$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: YBlD4Bj5y4Egjb01vx3lseGx8n3TxJlKkKIxnXB8Njs= Subject key identifier: 90:99:3C:43:3D:70:B6:EB:FA:D6:62:56:C0:D3:5A:BA:F4:1C:B1:74 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7FAC64321AF8FC80E99AB9BEAF5EC1E743DF6BEC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ac:64:32:1a:f8:fc:80:e9:9a:b9:be:af:5e:c1:e7:43:df:6b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=de6c0c9cf8fcc41363d69ef18c4b4e9e4cb2df8f3d18fe7340a08255cb96b88c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:56:82:b1:d0:05:eb:85:8d:08:c4:c5:ce:3a: ec:0a:3f:7d:82:a7:43:3f:70:82:a6:c9:18:91:26: 19:a2:b9:d6:d7:69:19:2e:84:2a:f4:2d:d2:ab:bc: 38:5c:20:92:f4:1c:4f:0e:11:f6:50:96:ee:c1:e7: 25:82:b7:7f:dd:33:b2:bd:bf:d3:90:ef:33:5f:07: c0:8b:4e:af:7a:77:30:ed:25:b0:fa:74:a7:d5:ef: d9:d5:82:29:d3:c1:56:f5:3a:5d:47:61:14:4d:65: 2c:c8:fe:26:78:32:19:2a:a4:db:ec:a7:21:b5:d5: 27:ea:3e:3f:d6:85:45:6d:13:a5:b2:e8:40:ba:15: 7b:d6:2f:29:00:ef:f9:b0:06:2b:e0:06:08:19:ab: e6:ae:8f:48:dd:ce:86:b7:d1:88:f8:4f:d7:11:04: 57:c2:53:97:b6:7f:2e:3e:72:a6:56:99:32:8b:66: 30:b9:d8:ad:73:3c:64:cb:ee:e6:f3:4f:48:63:1a: 85:6c:9e:2e:c3:66:a4:04:65:99:d6:a9:29:2d:7d: a8:3e:42:6f:c4:9e:b1:c5:f0:8f:83:99:38:a6:1e: bb:e3:28:cd:9d:06:60:73:d6:df:e9:74:56:69:5a: 62:2d:50:ec:3b:15:bb:7e:e5:6c:91:7d:ad:b7:fb: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:99:3C:43:3D:70:B6:EB:FA:D6:62:56:C0:D3:5A:BA:F4:1C:B1:74 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption 7c:00:45:96:77:a1:c8:88:07:96:0f:50:42:1a:fa:b2:29:59: e1:22:3b:1b:fa:93:d5:56:29:eb:de:78:9b:3d:b3:ee:51:45: bc:4b:a2:a9:cb:cd:7c:72:58:16:72:bc:8e:fd:75:ed:35:f9: 80:cf:9c:a8:b9:97:97:10:27:46:8b:cd:fc:5f:fe:81:c3:80: 60:7d:85:16:05:d3:8a:55:41:a6:42:5c:28:56:08:c3:b2:ad: bb:21:f8:46:aa:b5:52:99:79:fb:1e:fe:40:62:b3:c3:18:19: 9c:0c:e7:7e:4b:b9:f9:98:68:1a:6c:5a:00:53:b4:2c:d3:74: be:7e:5f:f0:87:61:cf:2e:30:9c:88:f2:70:a8:58:1e:6c:f1: 6e:7c:f9:bf:7a:f4:11:59:f3:8e:ac:ec:55:be:d7:ae:98:5b: 7b:7e:d1:0a:7f:7d:34:28:77:d9:11:28:90:8d:c5:7f:a7:20: 7f:f1:1a:47:db:d1:6c:86:cf:45:f2:27:1c:be:37:25:25:8e: 0e:1a:b4:c4:0a:6d:13:91:6b:ed:cc:e1:3d:7c:1a:c3:ac:1b: 40:87:fa:87:cc:6c:2e:17:4a:c6:87:ff:94:62:52:6f:a9:b7: a7:35:d6:15:73:68:6a:b3:a0:dd:91:12:8d:28:bf:be:95:c7: 84:c0:f7:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf6xkMhr4/IDpmrm+r17B50Pfa+wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTZjMGM5Y2Y4ZmNjNDEzNjNkNjllZjE4YzRiNGU5ZTRj YjJkZjhmM2QxOGZlNzM0MGEwODI1NWNiOTZiODhjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAVoKx0AXrhY0IxMXOOuwKP32Cp0M/cIKmyRiRJhmiudbX aRkuhCr0LdKrvDhcIJL0HE8OEfZQlu7B5yWCt3/dM7K9v9OQ7zNfB8CLTq96dzDt JbD6dKfV79nVginTwVb1Ol1HYRRNZSzI/iZ4MhkqpNvspyG11SfqPj/WhUVtE6Wy 6EC6FXvWLykA7/mwBivgBggZq+auj0jdzoa30Yj4T9cRBFfCU5e2fy4+cqZWmTKL ZjC52K1zPGTL7ubzT0hjGoVsni7DZqQEZZnWqSktfag+Qm/EnrHF8I+DmTimHrvj KM2dBmBz1t/pdFZpWmItUOw7Fbt+5WyRfa23+xlZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkJk8Qz1wtuv61mJWwNNauvQcsXQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAHwARZZ3ociIB5YPUEIa+rIp WeEiOxv6k9VWKeveeJs9s+5RRbxLoqnLzXxyWBZyvI79de01+YDPnKi5l5cQJ0aL zfxf/oHDgGB9hRYF04pVQaZCXChWCMOyrbsh+EaqtVKZefse/kBis8MYGZwM535L ufmYaBpsWgBTtCzTdL5+X/CHYc8uMJyI8nCoWB5s8W58+b969BFZ846s7FW+166Y W3t+0Qp/fTQod9kRKJCNxX+nIH/xGkfb0WyGz0XyJxy+NyUljg4atMQKbRORa+3M 4T18GsOsG0CH+ofMbC4XSsaH/5RiUm+pt6c11hVzaGqzoN2REo0ov76Vx4TA99o= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org