$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa File: 42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa (raw, json) Hash identifier: x6fcQGMVMhr8vKuqqQpoiOExgN1tLB0C5UgzZ9XwQYM= Subject key identifier: BF:02:9D:34:D9:88:15:F0:29:42:36:92:A5:F3:2C:6C:EC:F9:20:50 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3FE6C0352312E46E82614061AF7003F10407E0EE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa Signing time: Wed 20 Sep 2023 00:00:00 +0000 ROA not before: Wed 20 Sep 2023 00:00:00 +0000 ROA not after: Wed 25 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:547::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Sep 2023 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e6:c0:35:23:12:e4:6e:82:61:40:61:af:70:03:f1:04:07:e0:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 20 00:00:00 2023 GMT Not After : Oct 25 23:59:59 2023 GMT Subject: serialNumber=1d1d6aac9fb3cffb1b8201052e6e1662dc2d4da3923ce19b2a3ad8ab9ddbbc24, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:23:ac:18:91:36:b9:bd:98:62:67:47:ac:8e: f0:93:87:95:ce:32:21:cc:bc:7f:33:4d:99:53:76: cc:7f:ca:43:a0:ca:9d:51:47:6b:85:e0:ee:26:9f: 6c:92:81:45:dd:46:ab:7e:a5:67:53:0e:5e:34:2a: cf:f7:9b:ba:f6:78:69:a4:c0:a5:fb:26:bc:cf:e4: e7:7a:e8:04:53:ba:11:c6:06:92:ce:be:4f:2d:19: 1a:66:e5:2a:ac:f5:f5:ed:f0:11:29:ff:83:d6:69: b3:80:68:60:c6:26:a4:c7:e3:32:db:2a:35:5b:86: 6d:f3:0a:53:35:94:42:e3:e0:3c:9d:b6:49:23:88: 40:2d:8a:ed:6b:7f:35:73:d8:6e:83:02:44:3a:82: e6:ab:08:bd:88:d5:cd:6d:36:42:37:e1:34:6c:98: 68:fa:9b:5b:c8:05:b7:e0:54:fb:e5:2a:23:1a:ef: b1:97:2e:92:ba:e5:d8:79:ee:b5:d3:61:40:31:80: c3:4e:01:57:72:db:0e:8f:4e:69:a6:9e:bc:ca:73: 3a:69:d8:ac:30:2a:88:fb:70:71:8d:a3:25:d1:05: 14:58:a7:67:2a:8a:cd:57:10:14:aa:24:80:2d:e0: 9b:27:ef:74:72:04:7a:c9:ba:d6:d0:ee:16:3d:fa: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:02:9D:34:D9:88:15:F0:29:42:36:92:A5:F3:2C:6C:EC:F9:20:50 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/42b1cfd9-f613-4e68-b4c6-468e5d50b9c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:547::/48 Signature Algorithm: sha256WithRSAEncryption 97:2e:9d:3d:22:9a:bc:5c:a8:f1:ef:79:75:af:4a:51:76:fa: a3:d7:5b:f5:6c:f3:ef:c0:0f:e8:8e:a8:11:05:91:98:10:02: 58:79:7b:a4:e1:4a:a1:24:f7:f4:e1:b0:9a:d7:e6:98:ad:18: cc:26:5c:d5:61:c2:52:b5:d8:f7:ad:41:9c:92:0e:c1:d8:20: 66:65:b2:f0:df:27:de:f9:d4:55:b7:f2:37:ed:5d:2e:d7:68: d0:d9:6d:17:4d:dc:c2:65:29:14:80:bb:f3:46:8d:b8:aa:f2: 51:62:7e:d0:09:df:05:d7:94:a5:38:53:58:8f:06:20:c0:c2: cc:00:d4:30:4b:98:b7:27:a0:7f:eb:f4:96:5f:9d:5c:af:65: 50:35:54:be:48:65:e8:93:62:94:77:ce:c8:e6:14:0f:0e:79: c7:83:c3:d2:e5:79:36:bc:72:c2:66:7d:22:48:94:11:6f:68: a5:0c:60:e3:42:dd:34:25:2f:73:15:cd:10:4b:2a:ea:82:22: ef:d0:27:ba:0c:4b:ab:ec:e9:8b:7e:ae:b6:ef:23:05:bc:5d: 93:4e:3f:ba:4f:48:c5:04:34:a3:da:e7:55:50:49:2f:be:87: b8:89:1d:99:d2:e3:28:e4:b0:ed:c5:51:e8:15:df:9d:5b:e8: 36:77:90:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP+bANSMS5G6CYUBhr3AD8QQH4O4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjMwOTIwMDAwMDAwWhcNMjMxMDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDFkNmFhYzlmYjNjZmZiMWI4MjAxMDUyZTZlMTY2MmRj MmQ0ZGEzOTIzY2UxOWIyYTNhZDhhYjlkZGJiYzI0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMI6wYkTa5vZhiZ0esjvCTh5XOMiHMvH8zTZlTdsx/ykOg yp1RR2uF4O4mn2ySgUXdRqt+pWdTDl40Ks/3m7r2eGmkwKX7JrzP5Od66ARTuhHG BpLOvk8tGRpm5Sqs9fXt8BEp/4PWabOAaGDGJqTH4zLbKjVbhm3zClM1lELj4Dyd tkkjiEAtiu1rfzVz2G6DAkQ6guarCL2I1c1tNkI34TRsmGj6m1vIBbfgVPvlKiMa 77GXLpK65dh57rXTYUAxgMNOAVdy2w6PTmmmnrzKczpp2KwwKoj7cHGNoyXRBRRY p2cqis1XEBSqJIAt4Jsn73RyBHrJutbQ7hY9+iE9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvwKdNNmIFfApQjaSpfMsbOz5IFAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQyYjFjZmQ5LWY2MTMtNGU2OC1iNGM2LTQ2OGU1ZDUwYjljNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABUcwDQYJKoZIhvcNAQELBQADggEBAJcunT0imrxcqPHveXWvSlF2 +qPXW/Vs8+/AD+iOqBEFkZgQAlh5e6ThSqEk9/ThsJrX5pitGMwmXNVhwlK12Pet QZySDsHYIGZlsvDfJ9751FW38jftXS7XaNDZbRdN3MJlKRSAu/NGjbiq8lFiftAJ 3wXXlKU4U1iPBiDAwswA1DBLmLcnoH/r9JZfnVyvZVA1VL5IZeiTYpR3zsjmFA8O eceDw9LleTa8csJmfSJIlBFvaKUMYONC3TQlL3MVzRBLKuqCIu/QJ7oMS6vs6Yt+ rrbvIwW8XZNOP7pPSMUENKPa51VQSS++h7iJHZnS4yjksO3FUegV351b6DZ3kDQ= -----END CERTIFICATE-----Generated at Wed Sep 20 00:26:35 2023 by rpki-client on console-fra.rpki-client.org