$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa File: c8560206-4c68-46a6-834e-4971768d50f8.roa (raw, json) Hash identifier: iru28ZZM5mzld91EwreQaG7Jbrh6ero7rviVUOPeHf8= Subject key identifier: AD:78:83:A2:5E:C7:9A:46:48:03:EF:3C:13:DE:3C:C2:BE:23:23:11 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 25862AE594A50116540AE1DD3B288D35B4397758 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa Signing time: Fri 06 Sep 2024 00:00:00 +0000 ROA not before: Fri 06 Sep 2024 00:00:00 +0000 ROA not after: Fri 11 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:86:2a:e5:94:a5:01:16:54:0a:e1:dd:3b:28:8d:35:b4:39:77:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 6 00:00:00 2024 GMT Not After : Oct 11 23:59:59 2024 GMT Subject: serialNumber=1e11c31a8cba92618ce0fa2b945bcf92b873c83d0741be70e152be078f458b52, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:16:48:03:2c:a5:98:5e:53:3b:8d:8d:9c: 16:fe:81:ee:ad:27:04:9c:9b:61:6a:20:f2:a0:14: 46:97:42:1b:e9:82:03:79:01:f1:f7:71:40:48:1c: 12:1a:db:e1:31:14:1f:33:a5:3a:8e:0b:93:55:34: 85:e0:1e:f7:e9:68:19:4d:0e:44:24:1b:19:66:1e: 13:08:9c:90:7c:9c:68:7d:e9:d8:63:93:d7:96:e5: f6:d8:df:f5:29:8d:27:de:56:dd:1b:b5:62:59:43: e9:33:aa:03:04:95:2b:d6:67:18:e9:69:6b:75:70: 3c:81:d1:48:62:44:d2:3c:0d:29:43:84:54:be:0d: 7f:43:d3:67:a3:53:53:11:17:03:0a:52:9b:c2:d1: 0d:4e:9e:10:60:bd:fa:70:62:ff:5c:94:66:bb:c7: f2:f9:32:f5:85:c1:fb:df:2a:18:61:d0:da:21:bf: 77:18:86:b1:59:a8:68:db:ec:3d:75:d4:86:0d:5c: 81:16:cf:6e:0f:d0:60:66:83:cf:96:b8:5f:b1:21: 4e:4b:01:95:a8:5e:e0:31:37:b8:c2:fa:ff:78:e7: ac:1f:e2:bd:02:75:56:fd:c8:ed:86:da:0d:79:e2: 2a:d5:5b:8a:2b:26:5a:e2:14:b4:4a:b4:df:27:62: 1a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:78:83:A2:5E:C7:9A:46:48:03:EF:3C:13:DE:3C:C2:BE:23:23:11 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 69:d2:02:b1:a1:7f:05:d4:46:92:19:22:1d:a6:0c:cc:84:e0: e2:73:62:1d:98:29:24:9f:f0:e5:d9:59:dd:ae:27:f9:d1:3e: 81:78:12:18:ed:45:45:b4:66:5f:d7:7a:b7:cf:a3:3c:18:5b: 58:70:af:2d:2d:22:b6:d7:6b:39:65:72:3e:83:19:d6:29:e2: 68:14:60:21:3d:a3:63:aa:69:af:68:e5:6a:58:8e:15:48:fc: 2d:82:c9:51:f1:72:45:0e:a1:2d:c5:06:55:26:3e:89:d4:7b: 9e:3d:49:c0:a1:cc:64:cd:86:6b:8f:95:59:e7:bb:dd:ad:7b: ca:a2:18:f8:c0:79:19:8d:47:ab:d7:c9:03:c1:51:92:4a:31: 54:e8:8b:e6:d6:70:4e:91:96:3e:d4:cc:85:9c:e7:41:63:6a: d5:61:e2:55:e7:8a:76:4c:54:a1:c9:61:13:af:48:7e:9f:b3: bb:b3:72:8c:7b:7c:ec:ed:9e:39:24:cc:ba:7a:62:49:3e:67: f0:4c:d2:dc:49:e0:35:d5:9b:1f:a1:58:4f:5c:4c:7f:1d:e1: 72:7c:c8:de:3d:40:c9:a0:2b:00:e6:f8:86:c5:fc:46:be:da: d2:99:b0:c3:39:e1:ad:54:3c:07:bd:2b:c2:bc:a0:be:74:67: cd:e0:0d:31 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUJYYq5ZSlARZUCuHdOyiNNbQ5d1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwOTA2MDAwMDAwWhcNMjQxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTExYzMxYThjYmE5MjYxOGNlMGZhMmI5NDViY2Y5MmI4 NzNjODNkMDc0MWJlNzBlMTUyYmUwNzhmNDU4YjUyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCntRZIAyylmF5TO42NnBb+ge6tJwScm2FqIPKgFEaXQhvp ggN5AfH3cUBIHBIa2+ExFB8zpTqOC5NVNIXgHvfpaBlNDkQkGxlmHhMInJB8nGh9 6dhjk9eW5fbY3/UpjSfeVt0btWJZQ+kzqgMElSvWZxjpaWt1cDyB0UhiRNI8DSlD hFS+DX9D02ejU1MRFwMKUpvC0Q1OnhBgvfpwYv9clGa7x/L5MvWFwfvfKhhh0Noh v3cYhrFZqGjb7D111IYNXIEWz24P0GBmg8+WuF+xIU5LAZWoXuAxN7jC+v9456wf 4r0CdVb9yO2G2g154irVW4orJlriFLRKtN8nYhp7AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUrXiDol7HmkZIA+88E948wr4jIxEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2M4NTYwMjA2LTRjNjgtNDZhNi04MzRlLTQ5NzE3NjhkNTBmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQBp0gKxoX8F1EaSGSIdpgzMhODi c2IdmCkkn/Dl2Vndrif50T6BeBIY7UVFtGZf13q3z6M8GFtYcK8tLSK212s5ZXI+ gxnWKeJoFGAhPaNjqmmvaOVqWI4VSPwtgslR8XJFDqEtxQZVJj6J1HuePUnAocxk zYZrj5VZ57vdrXvKohj4wHkZjUer18kDwVGSSjFU6Ivm1nBOkZY+1MyFnOdBY2rV YeJV54p2TFShyWETr0h+n7O7s3KMe3zs7Z45JMy6emJJPmfwTNLcSeA11ZsfoVhP XEx/HeFyfMjePUDJoCsA5viGxfxGvtrSmbDDOeGtVDwHvSvCvKC+dGfN4A0x -----END CERTIFICATE-----Generated at Sat Sep 7 16:47:10 2024 by rpki-client on console-fra.rpki-client.org