$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45999358-e888-47c3-add8-bf1de1d4eab6.roa File: 45999358-e888-47c3-add8-bf1de1d4eab6.roa (raw, json) Hash identifier: IU7b5+01AhI7LShhbPDFFk/Y7Man3tCoSCzLTvgdvBs= Subject key identifier: 6D:06:6B:49:43:CB:00:FE:6C:14:12:DA:B0:31:CB:D0:56:B6:74:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12E5E53D7FBFBC53A1D9886FE9BE847827B6DDED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45999358-e888-47c3-add8-bf1de1d4eab6.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e5:e5:3d:7f:bf:bc:53:a1:d9:88:6f:e9:be:84:78:27:b6:dd:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=da38ed9cd765943c957006ead8b825a20e5a86ac782ce83f653a37a3d502dba2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:29:62:b4:e4:7f:da:e4:d9:cb:5e:b2:1a: f3:81:fb:30:20:15:ac:55:83:cf:74:82:1d:70:89: 61:aa:cb:fe:8b:7c:c7:62:71:ee:15:dd:93:53:b8: 48:b7:54:b3:9a:ce:2d:a9:c2:80:33:dc:1b:4a:50: 75:a1:8d:08:76:d2:22:a4:f6:be:d9:69:59:2a:b1: af:9c:83:d2:f8:19:27:48:73:a0:3b:6c:83:99:b1: f8:50:57:b8:35:bd:92:0f:65:98:62:75:89:6d:b7: df:20:ce:af:87:cc:0c:f1:22:7e:86:45:62:f5:1e: 88:8e:3c:0c:03:ac:99:98:25:1b:fe:cf:4b:80:d7: d1:19:6b:13:20:f4:0a:2a:22:2d:e5:17:73:78:64: 43:cd:36:a5:71:ff:b7:f4:fd:de:6f:fd:4f:3d:7f: 5d:13:f4:de:3a:14:f3:26:8b:76:aa:64:2e:ff:3e: 30:c8:01:fd:22:e9:d2:e6:ea:de:60:6e:32:f9:54: bd:0d:be:0b:ff:23:2c:c1:10:04:04:67:02:9c:73: 36:26:16:cb:f3:27:61:c7:76:db:3c:13:9d:23:c1: e9:e0:3b:10:2f:c0:cf:f2:c0:ba:5b:65:af:5f:ad: b2:27:7c:cb:81:c6:a6:e6:fc:b2:aa:a3:5a:3f:f7: 54:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:06:6B:49:43:CB:00:FE:6C:14:12:DA:B0:31:CB:D0:56:B6:74:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45999358-e888-47c3-add8-bf1de1d4eab6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4000::/44 Signature Algorithm: sha256WithRSAEncryption 82:0f:ec:23:1f:24:fb:14:45:40:fb:d4:7a:88:e7:a5:a7:3f: 2e:80:e7:ca:20:57:a5:da:ee:21:41:76:85:d9:8f:cd:f2:62: 57:85:bf:e7:2b:33:dc:72:67:4e:9a:91:a7:4b:81:ee:47:a8: 11:1b:73:50:53:fc:54:0e:b7:50:1e:9d:4d:fe:57:e9:11:13: c4:7c:f6:a8:80:05:d0:a1:d7:eb:1c:59:59:f3:d5:30:98:7e: f5:2c:f1:d5:59:62:63:6d:4f:81:9f:b2:69:82:cf:31:fa:29: 63:17:b2:fe:83:fe:f8:d2:48:b0:df:ca:eb:17:8a:a0:f5:c3: 36:94:44:e5:4f:a6:20:fd:fe:c4:8e:03:16:c6:4f:98:2b:61: b2:b6:11:30:71:8e:10:3d:40:32:50:5c:7d:c1:15:ef:ff:16: ff:fd:b0:54:97:53:28:b9:c0:5e:7a:dd:46:69:2d:c0:4f:46: 68:71:03:a5:f5:78:15:20:e3:1c:a3:91:31:7e:d8:17:2e:b0: ed:b4:af:d3:f2:47:48:a9:0b:b3:8b:da:5d:99:4d:d1:94:d8: 65:73:51:bb:9f:b5:9e:d4:73:f9:a0:49:bf:03:c1:7f:d7:c4: 85:e4:8f:08:99:b8:d8:c1:cd:2a:5e:d4:dc:93:4a:1c:b6:f4: 63:21:c2:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEuXlPX+/vFOh2Yhv6b6EeCe23e0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTM4ZWQ5Y2Q3NjU5NDNjOTU3MDA2ZWFkOGI4MjVhMjBl NWE4NmFjNzgyY2U4M2Y2NTNhMzdhM2Q1MDJkYmEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6qSlitOR/2uTZy16yGvOB+zAgFaxVg890gh1wiWGqy/6L fMdice4V3ZNTuEi3VLOazi2pwoAz3BtKUHWhjQh20iKk9r7ZaVkqsa+cg9L4GSdI c6A7bIOZsfhQV7g1vZIPZZhidYltt98gzq+HzAzxIn6GRWL1HoiOPAwDrJmYJRv+ z0uA19EZaxMg9AoqIi3lF3N4ZEPNNqVx/7f0/d5v/U89f10T9N46FPMmi3aqZC7/ PjDIAf0i6dLm6t5gbjL5VL0Nvgv/IyzBEAQEZwKcczYmFsvzJ2HHdts8E50jweng OxAvwM/ywLpbZa9frbInfMuBxqbm/LKqo1o/91SHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbQZrSUPLAP5sFBLasDHL0Fa2dDYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1OTk5MzU4LWU4ODgtNDdjMy1hZGQ4LWJmMWRlMWQ0ZWFiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHQAAwDQYJKoZIhvcNAQELBQADggEBAIIP7CMfJPsURUD71HqI56Wn Py6A58ogV6Xa7iFBdoXZj83yYleFv+crM9xyZ06akadLge5HqBEbc1BT/FQOt1Ae nU3+V+kRE8R89qiABdCh1+scWVnz1TCYfvUs8dVZYmNtT4GfsmmCzzH6KWMXsv6D /vjSSLDfyusXiqD1wzaUROVPpiD9/sSOAxbGT5grYbK2ETBxjhA9QDJQXH3BFe// Fv/9sFSXUyi5wF563UZpLcBPRmhxA6X1eBUg4xyjkTF+2BcusO20r9PyR0ipC7OL 2l2ZTdGU2GVzUbuftZ7Uc/mgSb8DwX/XxIXkjwiZuNjBzSpe1NyTShy29GMhwik= -----END CERTIFICATE-----Generated at Tue Apr 23 18:30:24 2024 by rpki-client on console-fra.rpki-client.org