebgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjMwOTE4MDAwMDAwWhcNMjMxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTc2YTNmMmRkMDM2ZTRlNWRhOTY4MDY3MzI5MjJkZmY4 NDhjMDA1OWQxYThkMjhkNTk0ZWFmZDAyOGU3OGU3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq3dX3RMEEdh0+G6FK6rFQljwAU0vakj0kOE807O+VEY9s uaHVXO+KxFjfQPmIjUnGCB2L84AXoZbfSND3tGcx8NqmYuqCdSRZUtjkDzZYWeDZ o8u5GfaPM9mQuZGTpE/Z+34Ef9SKdazDhvf0Dmuy/kOs8v2j/2i/aPa9rp8H2jXG afttcz28BFKBsCCJHya2lWAP/k/qgHt8eT47c/TdIUnaGtN1an2D70Qgsi+Msg9F ImRCEqj8p2UEcRISd0SmgpZ+WZa2a2fPiH6zbjB7kvkKhpgJ8wMtHEW6pHyu0dmd ycvlZdiYqZSHjUXL1jANTd6H4UW7Oy7JMlpUsIHvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcrP6f/C5f7ZRKjnX+FjMZEqwevcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzI3N2ZiMWZiLTM2NTUtNGM2OC04MGYyLTFmNDE2MGEwMDNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5gwDQYJKoZIhvcNAQELBQADggEBAGxuZ9jMrJv/9VhMEQ0i0md9 oAGyRZmfE3GY45Xj/kum4ZTapcyg0ICFoA2lWpJCfWM4X3kOS+bypYu5oRDfpg8Y CVwSGPfzkLfKXr24jH0ZnFbM9yrCK3v7pzvj6JCiqLY20U287+zibjpyXeTXiwxX Se1k/YVgFbZLJ5mwyGq+cbwdVhzu61GniYQs9mff2WJqyE2TtGYt8qP+1vxqgzZR R01PzKOX4eESqNktRM5QhdO0+5eLRmEwV/OLAosVJwIvSajNAQJ7fqign0juZZMS XhAZXCGH1zRKPEQ51Uq9lViiNth271urfDeAcA7m4g561YEaFWDPVuBeZqXI+g8= -----END CERTIFICATE-----Generated at Mon Sep 18 15:40:40 2023 by rpki-client on console-ams.rpki-client.org