$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa File: 50c8b954-ffa6-4746-9859-9ac0de781ad5.roa (raw, json) Hash identifier: RhmIWkfkQemzgnzq79GdKLzknH0rkThsuy3ivmL0DP0= Subject key identifier: 64:D8:93:B8:4B:90:01:84:FC:93:93:C9:74:7A:E4:05:11:BC:C4:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C5797E921ECB3FA3236918E31DD43C0674D8CFB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:57:97:e9:21:ec:b3:fa:32:36:91:8e:31:dd:43:c0:67:4d:8c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=2d59fc65d0c5d787d5e4d54499c6b066689537c4a4ad96b4c71a1028b08dfa0e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:58:ca:e9:9e:bc:78:7c:d9:74:b5:66:3d:b5: 30:66:4f:91:e6:ae:22:68:e4:40:4a:80:69:51:65: 5c:07:0a:60:b0:fe:de:52:c0:1d:61:1d:4f:c2:9b: bf:17:0b:7b:09:a7:f0:9e:2b:8b:2a:04:3e:6d:6a: 2b:64:40:a3:bd:f0:94:03:e8:8b:e8:ee:21:69:36: 8e:75:ae:0a:c0:36:e6:ec:78:ba:35:b3:43:77:93: 37:26:79:d2:c9:63:e9:ef:76:56:91:72:65:79:1a: 1b:a3:57:2b:05:bc:a6:33:80:7c:dc:d1:62:f4:83: 94:da:7c:52:da:58:86:29:e1:98:46:e0:3e:8c:de: f8:7b:fe:5c:4f:dc:e6:8d:c0:3b:e3:06:5a:ff:45: fd:46:2c:ec:98:9f:c3:67:c9:9e:59:28:e2:3e:c8: 5b:7a:e2:06:78:d1:4a:14:22:c1:7e:9c:38:42:13: 8a:a5:a3:84:2b:f2:db:01:36:f6:a1:a9:36:4f:4e: a0:5c:12:1b:4e:6c:53:85:95:50:7d:b1:94:af:f8: 51:3a:56:24:78:90:86:9c:50:c0:11:85:aa:bc:f5: 85:fb:40:c9:b0:8d:0b:f2:e2:41:b0:22:83:5a:37: 57:b7:68:18:f0:c0:7e:cb:ce:b3:33:21:ef:ee:9c: ec:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D8:93:B8:4B:90:01:84:FC:93:93:C9:74:7A:E4:05:11:BC:C4:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption 8b:fe:de:a3:e9:88:2d:a6:77:f7:73:05:95:76:14:9c:59:1b: 97:26:64:0e:ce:98:12:1d:0a:73:de:27:2a:bf:cf:b7:7d:56: 7d:06:36:40:42:4b:62:20:8d:61:d9:da:0f:d6:8f:4f:ca:17: 22:47:cc:85:5e:bb:6a:e1:7d:cd:22:d7:03:64:ba:e5:38:ec: 80:60:31:85:04:69:e2:13:c7:e3:a5:6d:0c:52:eb:7b:8e:ff: d5:7b:eb:c5:9e:b8:0c:60:76:96:5f:68:01:bf:df:96:67:e8: 70:23:2e:d4:1e:ed:37:e3:ac:f7:f7:57:04:7d:b4:11:24:a0: a2:44:1d:b1:d3:3b:89:0f:a7:49:7e:3a:73:9e:08:a2:4c:09: 7b:56:86:2d:3d:05:62:63:a2:e6:56:b8:87:06:65:6e:ca:56: a9:cf:4d:c4:1e:63:f1:84:81:75:80:1d:29:fc:52:c8:18:60: 3c:ae:b6:3d:93:d7:5c:26:ef:c3:05:2a:44:4a:08:f9:25:88: e1:b4:d9:f5:29:36:e6:0a:9a:61:7c:41:96:86:89:2e:20:1a: f1:2f:77:f2:3f:99:65:27:65:d1:9c:d4:e5:d0:40:fd:0a:4d: 15:00:8c:48:b5:aa:f9:95:ec:e6:a7:e0:0a:a0:74:a1:07:bf: 12:28:85:b3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHFeX6SHss/oyNpGOMd1DwGdNjPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDU5ZmM2NWQwYzVkNzg3ZDVlNGQ1NDQ5OWM2YjA2NjY4 OTUzN2M0YTRhZDk2YjRjNzFhMTAyOGIwOGRmYTBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOWMrpnrx4fNl0tWY9tTBmT5HmriJo5EBKgGlRZVwHCmCw /t5SwB1hHU/Cm78XC3sJp/CeK4sqBD5taitkQKO98JQD6Ivo7iFpNo51rgrANubs eLo1s0N3kzcmedLJY+nvdlaRcmV5GhujVysFvKYzgHzc0WL0g5TafFLaWIYp4ZhG 4D6M3vh7/lxP3OaNwDvjBlr/Rf1GLOyYn8NnyZ5ZKOI+yFt64gZ40UoUIsF+nDhC E4qlo4Qr8tsBNvahqTZPTqBcEhtObFOFlVB9sZSv+FE6ViR4kIacUMARhaq89YX7 QMmwjQvy4kGwIoNaN1e3aBjwwH7LzrMzIe/unOzDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZNiTuEuQAYT8k5PJdHrkBRG8xCowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwYzhiOTU0LWZmYTYtNDc0Ni05ODU5LTlhYzBkZTc4MWFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEAi/7eo+mILaZ393MFlXYUnFkb lyZkDs6YEh0Kc94nKr/Pt31WfQY2QEJLYiCNYdnaD9aPT8oXIkfMhV67auF9zSLX A2S65TjsgGAxhQRp4hPH46VtDFLre47/1XvrxZ64DGB2ll9oAb/flmfocCMu1B7t N+Os9/dXBH20ESSgokQdsdM7iQ+nSX46c54IokwJe1aGLT0FYmOi5la4hwZlbspW qc9NxB5j8YSBdYAdKfxSyBhgPK62PZPXXCbvwwUqREoI+SWI4bTZ9Sk25gqaYXxB loaJLiAa8S938j+ZZSdl0ZzU5dBA/QpNFQCMSLWq+ZXs5qfgCqB0oQe/EiiFsw== -----END CERTIFICATE-----Generated at Thu May 2 11:33:15 2024 by rpki-client on console-fra.rpki-client.org