$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa File: a9577bdf-707e-4750-8686-935a0db169e2.roa (raw, json) Hash identifier: A+kFE5SwVtwSFIh/qO13y95PfrXFusB+PQWzhA7bk6Y= Subject key identifier: 21:09:13:D9:7D:F8:B3:16:09:BA:CC:E4:34:DB:1F:49:CF:EB:56:CA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 28AA38F7FD9F603A9BC708710B593753F8554710 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:aa:38:f7:fd:9f:60:3a:9b:c7:08:71:0b:59:37:53:f8:55:47:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=c26508906511e5896b90ae955a8460b391c88245e7a991285a1760cc11a16dff, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:18:f9:f7:a9:b4:5e:da:e5:7b:14:d8:28:53: b8:a3:13:94:9b:87:79:a0:e7:59:39:32:78:04:49: cd:92:58:d3:c9:d6:98:84:35:10:96:67:42:3b:f7: 8a:90:e6:fe:31:e6:40:b4:ef:4d:6d:c9:f5:2b:3a: 31:69:eb:ba:7d:46:f7:19:73:8b:b6:ae:08:ff:6a: 24:ee:c0:94:e0:b6:9a:fa:47:a4:87:28:59:d6:d1: 67:03:a3:03:9e:95:69:1b:cf:49:78:19:00:f8:31: 08:51:a4:5a:c5:f1:a4:ba:a8:54:2f:71:08:f7:fc: e7:5d:4b:0c:b1:4a:b1:de:2d:6a:6e:e4:1c:78:09: 4c:69:51:c2:d9:0b:48:c0:f8:49:4c:09:b2:33:fa: 7f:80:9c:55:a6:eb:0c:55:bb:6a:eb:ca:db:1c:61: 02:1c:99:cc:31:e1:79:17:0b:54:8c:c5:9b:10:95: 6c:1d:b8:3c:4c:41:50:38:9a:82:10:45:b7:86:76: 3e:ef:db:30:eb:10:12:74:dc:a2:08:3f:f6:6e:62: 7a:a3:f6:35:db:73:21:7b:04:78:62:4d:b5:ff:74: 51:a3:ba:1b:9f:51:c9:2a:71:2a:0e:1b:39:2b:c6: 78:69:85:cb:4d:c2:4d:09:00:35:1e:40:b1:a2:a9: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:09:13:D9:7D:F8:B3:16:09:BA:CC:E4:34:DB:1F:49:CF:EB:56:CA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:fff::/48 Signature Algorithm: sha256WithRSAEncryption 7f:a8:0e:d9:ea:bd:2d:fe:f6:89:7f:17:20:d3:d5:ba:f5:69: 7e:a1:8a:fb:72:32:e6:fe:e2:1d:43:2d:32:49:4f:37:bf:2d: 33:82:69:10:a5:c9:dc:fa:7b:9f:93:7a:59:36:4f:81:b9:d4: 77:6b:30:f8:9a:7f:8a:a4:f6:c4:33:68:d5:16:b5:43:53:cb: 3f:99:89:cf:8d:70:3a:cd:9e:10:a6:bf:76:a8:95:22:4f:65: 07:6d:b9:6b:99:8a:13:a8:81:90:6b:9f:e9:6b:6c:91:b1:93: 4f:bd:88:f4:a8:b3:ff:07:cd:49:58:94:5b:1e:55:e6:77:22: 59:1b:9d:76:f2:85:47:a6:f2:a7:b4:dc:6d:80:5f:28:e2:76: 3a:e9:8c:32:91:a9:27:5b:3e:96:cd:0b:90:2f:29:27:8e:70: 24:30:ba:58:72:39:16:62:37:72:e3:81:77:bd:45:df:05:86: 3a:ae:8f:6b:a2:5f:4e:eb:2c:40:bc:86:9f:01:81:3e:67:6b: ac:61:fb:90:85:ae:6f:41:48:b5:98:fb:3c:c1:b8:5c:8c:d5: 7a:ba:64:12:40:a5:20:02:57:8a:e3:e3:5e:b2:5c:20:37:ac: 57:5e:4f:6f:35:30:a1:3a:75:c7:30:51:12:73:49:12:04:62: 1e:8c:15:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKKo49/2fYDqbxwhxC1k3U/hVRxAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjY1MDg5MDY1MTFlNTg5NmI5MGFlOTU1YTg0NjBiMzkx Yzg4MjQ1ZTdhOTkxMjg1YTE3NjBjYzExYTE2ZGZmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7GPn3qbRe2uV7FNgoU7ijE5Sbh3mg51k5MngESc2SWNPJ 1piENRCWZ0I794qQ5v4x5kC0701tyfUrOjFp67p9RvcZc4u2rgj/aiTuwJTgtpr6 R6SHKFnW0WcDowOelWkbz0l4GQD4MQhRpFrF8aS6qFQvcQj3/OddSwyxSrHeLWpu 5Bx4CUxpUcLZC0jA+ElMCbIz+n+AnFWm6wxVu2rrytscYQIcmcwx4XkXC1SMxZsQ lWwduDxMQVA4moIQRbeGdj7v2zDrEBJ03KIIP/ZuYnqj9jXbcyF7BHhiTbX/dFGj uhufUckqcSoOGzkrxnhphctNwk0JADUeQLGiqep7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIQkT2X34sxYJuszkNNsfSc/rVsowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5NTc3YmRmLTcwN2UtNDc1MC04Njg2LTkzNWEwZGIxNjllMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAD/8wDQYJKoZIhvcNAQELBQADggEBAH+oDtnqvS3+9ol/FyDT1br1 aX6hivtyMub+4h1DLTJJTze/LTOCaRClydz6e5+Telk2T4G51HdrMPiaf4qk9sQz aNUWtUNTyz+Zic+NcDrNnhCmv3aolSJPZQdtuWuZihOogZBrn+lrbJGxk0+9iPSo s/8HzUlYlFseVeZ3IlkbnXbyhUem8qe03G2AXyjidjrpjDKRqSdbPpbNC5AvKSeO cCQwulhyORZiN3LjgXe9Rd8Fhjquj2uiX07rLEC8hp8BgT5na6xh+5CFrm9BSLWY +zzBuFyM1Xq6ZBJApSACV4rj416yXCA3rFdeT281MKE6dccwURJzSRIEYh6MFWg= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org