$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fe0bd8a-7346-455c-a4fa-2bea4c70c3fb.roa File: 4fe0bd8a-7346-455c-a4fa-2bea4c70c3fb.roa (raw, json) Hash identifier: Us1XSxdDTDlsbGTcSNNDoI1+W+9lmY5VVvRVjz44elA= Subject key identifier: FC:C9:4B:D0:EC:C4:2F:79:AE:C3:B9:77:27:37:7C:23:CF:95:13:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 518042731740648C63F92297282CC4D104BB2E09 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fe0bd8a-7346-455c-a4fa-2bea4c70c3fb.roa Signing time: Tue 09 Apr 2024 00:00:00 +0000 ROA not before: Tue 09 Apr 2024 00:00:00 +0000 ROA not after: Tue 14 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:80:42:73:17:40:64:8c:63:f9:22:97:28:2c:c4:d1:04:bb:2e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:00:00 2024 GMT Not After : May 14 23:59:59 2024 GMT Subject: serialNumber=4c1952ddab5f9d06cbada4f933a347ff001890b096adfe241df3bce1e01d77db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:52:14:07:25:97:03:08:d0:64:8e:65:24:8a: e0:5a:7e:b1:5d:f8:bf:c3:a6:4f:ad:7d:c4:4d:71: 2f:d7:22:5c:21:6d:c6:38:a2:2f:49:36:44:6d:9e: 6b:6c:15:a8:2e:58:20:f8:ef:c8:cb:64:54:2c:a1: 53:77:6f:58:8b:ba:63:81:e9:97:06:4c:24:6e:ed: 15:e3:b8:6a:af:a1:07:78:94:c5:87:08:99:b3:33: 40:22:81:e8:b1:b3:26:98:53:8b:01:1b:46:12:1c: 49:01:14:ff:ed:f5:4b:36:b8:d9:c0:af:59:43:e7: 43:f0:4e:12:d4:73:1e:1a:3f:04:2b:4b:f1:c3:8a: f7:14:e8:f8:bf:ed:49:f0:3b:8a:1b:00:e1:dc:ed: 19:1d:33:06:2a:47:da:67:2e:b1:fa:54:c7:83:15: 84:0a:38:ad:8a:7f:36:d6:71:36:7c:c9:4f:67:27: cf:3e:7c:7c:55:16:65:4f:05:75:23:21:3d:9b:a9: de:3f:f7:77:64:8e:2d:01:f8:d1:1b:0f:5b:1a:d5: 6d:70:81:11:21:e6:e6:69:6d:d4:a7:62:e0:89:7e: 8a:4c:80:f6:2f:00:e4:a0:22:87:6f:a4:f0:f5:1e: 79:e1:20:65:e9:52:9e:5e:4b:dd:25:5a:25:9b:7e: 6f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C9:4B:D0:EC:C4:2F:79:AE:C3:B9:77:27:37:7C:23:CF:95:13:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fe0bd8a-7346-455c-a4fa-2bea4c70c3fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:1000::/40 Signature Algorithm: sha256WithRSAEncryption a6:dc:44:1d:44:75:b3:09:80:db:6d:3c:0f:58:fe:15:a8:5b: a1:0a:6c:fe:4e:c0:f0:b3:7b:c6:83:87:ec:2e:cd:a9:95:c1: 01:e4:f4:0e:2d:1d:08:37:ff:41:dd:7a:5a:bf:13:82:87:59: 4e:bb:b2:05:96:38:4e:40:cd:b8:aa:ac:85:c2:00:f1:6a:88: 92:f1:16:1f:82:cd:55:ec:47:17:8e:74:7a:b9:95:4a:5f:0c: 06:ec:a9:4a:bf:78:31:5b:52:79:1a:b2:92:62:12:c2:16:c5: 50:aa:cd:54:7c:2b:80:9e:ff:62:24:8e:80:7b:b1:05:57:bd: 3e:4f:97:0e:1c:c2:4d:24:f7:66:fe:f1:f9:d8:f1:e6:59:8a: 4a:75:8f:51:1f:bb:cf:33:63:09:9e:85:07:6d:8d:74:4d:22: 71:6b:39:8e:af:a8:7c:e6:c1:49:d5:3d:ac:3d:fc:68:65:fe: b5:f4:8e:d9:3d:29:16:0c:9b:e1:20:8f:69:7d:8d:e4:5d:9f: f5:37:26:26:50:cb:06:76:6b:82:a2:95:fd:a0:fc:61:7c:b3: e3:58:d3:05:35:9c:d4:fa:56:7a:ff:d6:cc:55:e0:6c:25:d6: fd:76:56:8d:e7:55:e6:2f:ba:dc:50:66:69:dc:95:3f:12:f7: f3:80:fe:29 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUYBCcxdAZIxj+SKXKCzE0QS7LgkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA5MDAwMDAwWhcNMjQwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzE5NTJkZGFiNWY5ZDA2Y2JhZGE0ZjkzM2EzNDdmZjAw MTg5MGIwOTZhZGZlMjQxZGYzYmNlMWUwMWQ3N2RiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJUhQHJZcDCNBkjmUkiuBafrFd+L/Dpk+tfcRNcS/XIlwh bcY4oi9JNkRtnmtsFaguWCD478jLZFQsoVN3b1iLumOB6ZcGTCRu7RXjuGqvoQd4 lMWHCJmzM0AigeixsyaYU4sBG0YSHEkBFP/t9Us2uNnAr1lD50PwThLUcx4aPwQr S/HDivcU6Pi/7UnwO4obAOHc7RkdMwYqR9pnLrH6VMeDFYQKOK2KfzbWcTZ8yU9n J88+fHxVFmVPBXUjIT2bqd4/93dkji0B+NEbD1sa1W1wgREh5uZpbdSnYuCJfopM gPYvAOSgIodvpPD1HnnhIGXpUp5eS90lWiWbfm/rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/MlL0OzEL3muw7l3Jzd8I8+VE1UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmZTBiZDhhLTczNDYtNDU1Yy1hNGZhLTJiZWE0YzcwYzNmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2EDANBgkqhkiG9w0BAQsFAAOCAQEAptxEHUR1swmA2208D1j+Fahb oQps/k7A8LN7xoOH7C7NqZXBAeT0Di0dCDf/Qd16Wr8TgodZTruyBZY4TkDNuKqs hcIA8WqIkvEWH4LNVexHF450ermVSl8MBuypSr94MVtSeRqykmISwhbFUKrNVHwr gJ7/YiSOgHuxBVe9Pk+XDhzCTST3Zv7x+djx5lmKSnWPUR+7zzNjCZ6FB22NdE0i cWs5jq+ofObBSdU9rD38aGX+tfSO2T0pFgyb4SCPaX2N5F2f9TcmJlDLBnZrgqKV /aD8YXyz41jTBTWc1PpWev/WzFXgbCXW/XZWjedV5i+63FBmadyVPxL384D+KQ== -----END CERTIFICATE-----Generated at Thu May 2 17:41:08 2024 by rpki-client on console-fra.rpki-client.org