$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f65eed0-40a0-4ba1-8d66-2bc388ba4b16.roa File: 9f65eed0-40a0-4ba1-8d66-2bc388ba4b16.roa (raw, json) Hash identifier: 6AQkTsQJABoRVtomBOdnE2WC5o1vOpSe3E3pPqw0FC4= Subject key identifier: 23:04:50:F1:BC:29:39:CB:16:3F:8C:2F:74:9D:4B:85:8D:16:22:AB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BDD97F5986800346C08ED6F5E98B23772BB3FD8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f65eed0-40a0-4ba1-8d66-2bc388ba4b16.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:dd:97:f5:98:68:00:34:6c:08:ed:6f:5e:98:b2:37:72:bb:3f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=ff1eb9a406098f0be2a96e512e2294cec137f88a413a13666731ddf7f549c6a0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:49:db:2b:bf:0f:81:7c:03:71:f5:8b:1f:f9: 95:9b:eb:95:77:06:3d:28:f6:bf:0b:d6:df:4f:c9: 9f:e1:b9:22:40:ef:5a:e3:8c:05:2c:24:ea:4b:e3: 7b:bf:d8:47:49:07:33:13:5e:a4:9e:99:6d:ce:1d: f6:08:79:80:37:dc:9d:f3:fb:22:7b:6e:77:c2:cb: 0e:1d:8c:fe:63:3a:79:d4:d4:b4:3f:f8:12:96:dd: ef:79:45:d7:6b:87:01:f1:e4:37:85:f0:da:45:59: 99:0a:32:ef:b7:81:c7:3d:ae:0f:c1:ac:c9:e4:9a: 3e:1e:b4:65:18:a2:8e:0e:57:3a:07:0a:ac:e7:31: a7:a6:8d:b3:9b:9e:28:c8:2d:2e:88:36:c5:b5:3e: 95:2b:33:e0:9d:51:27:46:7f:4b:2e:01:9f:77:65: 90:35:20:c4:e0:18:70:b0:fc:c1:a4:ed:18:ca:16: a8:83:aa:ab:fe:7a:62:5d:8b:e7:3a:04:60:c9:53: 69:b0:c0:ec:90:a8:11:50:c4:59:f8:ef:d8:84:fe: 9f:11:ea:7b:3b:85:66:99:82:e5:de:e9:8b:17:4f: e1:56:2a:a6:9c:d0:7c:30:03:13:f4:6a:11:b4:89: 0d:82:9d:09:3b:e1:e0:31:b4:8a:7c:7b:e4:6e:73: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:04:50:F1:BC:29:39:CB:16:3F:8C:2F:74:9D:4B:85:8D:16:22:AB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9f65eed0-40a0-4ba1-8d66-2bc388ba4b16.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:a400::/40 Signature Algorithm: sha256WithRSAEncryption b4:3c:ed:64:fe:15:c1:07:50:67:55:da:e7:49:a6:b6:2c:60: b7:bd:0c:84:7a:24:05:91:da:8a:54:87:2c:90:54:f2:35:7c: ba:a1:ad:d1:f4:30:6c:02:98:05:88:d2:78:9a:17:75:c3:19: 90:8e:b6:91:8b:d8:ae:a3:c9:7e:4f:0d:a8:ba:ae:9f:93:ba: 6a:79:fb:24:47:7a:bf:2b:ed:d1:7b:93:a4:5f:94:b2:81:fd: 3b:04:66:24:dc:e0:e1:71:78:ce:7a:fb:0d:f3:ec:f6:f8:a3: 07:02:3d:c1:53:b5:47:cc:32:33:da:5f:dc:f0:be:85:78:43: b2:e7:de:0d:28:b1:19:50:8a:b5:61:66:6d:2b:e3:fc:0c:24: 13:d4:44:81:6a:dd:55:44:61:78:5e:c2:76:03:e7:cd:fe:a6: 0b:e3:55:35:74:a8:07:01:1e:af:61:d6:38:5b:14:25:56:06: 9a:1f:72:7b:3c:89:b3:d7:4a:29:8c:49:10:a2:8d:84:c4:f8: 21:d8:9d:00:0d:95:50:f3:e6:a9:94:f8:91:c6:de:fc:5c:8b: d6:da:6a:ca:3b:55:7f:38:48:6b:38:ae:a3:a6:03:62:6e:d1: 9d:d4:bf:89:d6:80:9e:0c:79:d4:51:73:13:d6:f0:a0:a9:76: a0:1d:79:93 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO92X9ZhoADRsCO1vXpiyN3K7P9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjFlYjlhNDA2MDk4ZjBiZTJhOTZlNTEyZTIyOTRjZWMx MzdmODhhNDEzYTEzNjY2NzMxZGRmN2Y1NDljNmEwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCISdsrvw+BfANx9Ysf+ZWb65V3Bj0o9r8L1t9PyZ/huSJA 71rjjAUsJOpL43u/2EdJBzMTXqSemW3OHfYIeYA33J3z+yJ7bnfCyw4djP5jOnnU 1LQ/+BKW3e95RddrhwHx5DeF8NpFWZkKMu+3gcc9rg/BrMnkmj4etGUYoo4OVzoH CqznMaemjbObnijILS6INsW1PpUrM+CdUSdGf0suAZ93ZZA1IMTgGHCw/MGk7RjK FqiDqqv+emJdi+c6BGDJU2mwwOyQqBFQxFn479iE/p8R6ns7hWaZguXe6YsXT+FW Kqac0HwwAxP0ahG0iQ2CnQk74eAxtIp8e+Ruczw1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIwRQ8bwpOcsWP4wvdJ1LhY0WIqswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzlmNjVlZWQwLTQwYTAtNGJhMS04ZDY2LTJiYzM4OGJhNGIxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAApDANBgkqhkiG9w0BAQsFAAOCAQEAtDztZP4VwQdQZ1Xa50mmtixg t70MhHokBZHailSHLJBU8jV8uqGt0fQwbAKYBYjSeJoXdcMZkI62kYvYrqPJfk8N qLqun5O6ann7JEd6vyvt0XuTpF+UsoH9OwRmJNzg4XF4znr7DfPs9vijBwI9wVO1 R8wyM9pf3PC+hXhDsufeDSixGVCKtWFmbSvj/AwkE9REgWrdVURheF7CdgPnzf6m C+NVNXSoBwEer2HWOFsUJVYGmh9yezyJs9dKKYxJEKKNhMT4IdidAA2VUPPmqZT4 kcbe/FyL1tpqyjtVfzhIaziuo6YDYm7RndS/idaAngx51FFzE9bwoKl2oB15kw== -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org