$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: ix9vCL50wAgkwBhB7OcYn0ajo6SgpSYgcF1BnCynJwY= Subject key identifier: 84:B2:10:BD:D8:BF:D5:8F:19:A3:FE:B0:2B:16:93:EE:21:B7:DF:B1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3D06ED025EC5299B3954B9D74087D6D95FD7471E Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Mon 04 Sep 2023 00:00:00 +0000 ROA not before: Mon 04 Sep 2023 00:00:00 +0000 ROA not after: Mon 09 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Sep 2023 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:06:ed:02:5e:c5:29:9b:39:54:b9:d7:40:87:d6:d9:5f:d7:47:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 4 00:00:00 2023 GMT Not After : Oct 9 23:59:59 2023 GMT Subject: serialNumber=eb804e18c7eac2bbf77316d4501f023f4e1e25b4f4e07061deea0097b1e5cd9e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1d:ff:60:47:ff:38:97:95:52:7b:7a:2e:c2: d2:76:aa:bd:e0:a4:6f:69:76:42:6c:ee:19:92:90: 17:4c:49:4a:c9:8b:08:c5:72:f8:ed:43:db:7f:17: a5:85:71:38:3b:4c:ca:39:00:64:b0:45:61:38:e9: f1:b8:a5:e8:54:3b:ed:3d:fd:51:18:54:eb:ce:1a: 91:2f:06:c0:31:53:c5:1e:ce:09:9e:8f:d1:56:b1: 21:dd:5d:d4:dc:dc:bc:64:9e:66:e3:15:2c:e6:fb: ea:d9:40:55:0f:97:09:d4:dd:c2:6b:a8:dc:30:93: a2:9f:fa:88:f7:f5:28:48:c7:42:53:68:e2:64:ec: b4:09:22:26:98:1d:d7:9b:fa:1e:f7:14:e9:4c:6c: e8:0c:5b:36:a8:1b:80:19:c5:bf:a3:44:2c:6d:22: dc:5b:dd:d8:a2:cd:2a:82:2d:b5:6b:ff:90:79:95: 91:f1:93:53:3a:83:91:f7:72:f4:d8:04:26:e2:b6: 87:6f:8d:5b:9a:98:93:72:a2:82:90:94:60:e1:a0: 17:09:b9:4c:a2:0a:28:5b:f0:f1:7d:ef:72:2f:15: 26:88:77:9f:d4:07:31:73:13:21:d9:de:9c:9b:22: f4:24:ce:f6:c5:8c:d6:96:82:d2:41:96:a9:d5:c8: c2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B2:10:BD:D8:BF:D5:8F:19:A3:FE:B0:2B:16:93:EE:21:B7:DF:B1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 79:87:1a:63:81:66:fa:c9:6a:62:2a:6c:20:29:54:8d:a9:a7: 63:7a:20:6a:85:44:59:38:82:f6:76:58:1e:c1:b6:30:de:f6: d4:e7:b6:93:50:54:1a:4c:61:e9:9b:70:87:59:d1:5d:d8:30: f3:5c:72:0a:d1:7e:e9:65:a2:06:b2:09:dd:52:95:66:26:4b: 0e:d9:f2:cc:a3:d6:cc:c3:16:a5:51:ac:96:ee:a1:79:ca:12: 90:d9:4d:97:f0:c4:22:18:8b:ae:bd:92:f4:d2:e2:7a:6f:b2: ac:9d:3a:97:5c:77:d0:4b:45:34:d8:de:2d:01:62:8c:85:c2: 45:08:b5:d3:fd:e9:cb:45:7c:15:40:8a:7c:1b:3d:29:74:3c: ed:12:52:b0:56:6e:9f:00:bd:7a:d2:c1:5f:98:55:31:75:e0: 68:51:40:6d:4a:e6:85:21:32:25:3a:c8:d9:53:eb:28:82:45: 32:0f:99:95:b2:0b:ba:77:a0:32:c0:b2:ef:ef:0d:2b:a6:59: d6:3e:9e:01:8c:cd:02:8e:36:37:d3:7b:ea:fd:e4:d4:18:4d: 92:a8:43:15:ed:30:6c:47:fc:00:bd:d4:b6:83:9f:39:dc:d9: 34:fd:3a:88:a9:dc:b8:ac:03:f7:af:af:bd:21:3c:5f:01:41: 43:3c:99:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPQbtAl7FKZs5VLnXQIfW2V/XRx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjMwOTA0MDAwMDAwWhcNMjMxMDA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjgwNGUxOGM3ZWFjMmJiZjc3MzE2ZDQ1MDFmMDIzZjRl MWUyNWI0ZjRlMDcwNjFkZWVhMDA5N2IxZTVjZDllMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTHf9gR/84l5VSe3ouwtJ2qr3gpG9pdkJs7hmSkBdMSUrJ iwjFcvjtQ9t/F6WFcTg7TMo5AGSwRWE46fG4pehUO+09/VEYVOvOGpEvBsAxU8Ue zgmej9FWsSHdXdTc3LxknmbjFSzm++rZQFUPlwnU3cJrqNwwk6Kf+oj39ShIx0JT aOJk7LQJIiaYHdeb+h73FOlMbOgMWzaoG4AZxb+jRCxtItxb3diizSqCLbVr/5B5 lZHxk1M6g5H3cvTYBCbitodvjVuamJNyooKQlGDhoBcJuUyiCihb8PF973IvFSaI d5/UBzFzEyHZ3pybIvQkzvbFjNaWgtJBlqnVyML7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhLIQvdi/1Y8Zo/6wKxaT7iG337EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAHmHGmOBZvrJamIqbCApVI2p p2N6IGqFRFk4gvZ2WB7BtjDe9tTntpNQVBpMYembcIdZ0V3YMPNccgrRfullogay Cd1SlWYmSw7Z8syj1szDFqVRrJbuoXnKEpDZTZfwxCIYi669kvTS4npvsqydOpdc d9BLRTTY3i0BYoyFwkUItdP96ctFfBVAinwbPSl0PO0SUrBWbp8AvXrSwV+YVTF1 4GhRQG1K5oUhMiU6yNlT6yiCRTIPmZWyC7p3oDLAsu/vDSumWdY+ngGMzQKONjfT e+r95NQYTZKoQxXtMGxH/AC91LaDnznc2TT9Ooip3LisA/evr70hPF8BQUM8mXE= -----END CERTIFICATE-----Generated at Mon Sep 4 15:17:37 2023 by rpki-client on console-ams.rpki-client.org