$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa File: a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa (raw, json) Hash identifier: 9L45Ohd9KSQVYyQPQBuPieDp4i6c4S3IFH7UEdWwhEQ= Subject key identifier: 15:8B:46:14:DB:0A:5A:F3:96:03:76:91:CC:DE:22:13:7A:45:B6:D5 Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 01B6E43200FACE36AA90C575F1325FC642668FC4 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa Signing time: Mon 18 Sep 2023 00:00:00 +0000 ROA not before: Mon 18 Sep 2023 00:00:00 +0000 ROA not after: Mon 23 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 20 Sep 2023 04:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b6:e4:32:00:fa:ce:36:aa:90:c5:75:f1:32:5f:c6:42:66:8f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Sep 18 00:00:00 2023 GMT Not After : Oct 23 23:59:59 2023 GMT Subject: serialNumber=f3e06db6c6355b01e2f8ecc85140665b27953f73c0a4777cbb6c263355be4a22, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e0:f7:09:58:54:2e:74:e1:8f:c8:73:7f:60: 73:bd:8a:e0:e3:0f:a4:c5:5b:fb:a4:47:12:35:16: 72:aa:d7:2b:93:ac:8e:de:21:da:2b:d0:11:67:7c: d0:b3:7c:fa:2f:dc:a7:4e:04:4b:e2:35:a3:81:d1: 83:2f:ec:83:37:b3:ec:71:86:8c:d7:64:b9:85:c9: 87:15:d5:0a:45:ef:45:91:3e:99:24:81:53:e4:f6: e7:ff:6d:58:b6:e0:37:ec:e1:03:6f:3a:bd:5e:fb: 2a:59:00:05:37:13:af:b0:10:c3:f2:65:1e:dd:fa: 94:85:4d:c1:8c:43:bd:7f:0f:1a:b4:c6:ff:ee:1b: f9:62:ab:aa:f0:cb:41:af:be:e0:52:2a:47:0d:3e: 23:a7:43:31:45:f9:a0:ac:de:ae:bf:8a:26:75:54: 26:66:5f:d7:af:8d:42:56:0f:77:d3:c5:67:5b:9e: 0d:03:f7:4b:6e:2b:68:28:29:93:fd:17:08:ad:f3: 03:e7:98:2c:74:69:68:9b:c5:59:30:94:da:fd:56: cd:34:75:79:fe:16:f2:f4:6a:81:32:ab:da:95:ed: 20:a7:33:5d:2a:a2:11:ff:f0:5d:3e:8f:6c:dd:53: ce:f6:6b:a5:bd:09:a1:52:b4:35:68:65:d6:aa:d7: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8B:46:14:DB:0A:5A:F3:96:03:76:91:CC:DE:22:13:7A:45:B6:D5 X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 81:a3:58:65:da:ef:d0:30:0a:a8:55:95:46:15:bd:3c:21:5b: c6:a0:80:9b:b4:42:05:50:3d:19:4c:63:5c:2b:ab:fa:a5:6b: 08:e7:2b:9c:32:cc:a5:c8:f7:49:d7:ec:c3:70:20:55:f8:f5: 42:d9:60:e3:e2:87:a0:f8:42:50:4a:72:55:05:58:13:57:bf: 79:73:d6:c3:29:63:bc:b6:dd:b1:66:ac:03:d6:81:e6:3a:a8: 0f:be:7b:3f:1b:d8:4d:6e:cf:e3:8d:00:02:71:00:42:71:7c: 1e:5a:c8:a9:40:bb:18:56:4a:a8:58:49:64:5b:3f:a3:db:c0: 80:de:13:95:7e:c4:c9:a2:e5:9e:d0:54:e6:2d:31:f7:00:44: 2d:16:c4:81:15:c5:25:7d:d3:cb:02:62:0c:bd:83:35:28:88: e4:75:d2:e8:97:79:08:6b:4d:2d:7e:54:68:dd:52:81:11:a2: 0b:04:e0:47:6e:6a:d2:60:78:bb:24:36:65:af:43:7c:e2:4e: 92:67:17:01:b4:1c:3e:0a:60:8b:e0:d5:02:9d:dd:57:6d:b2: 8f:a7:f0:53:9b:7b:83:d9:31:82:11:66:1e:96:0b:21:c2:17: e6:9a:74:67:96:5a:15:fe:0a:f6:a0:6c:60:f5:8b:92:1d:ef: 72:16:87:a9 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUAbbkMgD6zjaqkMV18TJfxkJmj8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjMwOTE4MDAwMDAwWhcNMjMxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2UwNmRiNmM2MzU1YjAxZTJmOGVjYzg1MTQwNjY1YjI3 OTUzZjczYzBhNDc3N2NiYjZjMjYzMzU1YmU0YTIyMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC44PcJWFQudOGPyHN/YHO9iuDjD6TFW/ukRxI1FnKq1yuT rI7eIdor0BFnfNCzfPov3KdOBEviNaOB0YMv7IM3s+xxhozXZLmFyYcV1QpF70WR PpkkgVPk9uf/bVi24Dfs4QNvOr1e+ypZAAU3E6+wEMPyZR7d+pSFTcGMQ71/Dxq0 xv/uG/liq6rwy0GvvuBSKkcNPiOnQzFF+aCs3q6/iiZ1VCZmX9evjUJWD3fTxWdb ng0D90tuK2goKZP9Fwit8wPnmCx0aWibxVkwlNr9Vs00dXn+FvL0aoEyq9qV7SCn M10qohH/8F0+j2zdU872a6W9CaFStDVoZdaq1+GRAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUFYtGFNsKWvOWA3aRzN4iE3pFttUwHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2E4ZmY5MzM3LTIxZDgtNGQ1ZS1iOTg4LWQxYTk4M2Q3M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQCBo1hl2u/QMAqoVZVGFb08IVvG oICbtEIFUD0ZTGNcK6v6pWsI5yucMsylyPdJ1+zDcCBV+PVC2WDj4oeg+EJQSnJV BVgTV795c9bDKWO8tt2xZqwD1oHmOqgPvns/G9hNbs/jjQACcQBCcXweWsipQLsY VkqoWElkWz+j28CA3hOVfsTJouWe0FTmLTH3AEQtFsSBFcUlfdPLAmIMvYM1KIjk ddLol3kIa00tflRo3VKBEaILBOBHbmrSYHi7JDZlr0N84k6SZxcBtBw+CmCL4NUC nd1XbbKPp/BTm3uD2TGCEWYelgshwhfmmnRnlloV/gr2oGxg9YuSHe9yFoep -----END CERTIFICATE-----Generated at Mon Sep 18 16:16:57 2023 by rpki-client on console-fra.rpki-client.org