$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa File: 03a7e219-c649-40ab-8792-192dc47a4b0e.roa (raw, json) Hash identifier: 0UW+t+7uevQKN/J+HNfRmluVqS0DQB6ccasXtIqFwfw= Subject key identifier: E5:66:10:91:C0:32:3B:57:B7:52:19:61:A1:6C:7F:DE:67:64:54:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CE708B8FB69EC602CE876E5E50BA8EF7853CCEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e7:08:b8:fb:69:ec:60:2c:e8:76:e5:e5:0b:a8:ef:78:53:cc:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=cc0e60fbbcf757af17368d396b739cc63bf19a9d0b452e0a8218ca5adc886840, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:3b:68:e4:49:f2:b5:26:86:e9:da:3d:90: 3e:20:e6:77:2f:75:f0:77:f7:64:63:07:2e:b5:83: e2:d7:cc:e3:ea:7d:95:ea:30:da:00:59:ab:cc:4e: a5:71:f2:59:f2:45:8a:a4:38:f2:bb:61:c1:68:71: 62:bf:8b:d4:4b:9b:21:27:12:28:aa:29:bd:10:c2: 86:15:cb:0e:38:fc:6f:32:cd:3f:c7:ed:fb:75:2f: c5:c1:40:96:93:e1:fa:3e:6d:ee:cc:68:1d:f7:21: 35:66:23:a0:a6:1c:21:ad:0a:14:70:8c:a2:05:ec: c6:09:04:3e:f8:cb:2d:b2:98:46:ad:37:d7:a3:ef: 60:8f:cd:a5:0c:6d:5f:cb:6f:65:85:ee:f7:56:58: 23:3d:d5:7e:47:44:b6:70:38:49:a4:f2:73:1b:9e: 7b:e8:c4:66:84:d4:83:51:86:a4:d5:70:6f:02:b0: a4:f5:d1:a1:bd:8d:94:aa:20:c6:5d:34:26:b1:f9: 9c:87:f6:49:6f:41:ad:37:f8:51:17:4d:b9:5b:a6: ea:c9:41:a3:b3:0d:bd:09:79:dc:b5:ec:57:d0:a6: 26:f2:68:17:70:46:b2:95:3c:2c:30:d8:77:58:7e: 34:11:8d:e2:ba:ff:ba:03:8f:d2:2f:f5:ae:57:30: 37:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:66:10:91:C0:32:3B:57:B7:52:19:61:A1:6C:7F:DE:67:64:54:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:3400::/40 Signature Algorithm: sha256WithRSAEncryption 48:e9:5d:63:f4:06:e9:85:54:38:a1:87:94:94:c6:3c:f9:09: 54:21:b6:d6:13:2b:ba:65:c0:e6:16:32:e7:4d:a6:00:11:39: 00:6a:b0:e0:67:b7:3c:de:51:27:25:29:ce:5c:4d:96:64:4a: a3:88:7f:c0:58:c6:c6:a2:e0:9a:1e:1b:5b:cd:cb:c7:e3:84: 4d:d4:bc:7a:7d:bf:03:10:34:53:da:fa:08:90:71:e8:e7:42: 79:96:66:6e:34:d0:b2:73:63:90:cd:08:a0:4e:d4:fe:5a:ec: 37:a1:71:da:18:25:dc:07:27:85:10:52:1a:f4:f7:f4:7d:c8: 13:f6:fa:d3:23:6f:1f:2b:18:f1:2b:a0:ef:cd:04:3a:99:3d: df:9e:e0:94:c5:71:db:ce:af:e9:71:55:f0:5f:3e:20:4f:b6: 50:b1:02:3d:26:2e:1c:0b:bf:e9:ee:41:1b:a9:82:36:74:6d: 97:6b:6c:53:6a:b3:92:74:b7:74:1c:be:6e:ed:71:da:c3:1f: db:49:6d:5b:1a:1a:55:45:1f:45:80:03:c2:ae:49:34:e7:f6: 4c:f0:f1:2e:b8:7a:4c:2d:79:09:c9:2c:1d:00:f7:21:64:0a: 84:5e:44:3f:18:fc:05:13:78:f9:f5:c0:d7:d4:19:25:79:d9: 20:50:e5:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTOcIuPtp7GAs6Hbl5Quo73hTzO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzBlNjBmYmJjZjc1N2FmMTczNjhkMzk2YjczOWNjNjNi ZjE5YTlkMGI0NTJlMGE4MjE4Y2E1YWRjODg2ODQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Kzto5EnytSaG6do9kD4g5ncvdfB392RjBy61g+LXzOPq fZXqMNoAWavMTqVx8lnyRYqkOPK7YcFocWK/i9RLmyEnEiiqKb0QwoYVyw44/G8y zT/H7ft1L8XBQJaT4fo+be7MaB33ITVmI6CmHCGtChRwjKIF7MYJBD74yy2ymEat N9ej72CPzaUMbV/Lb2WF7vdWWCM91X5HRLZwOEmk8nMbnnvoxGaE1INRhqTVcG8C sKT10aG9jZSqIMZdNCax+ZyH9klvQa03+FEXTblbpurJQaOzDb0Jedy17FfQpiby aBdwRrKVPCww2HdYfjQRjeK6/7oDj9Iv9a5XMDfdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5WYQkcAyO1e3UhlhoWx/3mdkVDMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzYTdlMjE5LWM2NDktNDBhYi04NzkyLTE5MmRjNDdhNGIwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wNDANBgkqhkiG9w0BAQsFAAOCAQEASOldY/QG6YVUOKGHlJTGPPkJ VCG21hMrumXA5hYy502mABE5AGqw4Ge3PN5RJyUpzlxNlmRKo4h/wFjGxqLgmh4b W83Lx+OETdS8en2/AxA0U9r6CJBx6OdCeZZmbjTQsnNjkM0IoE7U/lrsN6Fx2hgl 3AcnhRBSGvT39H3IE/b60yNvHysY8Sug780EOpk9357glMVx286v6XFV8F8+IE+2 ULECPSYuHAu/6e5BG6mCNnRtl2tsU2qzknS3dBy+bu1x2sMf20ltWxoaVUUfRYAD wq5JNOf2TPDxLrh6TC15CcksHQD3IWQKhF5EPxj8BRN4+fXA19QZJXnZIFDleQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:08 2024 by rpki-client on console-fra.rpki-client.org