$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa File: 947becde-56e4-4219-9bf8-8623c99513ce.roa (raw, json) Hash identifier: PQmueZNLF47OOuOqeiDZhccEjfaxQTO787v5FfFHKnA= Subject key identifier: 93:1E:E3:89:D3:46:B7:9B:9F:95:DD:12:6C:C1:E0:72:39:7E:D8:85 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1AEA6E4358E212ECE7DE1ACF0C548F6F3CDDADE5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa Signing time: Wed 04 Oct 2023 00:00:00 +0000 ROA not before: Wed 04 Oct 2023 00:00:00 +0000 ROA not after: Wed 08 Nov 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Oct 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ea:6e:43:58:e2:12:ec:e7:de:1a:cf:0c:54:8f:6f:3c:dd:ad:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 4 00:00:00 2023 GMT Not After : Nov 8 23:59:59 2023 GMT Subject: serialNumber=0143d3fb3ad5e7d9906365c8acd0aa613f1ad6a06defa56af7266b36aa49c9b9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:dd:52:17:97:72:ec:90:8b:41:37:c7:e7:f5: 9a:f6:19:ff:8f:2d:2f:fd:20:0a:8c:96:72:b9:7c: d5:92:89:c5:46:bd:ef:ae:34:f4:d1:c1:fb:a6:d5: 6c:7c:ae:d3:f1:1f:21:f1:ee:60:0d:52:9b:b2:d4: e1:f9:3b:28:ed:f7:3f:5f:68:36:31:ef:90:74:f6: 37:fb:9a:a0:c4:bd:e5:a5:3f:f7:b8:d0:04:29:10: 10:4b:67:d5:f2:8f:5c:b4:3e:7c:1a:ff:c1:67:80: 9a:a2:64:77:4b:2f:35:9e:79:48:cd:c8:62:3b:bd: 42:e7:1e:03:b2:3d:a0:02:a2:9c:39:4a:37:e8:d2: 4c:bc:a7:9a:31:7c:de:9f:9b:67:0c:bd:24:15:4c: d9:d6:cc:52:84:fc:d6:f4:cd:b6:5b:74:2e:26:21: 6b:91:1b:12:fd:8c:13:75:b7:3c:ff:3f:74:d7:60: fa:c3:8f:87:f9:c2:eb:bd:c2:17:5f:ec:87:b5:0c: e4:fd:b2:ef:f0:82:f6:40:da:b8:b5:a7:82:50:ae: e5:95:c4:0a:ca:4d:6d:48:a1:c1:d3:2d:fc:78:69: ae:86:61:cd:75:3b:1a:f1:af:85:c7:ec:c2:1a:3c: bf:eb:2d:cc:34:af:34:25:f7:f6:c5:f2:4c:bf:e4: 29:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1E:E3:89:D3:46:B7:9B:9F:95:DD:12:6C:C1:E0:72:39:7E:D8:85 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/947becde-56e4-4219-9bf8-8623c99513ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:ad00::/40 Signature Algorithm: sha256WithRSAEncryption 36:0f:c3:69:1e:4c:ad:b9:58:97:52:b7:61:94:53:57:40:bf: 20:eb:7c:14:4f:c7:fb:57:ce:61:2c:87:06:70:e0:72:d1:ed: 1a:dd:e0:9e:3a:30:fe:cc:b5:80:78:e1:31:26:7c:a6:46:22: 48:f6:b2:32:2f:64:98:a8:16:75:78:86:b6:13:cd:78:ca:38: f9:88:cf:ce:ec:24:8a:e6:3d:62:04:b3:9a:5e:59:4d:e9:7b: 3b:20:5a:be:43:26:ed:35:c9:7b:ae:99:eb:35:d4:26:a6:48: 17:51:22:33:4e:66:8c:85:6d:4a:86:bf:c1:af:c5:16:52:23: 00:0b:f7:77:95:cf:12:ff:a7:f9:f8:24:40:a7:e9:f9:86:56: 48:08:4f:9c:39:71:27:79:eb:1b:7c:09:47:9b:6c:ad:ae:ef: f5:51:dd:7f:5d:0c:24:89:cc:23:52:0d:fb:d7:4b:60:bd:4d: f3:cc:c3:66:f2:a8:1f:ac:86:9f:78:33:2e:6e:b3:31:26:9e: 9a:81:1f:f2:35:85:1a:b2:8e:5a:30:91:5b:f9:bd:f6:5c:9a: 8e:ce:1f:29:53:07:59:3e:38:a6:59:f9:d0:f5:ad:20:79:28: 51:4d:f5:cd:cf:60:ec:a1:83:1d:2e:4b:bf:6a:13:a7:e2:26: c0:99:1c:96 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGupuQ1jiEuzn3hrPDFSPbzzdreUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMxMDA0MDAwMDAwWhcNMjMxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTQzZDNmYjNhZDVlN2Q5OTA2MzY1YzhhY2QwYWE2MTNm MWFkNmEwNmRlZmE1NmFmNzI2NmIzNmFhNDljOWI5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCN3VIXl3LskItBN8fn9Zr2Gf+PLS/9IAqMlnK5fNWSicVG ve+uNPTRwfum1Wx8rtPxHyHx7mANUpuy1OH5Oyjt9z9faDYx75B09jf7mqDEveWl P/e40AQpEBBLZ9Xyj1y0Pnwa/8FngJqiZHdLLzWeeUjNyGI7vULnHgOyPaACopw5 Sjfo0ky8p5oxfN6fm2cMvSQVTNnWzFKE/Nb0zbZbdC4mIWuRGxL9jBN1tzz/P3TX YPrDj4f5wuu9whdf7Ie1DOT9su/wgvZA2ri1p4JQruWVxArKTW1IocHTLfx4aa6G Yc11Oxrxr4XH7MIaPL/rLcw0rzQl9/bF8ky/5CmjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkx7jidNGt5ufld0SbMHgcjl+2IUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzk0N2JlY2RlLTU2ZTQtNDIxOS05YmY4LTg2MjNjOTk1MTNjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAArTANBgkqhkiG9w0BAQsFAAOCAQEANg/DaR5MrblYl1K3YZRTV0C/ IOt8FE/H+1fOYSyHBnDgctHtGt3gnjow/sy1gHjhMSZ8pkYiSPayMi9kmKgWdXiG thPNeMo4+YjPzuwkiuY9YgSzml5ZTel7OyBavkMm7TXJe66Z6zXUJqZIF1EiM05m jIVtSoa/wa/FFlIjAAv3d5XPEv+n+fgkQKfp+YZWSAhPnDlxJ3nrG3wJR5tsra7v 9VHdf10MJInMI1IN+9dLYL1N88zDZvKoH6yGn3gzLm6zMSaemoEf8jWFGrKOWjCR W/m99lyajs4fKVMHWT44pln50PWtIHkoUU31zc9g7KGDHS5Lv2oTp+ImwJkclg== -----END CERTIFICATE-----Generated at Wed Oct 4 00:45:29 2023 by rpki-client on console-ams.rpki-client.org