$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20eac0c1-044c-4d7c-96cc-5e378621a09e.roa File: 20eac0c1-044c-4d7c-96cc-5e378621a09e.roa (raw, json) Hash identifier: s1qtfhlh4OpQMSJddlo03TEHK0gxGDkYlnIX1iPV5b0= Subject key identifier: 01:99:EA:83:12:6C:7B:22:F7:BD:6A:80:DE:73:BE:0A:0D:0B:BB:25 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 60F8DCE492E35F5818CE6CBC8A12D3A6CE863A9C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20eac0c1-044c-4d7c-96cc-5e378621a09e.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f8:dc:e4:92:e3:5f:58:18:ce:6c:bc:8a:12:d3:a6:ce:86:3a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=25ddf59f4dbacf3ef76cf52db5a3dd030de3f08becb3ace924dca48706c129c8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:db:43:28:ad:58:66:89:8e:17:df:ca:9f:da: 9f:f4:72:e9:5b:11:fc:2a:09:6a:29:df:2a:e6:57: f6:37:a8:c7:00:93:b8:0c:1e:e0:d5:74:33:8f:9f: c5:be:b8:51:7c:32:28:5a:57:87:52:06:c1:fc:09: 46:f0:fd:09:ec:18:fa:11:6a:48:8d:21:fc:25:b1: ae:22:a4:b2:1e:01:ec:62:62:7e:c8:8a:86:bf:15: cf:6c:55:32:00:90:61:5a:c7:70:6c:fd:9e:4f:02: 7b:f4:17:5d:49:6c:4d:61:d1:16:03:3b:55:c5:dd: a4:7e:ae:54:05:a3:6e:d3:c2:82:ea:20:b5:08:45: 4d:64:ab:d7:42:f1:82:4a:8f:20:6b:42:74:22:0b: 88:21:8e:3a:a6:cc:52:ac:fb:0f:d4:85:86:e3:0a: 58:dc:01:39:9e:ab:9f:36:08:f2:4f:ef:f2:55:66: b3:df:f8:c6:57:df:0a:cb:b8:b6:8e:aa:94:1f:9d: 72:35:65:30:20:e7:2e:c4:99:5e:90:a7:ff:96:cb: ee:2d:f4:3d:5c:c0:ef:8e:7b:f9:51:8d:03:a9:7a: 74:0d:a8:c3:3a:a9:23:4c:ad:cb:d7:ad:a9:45:95: 74:7c:f8:12:b6:c3:c7:c1:88:13:1e:31:20:5f:be: 10:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:99:EA:83:12:6C:7B:22:F7:BD:6A:80:DE:73:BE:0A:0D:0B:BB:25 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20eac0c1-044c-4d7c-96cc-5e378621a09e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:a900::/40 Signature Algorithm: sha256WithRSAEncryption ad:9e:b1:43:2e:56:08:b8:8d:73:4b:25:4c:4d:50:02:cb:21: 8a:c9:5b:0d:59:d4:95:9a:41:d0:3f:a9:c7:00:50:ce:b3:ea: 08:f2:fc:ab:66:4e:43:5b:59:f9:c2:7e:33:f7:33:78:8a:a1: ba:ae:82:7c:d5:d5:39:11:7b:b3:f9:fd:5e:7d:93:db:68:44: 8e:21:f3:bd:59:27:4c:aa:81:55:e5:f0:e2:85:c5:e2:c4:5e: 33:c9:26:19:69:3c:17:9a:03:12:a3:35:76:86:36:88:e7:ad: 29:37:4d:5c:d3:26:d2:d3:a6:8f:32:ce:78:8a:5c:bd:d8:af: 68:22:48:d4:58:6a:5b:d4:a1:4f:2f:ea:7d:90:c1:0e:d3:66: b3:b6:91:0e:b7:c6:51:8c:be:57:24:65:4d:76:20:8c:4d:0f: 0e:e0:09:3d:46:ac:df:fb:1e:c3:95:d6:d7:0a:34:40:89:5c: b9:90:9d:41:a3:e9:95:c5:f8:94:c8:0a:30:13:47:62:42:f9: c3:85:8d:bf:fb:d6:43:c9:e0:13:e5:a2:89:b7:08:6a:bb:39: 59:02:be:a5:ce:e2:42:36:95:d2:0e:1b:a0:2e:dd:49:fc:ed: 69:eb:cc:3c:44:86:5b:3b:ad:83:5c:9e:ec:27:35:ed:5f:ca: f2:e9:ec:a7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYPjc5JLjX1gYzmy8ihLTps6GOpwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWRkZjU5ZjRkYmFjZjNlZjc2Y2Y1MmRiNWEzZGQwMzBk ZTNmMDhiZWNiM2FjZTkyNGRjYTQ4NzA2YzEyOWM4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm20MorVhmiY4X38qf2p/0culbEfwqCWop3yrmV/Y3qMcA k7gMHuDVdDOPn8W+uFF8MihaV4dSBsH8CUbw/QnsGPoRakiNIfwlsa4ipLIeAexi Yn7Iioa/Fc9sVTIAkGFax3Bs/Z5PAnv0F11JbE1h0RYDO1XF3aR+rlQFo27TwoLq ILUIRU1kq9dC8YJKjyBrQnQiC4ghjjqmzFKs+w/UhYbjCljcATmeq582CPJP7/JV ZrPf+MZX3wrLuLaOqpQfnXI1ZTAg5y7EmV6Qp/+Wy+4t9D1cwO+Oe/lRjQOpenQN qMM6qSNMrcvXralFlXR8+BK2w8fBiBMeMSBfvhChAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAZnqgxJseyL3vWqA3nO+Cg0LuyUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIwZWFjMGMxLTA0NGMtNGQ3Yy05NmNjLTVlMzc4NjIxYTA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAqTANBgkqhkiG9w0BAQsFAAOCAQEArZ6xQy5WCLiNc0slTE1QAssh islbDVnUlZpB0D+pxwBQzrPqCPL8q2ZOQ1tZ+cJ+M/czeIqhuq6CfNXVORF7s/n9 Xn2T22hEjiHzvVknTKqBVeXw4oXF4sReM8kmGWk8F5oDEqM1doY2iOetKTdNXNMm 0tOmjzLOeIpcvdivaCJI1FhqW9ShTy/qfZDBDtNms7aRDrfGUYy+VyRlTXYgjE0P DuAJPUas3/sew5XW1wo0QIlcuZCdQaPplcX4lMgKMBNHYkL5w4WNv/vWQ8ngE+Wi ibcIars5WQK+pc7iQjaV0g4boC7dSfztaevMPESGWzutg1ye7Cc17V/K8unspw== -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:30 2023 by rpki-client on console-fra.rpki-client.org