$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa File: 33d00f85-2dad-40e9-ad84-05aa8de0f228.roa (raw, json) Hash identifier: d3OkPdvkLOfFAiHk3jVTMGuvoyDHsUTIPPIn9YFsqeY= Subject key identifier: E3:A0:96:5A:2A:FD:23:03:8B:50:7F:DE:4C:2C:F6:98:79:76:2E:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F7EB3E58B85AEEF0E47A27A9435ACC0E95E7D25 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1b:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:7e:b3:e5:8b:85:ae:ef:0e:47:a2:7a:94:35:ac:c0:e9:5e:7d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=698557c7419516558173333b37c8beb6c137d2eff3265968ca8e6aaf01f970e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:be:02:4e:56:0b:8c:dd:ee:66:08:58:2f: 27:46:30:4c:a9:a0:6d:bb:ee:02:4d:16:46:16:e8: 46:be:da:7f:38:de:72:50:da:38:0c:60:b2:50:60: ae:bb:ea:82:74:8e:7c:bb:16:2f:60:81:c2:fc:fc: 6d:3e:c7:36:e4:34:6b:45:e8:0a:79:cb:97:e6:e7: bc:e9:c3:cf:40:9f:ca:96:36:9e:7e:97:62:4d:6c: 7c:b1:61:9e:f8:a2:76:f9:5a:2b:54:da:01:13:10: 92:af:1e:d7:fb:44:aa:e7:69:64:4f:d1:e7:dc:0a: 5f:09:dc:50:cc:e7:4a:e5:db:0a:fa:f8:ac:01:99: ce:3d:75:ec:d5:2c:b9:f1:4a:4a:06:68:b2:43:52: 7f:88:ee:ab:da:13:af:1b:2d:30:9a:9d:48:35:4e: f1:8b:02:e2:0f:44:70:20:50:ae:b8:91:4e:88:b2: bf:59:36:dc:f8:ec:9f:18:02:75:89:ee:8b:4a:b2: 26:8f:3a:0c:d1:2a:d1:50:72:a1:c1:17:f1:34:a9: 1b:33:3b:a2:3f:8b:3f:0a:6d:d3:31:71:ff:c1:7d: 0c:f1:30:36:48:ea:cc:28:96:d7:cf:09:bb:1b:54: 3d:e5:d7:b6:32:08:07:a2:05:3f:51:1e:94:39:6b: 64:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A0:96:5A:2A:FD:23:03:8B:50:7F:DE:4C:2C:F6:98:79:76:2E:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1b:8000::/36 Signature Algorithm: sha256WithRSAEncryption 53:f7:83:ff:8a:9e:37:1e:07:0f:10:ac:c3:a6:82:f4:0d:fc: e7:ab:d5:ff:1a:64:8b:b5:b2:25:e5:66:0f:7d:70:9d:c9:36: d5:0b:c6:fe:cb:dd:c5:27:d5:14:b9:ae:b1:b9:db:ae:03:f3: 09:41:30:64:4e:49:37:be:c2:27:17:dd:cd:7d:72:f1:3a:11: 3c:01:cc:e4:6b:1d:73:12:b2:a9:92:99:09:39:5b:73:a2:be: 6d:fe:0f:04:65:82:87:a4:91:36:97:59:a2:a8:9c:1f:58:de: 11:48:65:19:04:7c:07:91:67:57:5d:59:bd:7f:a9:09:e9:81: 07:d5:9b:f5:46:0c:74:a8:6a:be:67:88:64:4d:45:ec:f8:d2: ec:cd:96:bf:c2:fc:cc:c4:8f:c9:ba:38:45:93:7c:47:0a:bf: 53:21:2b:1a:52:b3:94:38:bd:aa:d0:09:37:6f:9e:a0:83:d6: 9c:61:53:7e:fc:bd:29:4c:40:fc:fa:26:6a:ac:a9:8b:af:85: 5f:51:3a:0b:1b:81:11:ec:75:78:dc:2a:8c:fb:61:45:eb:07: 03:bb:21:fa:cf:41:a8:07:21:d1:93:6b:d7:4b:9f:50:11:19: 31:2a:8f:eb:99:03:8f:9f:7f:8a:69:a5:db:f4:b7:93:d9:0b: 46:b5:7a:d5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP36z5YuFru8OR6J6lDWswOlefSUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTg1NTdjNzQxOTUxNjU1ODE3MzMzM2IzN2M4YmViNmMx MzdkMmVmZjMyNjU5NjhjYThlNmFhZjAxZjk3MGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5db4CTlYLjN3uZghYLydGMEypoG277gJNFkYW6Ea+2n84 3nJQ2jgMYLJQYK676oJ0jny7Fi9ggcL8/G0+xzbkNGtF6Ap5y5fm57zpw89An8qW Np5+l2JNbHyxYZ74onb5WitU2gETEJKvHtf7RKrnaWRP0efcCl8J3FDM50rl2wr6 +KwBmc49dezVLLnxSkoGaLJDUn+I7qvaE68bLTCanUg1TvGLAuIPRHAgUK64kU6I sr9ZNtz47J8YAnWJ7otKsiaPOgzRKtFQcqHBF/E0qRszO6I/iz8KbdMxcf/BfQzx MDZI6swoltfPCbsbVD3l17YyCAeiBT9RHpQ5a2StAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU46CWWir9IwOLUH/eTCz2mHl2LvkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzZDAwZjg1LTJkYWQtNDBlOS1hZDg0LTA1YWE4ZGUwZjIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8bgDANBgkqhkiG9w0BAQsFAAOCAQEAU/eD/4qeNx4HDxCsw6aC9A38 56vV/xpki7WyJeVmD31wnck21QvG/svdxSfVFLmusbnbrgPzCUEwZE5JN77CJxfd zX1y8ToRPAHM5GsdcxKyqZKZCTlbc6K+bf4PBGWCh6SRNpdZoqicH1jeEUhlGQR8 B5FnV11ZvX+pCemBB9Wb9UYMdKhqvmeIZE1F7PjS7M2Wv8L8zMSPybo4RZN8Rwq/ UyErGlKzlDi9qtAJN2+eoIPWnGFTfvy9KUxA/Pomaqypi6+FX1E6CxuBEex1eNwq jPthResHA7sh+s9BqAch0ZNr10ufUBEZMSqP65kDj59/imml2/S3k9kLRrV61Q== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:16 2024 by rpki-client on console-fra.rpki-client.org