$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa File: 9a57e8ce-af4c-4714-890a-a5c12113375e.roa (raw, json) Hash identifier: feJDHzH5wDvZNJR3Vv/vd0G0Vu2PF4yrfBKh9rY5HaU= Subject key identifier: C1:6A:BA:D7:B7:64:0B:A9:80:C4:6B:21:63:3C:EE:87:C3:11:AA:76 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 67CF8EF42004D6C7DED5776FDEB66600DDEF6B6F Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:cf:8e:f4:20:04:d6:c7:de:d5:77:6f:de:b6:66:00:dd:ef:6b:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=aa80a9889b287aef2467101f3cac59c782d9b2b1ac31e191c8d1c8eebd53fb4b, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:86:9a:f9:96:81:dc:41:9a:33:38:50:b5: 8f:4f:5c:1a:30:6d:d5:e0:e9:05:ce:33:56:29:64: 99:bb:89:03:57:0f:ba:80:8f:5d:b7:48:bd:ad:af: 90:90:08:52:96:f0:2b:1d:19:81:72:4a:45:ef:89: a4:41:db:74:da:b0:b0:86:08:9e:ae:c8:01:76:2e: 8c:73:6c:b5:7c:c8:41:2a:7f:20:89:24:fc:de:21: f7:45:d0:a5:48:a3:a3:8d:ab:da:d2:fe:dc:b2:67: d7:ea:37:5d:91:5e:97:68:92:6f:e2:0d:75:15:87: f0:77:4b:23:56:06:30:94:0b:bd:d5:a6:48:a8:c2: ee:a2:af:75:9f:04:86:1d:3c:ac:d6:ea:37:32:89: 9e:4d:c8:9c:d4:54:e2:e3:49:74:2c:30:b0:64:5d: 3b:cb:f9:cd:69:49:1d:0e:ea:5b:ba:89:fa:e4:5c: 16:77:36:ce:94:44:09:4b:00:4c:2e:f7:89:00:8c: 54:23:91:4a:57:ff:5c:4e:a1:d0:bf:95:38:69:62: be:82:e5:29:3d:91:0d:24:f0:a1:fb:ee:9f:29:96: 8e:84:d1:cb:1b:ff:d6:a7:c3:81:14:4c:10:d5:d7: 24:3d:58:2f:08:32:56:32:ee:26:ce:83:11:a6:1c: a5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6A:BA:D7:B7:64:0B:A9:80:C4:6B:21:63:3C:EE:87:C3:11:AA:76 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3006::/48 Signature Algorithm: sha256WithRSAEncryption 06:dc:a4:0e:f1:61:01:db:b3:54:26:8a:2c:4e:26:0e:76:0b: 07:02:d6:f7:e6:b1:0a:40:dd:d0:1c:7c:73:bf:5a:78:e6:69: cd:db:1c:20:b3:4c:2d:c1:f8:b6:d2:68:c7:22:00:bd:f0:57: b6:64:70:0b:fb:9b:04:28:05:09:3a:44:e8:1f:16:aa:a7:ea: af:93:c7:d3:a9:a3:64:d1:a7:cb:bf:13:28:18:e4:bd:10:24: 08:9d:ec:b0:2b:e1:78:e8:03:61:b0:6d:76:32:ba:cd:30:d1: a6:af:37:32:92:d8:54:e9:e8:48:25:19:5a:76:69:a8:89:80: 4c:34:a4:13:6e:57:d8:26:7d:88:26:44:c5:2e:99:d7:fa:ec: d8:b6:95:e4:2c:3a:0a:de:d9:27:37:d5:d8:56:41:fe:03:c1: 41:01:9d:76:82:9f:8c:5d:6e:42:3c:65:b9:75:9d:da:00:5d: 6b:de:c3:b8:4e:53:3d:81:02:e4:dc:6b:0f:7f:09:81:ee:b1: 12:f2:c6:75:5f:aa:30:af:20:c2:00:31:94:22:19:56:2a:52: ef:42:91:50:43:bc:b7:46:40:dd:e4:9d:f3:2c:b7:c5:27:0a: 5e:f7:2c:88:a5:f3:5e:93:5a:69:5c:1d:04:b4:03:e9:9c:cc: 93:a6:ad:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ8+O9CAE1sfe1Xdv3rZmAN3va28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTgwYTk4ODliMjg3YWVmMjQ2NzEwMWYzY2FjNTljNzgy ZDliMmIxYWMzMWUxOTFjOGQxYzhlZWJkNTNmYjRiMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFNIaa+ZaB3EGaMzhQtY9PXBowbdXg6QXOM1YpZJm7iQNX D7qAj123SL2tr5CQCFKW8CsdGYFySkXviaRB23TasLCGCJ6uyAF2LoxzbLV8yEEq fyCJJPzeIfdF0KVIo6ONq9rS/tyyZ9fqN12RXpdokm/iDXUVh/B3SyNWBjCUC73V pkiowu6ir3WfBIYdPKzW6jcyiZ5NyJzUVOLjSXQsMLBkXTvL+c1pSR0O6lu6ifrk XBZ3Ns6URAlLAEwu94kAjFQjkUpX/1xOodC/lThpYr6C5Sk9kQ0k8KH77p8plo6E 0csb/9anw4EUTBDV1yQ9WC8IMlYy7ibOgxGmHKXtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwWq617dkC6mAxGshYzzuh8MRqnYwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzlhNTdlOGNlLWFmNGMtNDcxNC04OTBhLWE1YzEyMTEzMzc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAYwDQYJKoZIhvcNAQELBQADggEBAAbcpA7xYQHbs1QmiixOJg52 CwcC1vfmsQpA3dAcfHO/Wnjmac3bHCCzTC3B+LbSaMciAL3wV7ZkcAv7mwQoBQk6 ROgfFqqn6q+Tx9Opo2TRp8u/EygY5L0QJAid7LAr4XjoA2GwbXYyus0w0aavNzKS 2FTp6EglGVp2aaiJgEw0pBNuV9gmfYgmRMUumdf67Ni2leQsOgre2Sc31dhWQf4D wUEBnXaCn4xdbkI8Zbl1ndoAXWvew7hOUz2BAuTcaw9/CYHusRLyxnVfqjCvIMIA MZQiGVYqUu9CkVBDvLdGQN3knfMst8UnCl73LIil816TWmlcHQS0A+mczJOmrQk= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org