$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51da0f5e-ca84-4d71-bc67-6de98e6b2eb1.roa File: 51da0f5e-ca84-4d71-bc67-6de98e6b2eb1.roa (raw, json) Hash identifier: pXrmMGMcPeSVFnd1WSuZWeuTqe65sLSvdVIZn2o4HEo= Subject key identifier: 15:7F:16:9C:C6:B5:E0:0B:65:D3:81:18:D0:7D:38:16:8D:66:35:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 476A6B1EA8C84A1836B22577C083BD12C8499D95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51da0f5e-ca84-4d71-bc67-6de98e6b2eb1.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffc:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:6a:6b:1e:a8:c8:4a:18:36:b2:25:77:c0:83:bd:12:c8:49:9d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=38a36e0fadf0fb335667ecceb8e952ce5c54f14dd8f3db34de935dff129e81a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:67:28:ac:53:d2:17:77:2d:06:49:51:2f:6e: 38:a5:a4:94:11:3c:93:27:51:d1:16:fc:76:98:96: a6:5e:03:48:a7:6c:48:54:ca:90:b1:4a:08:f5:d5: 67:ed:ba:54:95:a0:e3:3b:a9:24:29:eb:81:9f:92: c7:c0:54:49:bf:b3:dd:4e:68:3a:4a:18:ea:e7:d5: af:14:89:52:61:d0:ba:9a:3f:6a:01:88:c4:08:0a: cb:c2:ca:0c:35:2c:5e:99:99:b6:7b:27:fa:98:ee: 4f:21:c9:25:88:6e:da:40:a9:70:fa:58:04:6a:15: ca:d7:96:54:3b:72:40:fa:8b:00:af:47:e2:a5:a9: 71:d5:58:a2:11:76:e7:8a:b2:ba:57:c4:5f:4c:98: ba:fb:5b:fe:fa:1a:97:0d:83:a0:1e:17:f9:2d:37: c7:09:2b:3d:22:ef:36:4c:05:44:0c:09:fd:0c:00: b9:ca:ee:6a:ed:c3:f7:61:d4:81:8b:8c:e2:47:af: 28:14:58:b9:5e:f3:98:35:7f:15:74:52:da:06:21: 60:e6:27:51:09:06:eb:a0:70:ef:b0:fa:8a:d9:c1: df:08:03:ef:9b:93:cf:cd:ae:43:4a:8a:1c:0f:6d: 14:0d:b6:71:11:49:32:46:69:67:ec:e0:24:14:68: 05:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:7F:16:9C:C6:B5:E0:0B:65:D3:81:18:D0:7D:38:16:8D:66:35:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51da0f5e-ca84-4d71-bc67-6de98e6b2eb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffc:a400::/40 Signature Algorithm: sha256WithRSAEncryption 2a:0d:f2:38:40:27:1a:a5:0f:b4:30:03:ab:02:62:6e:76:02: 1f:06:20:f1:3f:d4:a9:f0:8f:eb:4c:24:05:19:65:25:81:e5: 81:bb:8c:59:76:f9:3b:2c:27:c7:ad:5c:24:be:9d:a8:c6:13: 15:b5:f5:54:2b:19:d3:fe:4e:22:6b:79:79:cc:c1:fa:7b:f7: 44:ba:c1:d4:e6:c1:fd:31:d5:9b:c1:a6:3c:dc:b0:04:9b:2b: b1:f3:7f:16:d1:88:a7:ac:02:d6:22:89:e2:aa:5f:eb:74:4e: 68:24:4a:e2:ce:fc:4a:78:53:5e:18:61:3e:6f:4d:c6:37:bf: 15:fc:2f:87:9b:6a:7b:77:57:7e:f0:5c:4c:40:a6:34:56:c1: 34:b8:10:3c:3e:9b:fe:e2:8d:16:e5:6d:77:61:8b:0d:c9:9c: 55:aa:28:cb:6f:e7:ce:6d:12:29:f9:b0:ad:46:ac:64:f8:e7: e9:02:c7:52:3c:9b:41:98:56:79:81:a3:05:7f:2b:0e:f8:8a: 21:e0:d0:d2:be:ad:a0:7c:d8:5f:04:f2:58:4f:40:7b:e6:a8: 1a:16:af:e4:d6:8b:6c:15:69:f8:6c:79:9d:9b:c4:11:15:ee: 22:6d:ae:c1:bf:59:92:59:02:dd:48:e4:2d:75:0b:af:58:e7: 8f:62:83:e9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUR2prHqjIShg2siV3wIO9EshJnZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGEzNmUwZmFkZjBmYjMzNTY2N2VjY2ViOGU5NTJjZTVj NTRmMTRkZDhmM2RiMzRkZTkzNWRmZjEyOWU4MWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2ZyisU9IXdy0GSVEvbjilpJQRPJMnUdEW/HaYlqZeA0in bEhUypCxSgj11WftulSVoOM7qSQp64GfksfAVEm/s91OaDpKGOrn1a8UiVJh0Lqa P2oBiMQICsvCygw1LF6ZmbZ7J/qY7k8hySWIbtpAqXD6WARqFcrXllQ7ckD6iwCv R+KlqXHVWKIRdueKsrpXxF9MmLr7W/76GpcNg6AeF/ktN8cJKz0i7zZMBUQMCf0M ALnK7mrtw/dh1IGLjOJHrygUWLle85g1fxV0UtoGIWDmJ1EJBuugcO+w+orZwd8I A++bk8/NrkNKihwPbRQNtnERSTJGaWfs4CQUaAVtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFX8WnMa14Atl04EY0H04Fo1mNcgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxZGEwZjVlLWNhODQtNGQ3MS1iYzY3LTZkZTk4ZTZiMmViMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/8pDANBgkqhkiG9w0BAQsFAAOCAQEAKg3yOEAnGqUPtDADqwJibnYC HwYg8T/UqfCP60wkBRllJYHlgbuMWXb5Oywnx61cJL6dqMYTFbX1VCsZ0/5OImt5 eczB+nv3RLrB1ObB/THVm8GmPNywBJsrsfN/FtGIp6wC1iKJ4qpf63ROaCRK4s78 SnhTXhhhPm9Nxje/Ffwvh5tqe3dXfvBcTECmNFbBNLgQPD6b/uKNFuVtd2GLDcmc Vaooy2/nzm0SKfmwrUasZPjn6QLHUjybQZhWeYGjBX8rDviKIeDQ0r6toHzYXwTy WE9Ae+aoGhav5NaLbBVp+Gx5nZvEERXuIm2uwb9ZklkC3UjkLXULr1jnj2KD6Q== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:00 2024 by rpki-client on console-ams.rpki-client.org