$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa File: 904b7769-7341-422c-a272-18b5267fe2db.roa (raw, json) Hash identifier: GlHH698/e4PdMoM7j9xBSwzbRZIhvDrQ2VrrZ3dU50c= Subject key identifier: 14:21:D8:D8:36:55:03:E4:C1:55:A1:07:17:85:F9:97:38:8C:4A:C2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 14B95D81C243B26DAD79740750DA459D3FBB1142 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b9:5d:81:c2:43:b2:6d:ad:79:74:07:50:da:45:9d:3f:bb:11:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=0cbcd02584cd73feadca35e7ac0e89813ac552cd916471a710980402cd032a27, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a6:6e:25:48:5a:c9:99:a6:8a:e7:35:c2:f5: 01:30:a1:ec:69:a4:1c:e2:1c:ca:72:19:db:00:df: 39:2f:9d:1d:fb:6d:0a:19:5a:7a:45:38:d5:ba:68: 27:40:05:a1:9c:8b:68:64:b0:df:28:19:2e:10:fd: ef:5e:9d:82:de:75:1e:56:af:4a:14:c3:e6:9c:16: df:fd:38:c4:92:0e:ad:3a:d9:68:c1:0e:ad:04:3b: 77:a9:64:34:ce:ec:ee:68:b2:cd:5b:ae:ba:f3:d7: d6:4a:ce:5f:fa:19:21:d9:cf:36:e7:9b:78:60:39: 92:1d:f2:3f:61:de:70:ca:7c:80:84:7c:68:2c:0c: 86:b9:e1:08:8f:4d:ec:d2:2a:c0:35:06:f8:35:86: 5e:2f:05:ad:ff:01:5f:97:dd:dd:a7:81:ac:f8:fb: c1:3b:d3:81:f7:2a:52:de:a2:65:fa:28:d9:99:d9: 2c:e5:92:89:27:86:da:27:45:40:42:4c:63:f2:f3: b3:7b:67:51:60:0d:62:45:16:cf:36:9a:d3:48:98: f5:c9:67:24:4c:3a:16:94:1c:1c:b4:d6:bd:9a:72: f2:c2:af:86:f4:4a:34:4a:2c:f0:44:bc:89:ea:16: 3d:37:bc:22:4e:81:99:d2:7a:bb:cb:b6:9c:f1:2c: aa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:21:D8:D8:36:55:03:E4:C1:55:A1:07:17:85:F9:97:38:8C:4A:C2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:a100::/40 Signature Algorithm: sha256WithRSAEncryption 91:6c:62:64:fc:af:0d:16:e9:ef:d2:8b:f7:7d:8b:53:c2:e9: a1:74:a2:5a:20:4a:eb:f4:9f:06:a6:35:6e:9e:1c:e8:f1:4d: 2d:47:8a:0c:6a:3b:e7:0c:60:82:08:05:ee:a2:aa:2d:c3:11: 15:3f:4a:1d:c2:85:84:e5:18:4a:fa:06:f2:c1:9c:e4:42:6f: fb:f1:d2:52:10:8f:6a:c3:19:3a:0b:7a:fe:58:c1:92:38:6a: c3:73:7b:01:92:ba:84:3b:02:5b:45:da:42:c4:99:16:6f:3c: 0f:ad:55:f4:df:22:ae:c2:e4:36:2c:35:8a:25:09:f5:52:44: fa:b5:ee:38:f3:c5:19:34:3b:ce:e1:83:98:00:83:7c:ee:08: 4d:15:d4:17:b3:33:b5:c0:8a:57:82:c8:7a:62:43:55:bc:f6: 4f:c2:af:27:50:b5:0d:dd:e0:24:80:0c:74:f4:27:ea:37:92: 6e:59:49:b6:41:46:92:ad:4a:cf:3b:b8:2e:8f:97:59:d8:1c: aa:df:bd:e3:73:12:27:07:84:ac:49:d8:61:13:d8:10:a5:a6: 6d:64:25:8e:64:7b:03:c4:6d:c3:fc:d8:46:d8:d9:85:0d:be: 1b:9c:f9:13:9a:eb:a7:4a:27:b4:a2:78:84:09:25:9a:14:ae: 3a:c7:58:20 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFLldgcJDsm2teXQHUNpFnT+7EUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2JjZDAyNTg0Y2Q3M2ZlYWRjYTM1ZTdhYzBlODk4MTNh YzU1MmNkOTE2NDcxYTcxMDk4MDQwMmNkMDMyYTI3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtpm4lSFrJmaaK5zXC9QEwoexppBziHMpyGdsA3zkvnR37 bQoZWnpFONW6aCdABaGci2hksN8oGS4Q/e9enYLedR5Wr0oUw+acFt/9OMSSDq06 2WjBDq0EO3epZDTO7O5oss1brrrz19ZKzl/6GSHZzzbnm3hgOZId8j9h3nDKfICE fGgsDIa54QiPTezSKsA1Bvg1hl4vBa3/AV+X3d2ngaz4+8E704H3KlLeomX6KNmZ 2SzlkoknhtonRUBCTGPy87N7Z1FgDWJFFs82mtNImPXJZyRMOhaUHBy01r2acvLC r4b0SjRKLPBEvInqFj03vCJOgZnServLtpzxLKplAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFCHY2DZVA+TBVaEHF4X5lziMSsIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkwNGI3NzY5LTczNDEtNDIyYy1hMjcyLTE4YjUyNjdmZTJkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAoTANBgkqhkiG9w0BAQsFAAOCAQEAkWxiZPyvDRbp79KL932LU8Lp oXSiWiBK6/SfBqY1bp4c6PFNLUeKDGo75wxggggF7qKqLcMRFT9KHcKFhOUYSvoG 8sGc5EJv+/HSUhCPasMZOgt6/ljBkjhqw3N7AZK6hDsCW0XaQsSZFm88D61V9N8i rsLkNiw1iiUJ9VJE+rXuOPPFGTQ7zuGDmACDfO4ITRXUF7MztcCKV4LIemJDVbz2 T8KvJ1C1Dd3gJIAMdPQn6jeSbllJtkFGkq1Kzzu4Lo+XWdgcqt+943MSJweErEnY YRPYEKWmbWQljmR7A8Rtw/zYRtjZhQ2+G5z5E5rrp0ontKJ4hAklmhSuOsdYIA== -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:30 2023 by rpki-client on console-fra.rpki-client.org