$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/56c9c542-8f47-4a56-9a30-ac1dada7f576.roa File: 56c9c542-8f47-4a56-9a30-ac1dada7f576.roa (raw, json) Hash identifier: kF/ifxMCTcvN1Rl5hhSrV66ZCugA5BJb3INODbmc7Vo= Subject key identifier: 1F:8B:67:0D:59:6A:45:E0:CB:33:EC:8E:E9:FE:5B:EC:18:93:ED:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 417E4BB38BF1177E50B804A091D23198DDFB5263 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/56c9c542-8f47-4a56-9a30-ac1dada7f576.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:48e0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7e:4b:b3:8b:f1:17:7e:50:b8:04:a0:91:d2:31:98:dd:fb:52:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=809820189c582fb41915084e43477fff9d50a70d07923e871fa2012bee1c5c9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:03:20:40:6e:43:5f:6a:c5:6f:c7:65:14:51: c1:21:8a:be:bf:8f:b2:e3:cd:b1:a3:94:04:aa:d4: 73:37:71:96:de:7c:36:32:a8:48:26:b4:f4:1e:ff: 3b:82:c5:7f:9a:0c:45:aa:e4:1c:94:1c:3a:b8:fa: ab:db:ad:9b:80:3f:e7:01:4f:ee:5f:aa:b9:1c:c2: 64:40:80:01:a4:24:08:58:95:2f:d3:ef:63:a1:71: da:ab:73:b4:9c:5f:02:ba:13:50:7c:d7:7c:4c:28: 4c:c5:9f:42:df:46:f7:08:e8:c3:95:21:6f:0e:5e: 50:c6:73:62:47:54:33:3c:32:ab:92:ea:b6:84:23: 60:60:16:bd:23:a6:9c:ab:42:b8:a1:9e:88:0a:f1: 40:22:82:b4:af:2b:fd:24:9b:b3:af:e7:27:4d:70: d8:01:d4:2e:ab:e9:23:5b:53:b3:7b:32:60:c8:6c: 07:c1:1b:d1:9c:cf:aa:bc:c2:2b:bb:99:2c:7e:58: 2b:35:78:8f:fd:e9:5c:3d:55:d3:5a:96:8d:bb:e8: ec:a2:7b:fa:15:bf:2c:29:99:10:ce:07:2b:ec:5e: 9c:b0:ed:f0:c2:ee:53:6b:9b:01:46:49:8d:f9:d4: 84:4e:bf:9a:d5:1c:a8:89:57:d4:00:f9:b3:05:75: 41:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8B:67:0D:59:6A:45:E0:CB:33:EC:8E:E9:FE:5B:EC:18:93:ED:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/56c9c542-8f47-4a56-9a30-ac1dada7f576.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:48e0::/47 Signature Algorithm: sha256WithRSAEncryption ac:1b:54:63:29:d5:51:c2:b3:63:8e:3a:4f:4e:b7:c9:57:d7: d6:7b:17:10:23:50:0c:dc:c1:1c:67:de:47:77:a7:3b:09:3f: b0:a3:91:bd:2e:d9:81:28:f1:d4:40:a9:1d:52:2c:b1:27:8b: c6:58:72:b8:df:c0:31:d7:9b:74:50:00:d6:22:40:3b:7f:ed: 01:d4:df:57:8d:d0:17:c1:06:b5:b9:63:8e:61:a1:3f:54:3a: 16:34:ac:0e:de:bb:a0:29:57:3d:c8:f5:28:8c:a7:67:cf:d6: 54:5f:41:05:e2:3c:b9:a9:ee:d6:9d:b3:80:71:12:c2:9a:3c: df:fe:a9:7b:4b:56:66:f5:41:4c:81:85:43:31:80:ea:15:89: 72:2c:be:b7:a7:af:20:8a:71:bb:17:8a:53:58:2b:d2:00:43: 18:c8:2c:f9:9a:aa:ce:25:c6:e4:5e:58:26:17:87:8f:79:20: 46:92:de:d4:cc:46:b6:54:4a:bd:fc:3f:7b:2c:ed:db:e6:b9: f5:45:87:6e:de:f1:fc:8c:d9:56:a8:99:3f:08:88:67:c7:3a: 04:3e:eb:09:9c:01:a3:b3:b1:c2:84:12:3f:a4:33:b8:3f:07: b2:cd:07:ce:f9:2d:23:6b:15:ed:12:7f:71:db:79:c4:39:81: c5:80:d6:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQX5Ls4vxF35QuASgkdIxmN37UmMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDk4MjAxODljNTgyZmI0MTkxNTA4NGU0MzQ3N2ZmZjlk NTBhNzBkMDc5MjNlODcxZmEyMDEyYmVlMWM1YzliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmAyBAbkNfasVvx2UUUcEhir6/j7LjzbGjlASq1HM3cZbe fDYyqEgmtPQe/zuCxX+aDEWq5ByUHDq4+qvbrZuAP+cBT+5fqrkcwmRAgAGkJAhY lS/T72Ohcdqrc7ScXwK6E1B813xMKEzFn0LfRvcI6MOVIW8OXlDGc2JHVDM8MquS 6raEI2BgFr0jppyrQrihnogK8UAigrSvK/0km7Ov5ydNcNgB1C6r6SNbU7N7MmDI bAfBG9Gcz6q8wiu7mSx+WCs1eI/96Vw9VdNalo276Oyie/oVvywpmRDOByvsXpyw 7fDC7lNrmwFGSY351IROv5rVHKiJV9QA+bMFdUGVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUH4tnDVlqReDLM+yO6f5b7BiT7SkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2YzljNTQyLThmNDctNGE1Ni05YTMwLWFjMWRhZGE3ZjU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSOAwDQYJKoZIhvcNAQELBQADggEBAKwbVGMp1VHCs2OOOk9Ot8lX 19Z7FxAjUAzcwRxn3kd3pzsJP7Cjkb0u2YEo8dRAqR1SLLEni8ZYcrjfwDHXm3RQ ANYiQDt/7QHU31eN0BfBBrW5Y45hoT9UOhY0rA7eu6ApVz3I9SiMp2fP1lRfQQXi PLmp7tads4BxEsKaPN/+qXtLVmb1QUyBhUMxgOoViXIsvrenryCKcbsXilNYK9IA QxjILPmaqs4lxuReWCYXh495IEaS3tTMRrZUSr38P3ss7dvmufVFh27e8fyM2Vao mT8IiGfHOgQ+6wmcAaOzscKEEj+kM7g/B7LNB875LSNrFe0Sf3HbecQ5gcWA1k8= -----END CERTIFICATE-----Generated at Wed May 8 01:48:04 2024 by rpki-client on console-fra.rpki-client.org