$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa File: 160933c3-b761-41a9-87a6-9e744a40b1ba.roa (raw, json) Hash identifier: F2SDNz9nu2CX9a5aeFPxZfIOMiz3lmAqFN7ZzQWVmtU= Subject key identifier: F2:29:FE:0B:0C:B1:9F:48:D3:12:F8:62:1A:0A:7F:6B:D2:80:D1:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5796EEC242BC9CD7C0C846C28C7C55BD339FC2C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:96:ee:c2:42:bc:9c:d7:c0:c8:46:c2:8c:7c:55:bd:33:9f:c2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=1aceef2bbcaa284fede6e99572cc30cabbe9515afc5cf1fa853f8ebff9cedc17, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a2:6a:3b:e4:ea:fa:9f:bb:ac:20:82:42:62: da:25:47:b7:65:f2:4b:98:f7:2d:9c:8b:83:61:61: ac:9f:77:7f:12:cb:59:ef:bd:d9:3e:35:4e:de:2f: 79:23:c6:2e:c9:17:ea:83:26:d8:14:21:7d:51:07: f4:88:3a:97:af:27:f5:93:dc:9f:09:89:3e:3d:de: bf:a6:16:8c:a8:3f:6a:a0:d6:57:d0:7d:d6:64:c2: e1:d4:8a:84:89:e2:33:95:ed:9e:94:7e:f8:47:2c: 7c:00:e1:8a:b4:d1:f7:1a:d4:12:db:de:7a:56:e5: 19:ed:fa:da:92:de:c1:1c:58:3e:b8:fb:07:57:c5: 0a:db:23:b9:51:aa:ea:f9:b9:01:76:bd:cc:3b:fc: 04:d1:e5:ce:17:b1:6e:80:20:f6:45:12:0e:2c:29: af:fd:ee:26:1b:3b:f8:16:c2:81:75:bf:7f:55:68: 15:44:4c:c5:70:6b:2c:63:13:7a:d2:9d:ec:2f:09: 9f:98:5f:e3:94:f8:87:d9:e0:21:14:43:b5:db:1d: 56:53:f3:01:ec:e9:6e:35:95:d3:2d:5a:9c:5b:75: 7f:69:ba:bf:1b:f9:4e:ff:26:ed:51:0b:6e:de:5c: 0a:a4:03:97:7b:16:c2:3f:f1:ca:19:51:ab:52:ec: eb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:29:FE:0B:0C:B1:9F:48:D3:12:F8:62:1A:0A:7F:6B:D2:80:D1:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/160933c3-b761-41a9-87a6-9e744a40b1ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:1000::/40 Signature Algorithm: sha256WithRSAEncryption 2a:30:a8:f4:8c:29:a0:91:95:f7:b3:5c:47:08:23:03:d0:2a: 47:0a:d3:20:ad:d6:5e:a1:07:35:33:6e:bf:9a:1b:dc:7a:04: b6:c5:9b:e2:d9:a2:f8:22:09:9b:ae:ca:36:03:5c:2a:ae:5a: 98:a1:3d:93:1a:eb:c8:25:bb:db:da:57:f4:dc:f5:76:29:68: 63:84:a6:fc:e3:4a:11:5f:8b:37:91:df:90:7f:fc:6b:8c:35: 09:56:ea:ff:c8:04:ce:59:9f:f9:5c:f5:b2:24:e1:92:0c:2a: cf:94:2c:97:9b:f9:eb:2b:f8:53:5f:0f:70:7b:7b:81:5f:2d: e1:4c:b0:a5:39:73:bb:ca:b2:97:4d:bf:b7:9c:9d:8a:0e:ef: 23:ca:db:3e:1f:0e:84:0c:0e:b8:f4:38:a8:6c:ff:11:7a:1a: ba:2b:80:13:e9:c9:c4:89:83:da:5d:6c:f1:38:8f:d3:22:c3: 2a:4b:e2:1c:e8:21:83:c5:91:82:81:e1:f3:b4:da:22:76:2e: f9:b6:d5:a4:04:0a:df:c1:91:f0:e0:fa:63:aa:f1:a4:b0:63: b4:7c:ad:92:ae:31:a2:36:c6:39:6e:a9:11:c5:5a:cb:f5:67: a9:0f:ac:f0:8f:bd:7d:65:60:87:07:30:07:10:9f:d3:1e:c2: e4:a5:df:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUV5buwkK8nNfAyEbCjHxVvTOfwskwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWNlZWYyYmJjYWEyODRmZWRlNmU5OTU3MmNjMzBjYWJi ZTk1MTVhZmM1Y2YxZmE4NTNmOGViZmY5Y2VkYzE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLomo75Or6n7usIIJCYtolR7dl8kuY9y2ci4NhYayfd38S y1nvvdk+NU7eL3kjxi7JF+qDJtgUIX1RB/SIOpevJ/WT3J8JiT493r+mFoyoP2qg 1lfQfdZkwuHUioSJ4jOV7Z6UfvhHLHwA4Yq00fca1BLb3npW5Rnt+tqS3sEcWD64 +wdXxQrbI7lRqur5uQF2vcw7/ATR5c4XsW6AIPZFEg4sKa/97iYbO/gWwoF1v39V aBVETMVwayxjE3rSnewvCZ+YX+OU+IfZ4CEUQ7XbHVZT8wHs6W41ldMtWpxbdX9p ur8b+U7/Ju1RC27eXAqkA5d7FsI/8coZUatS7Ou9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8in+Cwyxn0jTEvhiGgp/a9KA0bUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2MDkzM2MzLWI3NjEtNDFhOS04N2E2LTllNzQ0YTQwYjFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4EDANBgkqhkiG9w0BAQsFAAOCAQEAKjCo9IwpoJGV97NcRwgjA9Aq RwrTIK3WXqEHNTNuv5ob3HoEtsWb4tmi+CIJm67KNgNcKq5amKE9kxrryCW729pX 9Nz1diloY4Sm/ONKEV+LN5HfkH/8a4w1CVbq/8gEzlmf+Vz1siThkgwqz5Qsl5v5 6yv4U18PcHt7gV8t4UywpTlzu8qyl02/t5ydig7vI8rbPh8OhAwOuPQ4qGz/EXoa uiuAE+nJxImD2l1s8TiP0yLDKkviHOghg8WRgoHh87TaInYu+bbVpAQK38GR8OD6 Y6rxpLBjtHytkq4xojbGOW6pEcVay/VnqQ+s8I+9fWVghwcwBxCf0x7C5KXfPg== -----END CERTIFICATE-----Generated at Thu May 2 22:12:01 2024 by rpki-client on console-fra.rpki-client.org