$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa File: 2b71043a-784f-4c14-8051-a00191c3b8a3.roa (raw, json) Hash identifier: ecYVaG1/uK8Zgv+CbvG+bYTeAbILeijowpQvu1n7umw= Subject key identifier: 2F:EE:DF:84:5C:53:A6:29:C7:23:0B:24:BD:C8:77:86:46:F4:8B:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7439592E969193B724E135CF65C6AF2EC53F1C53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:39:59:2e:96:91:93:b7:24:e1:35:cf:65:c6:af:2e:c5:3f:1c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=3afaa70c8a601450d3c7cd6eeb2ef5ecd39ac923b334732697c6a40e227ef1dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d2:1b:98:98:b2:e5:e8:e4:44:d4:7c:2e:40: 33:ca:3a:db:38:d9:b7:6d:20:b5:9a:c8:64:e3:d1: ac:a5:79:37:57:98:e1:bd:b7:29:0d:74:5c:a2:b3: ff:02:e4:08:e6:45:8e:b5:1c:b2:1a:1e:c5:a3:1b: 8d:24:c8:75:65:93:2f:28:d5:5f:f3:02:86:d6:a0: ec:20:71:66:29:c0:fb:a3:d3:c7:75:85:07:ba:d0: c1:c4:b6:51:cb:11:d8:12:56:ba:05:b4:dc:e1:db: 53:7e:7f:86:85:a0:14:fd:b4:b5:77:e2:35:21:09: 22:4b:a4:cd:0c:1c:b7:67:2b:9f:14:71:12:5f:cc: 15:b5:90:e4:5e:1c:e5:43:85:9d:6c:d3:56:f7:e4: b3:73:f7:d4:d2:5f:ef:0e:92:f1:86:a0:c8:06:65: 72:ac:ea:b8:e6:c6:24:ed:62:8d:77:a7:43:1c:97: e2:ba:96:48:ce:f9:eb:8c:a3:75:cd:2f:52:f4:40: 56:28:20:a7:50:4f:6d:be:fd:8b:d6:60:11:c8:8e: 0e:b5:44:39:6c:fd:a1:10:c4:38:60:10:e4:1e:19: 07:b5:d0:fa:d3:4a:8e:d4:dc:f7:d8:96:a5:6a:bb: eb:a0:b0:d4:a6:8b:bf:3c:4c:fd:a7:11:76:d1:5f: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EE:DF:84:5C:53:A6:29:C7:23:0B:24:BD:C8:77:86:46:F4:8B:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b71043a-784f-4c14-8051-a00191c3b8a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:6000::/40 Signature Algorithm: sha256WithRSAEncryption 98:59:f0:b6:ca:40:18:8f:fd:f9:d8:40:fd:a7:11:9e:c7:3f: 55:64:0e:f3:b3:03:db:50:8d:66:ce:c3:46:50:a9:ed:9c:b7: e2:aa:86:55:30:f4:04:96:7c:28:07:1d:98:9d:a3:4a:ae:e0: 7d:1f:5b:07:54:35:d8:b6:cc:38:ef:90:e1:12:ec:c1:af:91: 49:57:43:13:8c:73:ad:1e:9b:33:f9:e1:77:0b:cd:35:dc:9b: 20:13:3f:dc:30:12:ac:ed:bd:0d:d5:49:94:84:c2:82:1e:e9: 02:1f:c5:52:1c:cc:41:ae:9f:f5:b8:e5:96:06:a6:f9:23:40: 9b:5f:bd:cb:b5:6b:30:ae:bf:48:37:b9:20:bd:24:a8:b1:4c: dd:34:ad:3d:4b:bb:ab:de:39:09:b2:03:46:3f:c2:fd:44:cf: 3c:7b:67:21:15:1a:23:79:48:5d:bd:45:0b:c0:23:f7:40:a8: ad:c8:96:ae:8a:d0:64:98:ee:88:00:64:0c:f8:9a:8a:eb:ad: 87:fb:09:58:06:32:50:09:7c:14:2b:32:58:85:75:e9:15:92: fd:7c:27:77:f3:b2:bc:cc:b3:8d:32:af:19:95:7c:51:7e:e9: 02:2f:8c:31:e4:48:a5:5d:5b:bc:85:a8:2e:e5:22:fd:86:48: 22:1c:26:a9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdDlZLpaRk7ck4TXPZcavLsU/HFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWZhYTcwYzhhNjAxNDUwZDNjN2NkNmVlYjJlZjVlY2Qz OWFjOTIzYjMzNDczMjY5N2M2YTQwZTIyN2VmMWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE0huYmLLl6ORE1HwuQDPKOts42bdtILWayGTj0ayleTdX mOG9tykNdFyis/8C5AjmRY61HLIaHsWjG40kyHVlky8o1V/zAobWoOwgcWYpwPuj 08d1hQe60MHEtlHLEdgSVroFtNzh21N+f4aFoBT9tLV34jUhCSJLpM0MHLdnK58U cRJfzBW1kOReHOVDhZ1s01b35LNz99TSX+8OkvGGoMgGZXKs6rjmxiTtYo13p0Mc l+K6lkjO+euMo3XNL1L0QFYoIKdQT22+/YvWYBHIjg61RDls/aEQxDhgEOQeGQe1 0PrTSo7U3PfYlqVqu+ugsNSmi788TP2nEXbRX6qJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUL+7fhFxTpinHIwskvch3hkb0i14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiNzEwNDNhLTc4NGYtNGMxNC04MDUxLWEwMDE5MWMzYjhhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/5YDANBgkqhkiG9w0BAQsFAAOCAQEAmFnwtspAGI/9+dhA/acRnsc/ VWQO87MD21CNZs7DRlCp7Zy34qqGVTD0BJZ8KAcdmJ2jSq7gfR9bB1Q12LbMOO+Q 4RLswa+RSVdDE4xzrR6bM/nhdwvNNdybIBM/3DASrO29DdVJlITCgh7pAh/FUhzM Qa6f9bjllgam+SNAm1+9y7VrMK6/SDe5IL0kqLFM3TStPUu7q945CbIDRj/C/UTP PHtnIRUaI3lIXb1FC8Aj90CorciWrorQZJjuiABkDPiaiuuth/sJWAYyUAl8FCsy WIV16RWS/Xwnd/OyvMyzjTKvGZV8UX7pAi+MMeRIpV1bvIWoLuUi/YZIIhwmqQ== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:13 2024 by rpki-client on console-ams.rpki-client.org