$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa File: 57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa (raw, json) Hash identifier: +Yly7aaX3eaHG3o7nADopTh6Y6g4H1UJMaKbNVEpsnI= Subject key identifier: 89:0F:C3:54:A6:B6:92:5A:C9:94:FB:A2:09:63:57:81:C4:B9:0D:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A4861C286944BE59314F52011E3B2D3E2220A1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:48:61:c2:86:94:4b:e5:93:14:f5:20:11:e3:b2:d3:e2:22:0a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=33d38138b044fbb1dd1f2b16f6ae46dbe685e466bafb1ac0ad4769cdf9583b51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:91:54:a8:fa:37:97:0c:3d:96:f9:de:19:e7: 95:08:13:c3:9b:4a:b1:9e:0d:7a:9c:b7:b4:ab:76: ab:eb:6a:15:ba:8c:e8:97:29:19:86:2f:30:0b:9d: d3:f8:14:d1:c3:f4:ad:ab:ff:f5:73:71:37:5b:64: 9a:da:5c:97:e9:b8:b7:be:85:10:16:84:63:f4:7c: dd:67:8d:b7:ae:05:91:9b:07:3b:0f:a4:2a:b2:03: c3:18:28:7a:1a:6a:5e:a9:7a:9b:58:9a:5a:f8:d3: ad:40:2c:1a:4d:94:cd:d9:1b:13:db:60:51:2a:47: 16:b5:23:82:55:00:bc:d8:ac:52:2f:b9:f4:1d:69: 61:69:79:8a:0a:77:6e:02:c6:35:7f:8e:d7:0b:5e: 41:06:94:40:1a:2c:67:1e:15:e1:26:f3:7e:15:c4: 5a:7a:be:9f:ea:70:45:51:00:37:9d:52:df:2d:0e: 15:fc:a2:bf:c5:65:b5:14:96:44:8c:9c:d8:bd:22: 8b:df:90:ee:0e:40:85:69:2b:91:6a:36:45:e4:04: ed:8f:2d:ec:67:1b:f9:89:ff:31:f9:90:1e:a6:d0: 54:31:12:fb:76:fe:a9:4c:f5:59:93:4e:d2:9f:81: a6:62:31:8d:12:d9:0f:82:98:b5:1e:30:c1:a4:76: 44:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:0F:C3:54:A6:B6:92:5A:C9:94:FB:A2:09:63:57:81:C4:B9:0D:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:5000::/40 Signature Algorithm: sha256WithRSAEncryption ce:a4:ae:d7:f4:ff:0d:ae:10:f2:a9:96:62:00:02:79:7e:93: db:76:15:52:3a:13:17:4a:be:73:a0:db:07:0b:d6:04:34:b2: 96:eb:17:12:b6:8f:cc:03:ab:5a:d8:a4:de:83:df:ce:b2:ab: a5:65:df:33:f5:c7:1e:8b:3c:e4:a5:ab:26:e4:8e:9e:5d:10: bb:92:d6:e7:09:8c:7e:57:c0:df:dd:47:e3:cb:f4:56:da:3e: 94:d1:07:04:0f:a2:13:66:22:25:e5:56:aa:8f:89:0e:40:eb: fc:f0:89:bf:40:ef:e9:72:2c:c6:e5:d0:37:1e:7f:cc:8b:5b: 20:a2:38:14:22:14:c2:2c:e0:82:73:32:c7:e8:9e:92:17:96: be:c2:20:28:1b:a4:8a:43:2c:93:5f:f2:c5:ef:36:b6:01:4b: d2:2c:70:c1:df:a5:02:d6:c7:fb:6f:bf:66:02:b8:56:9e:c1: c7:71:0c:06:38:77:2c:16:60:4c:12:a2:04:57:ec:9a:eb:31: 07:61:5e:4a:f5:43:74:ed:f6:fd:28:c4:a9:c7:f4:91:47:7c: a5:28:f9:7c:62:68:96:ea:88:c0:8c:8a:5b:5a:d3:e9:01:6d: c6:d9:95:68:82:43:1a:0d:ff:2e:db:77:7d:88:4f:d1:70:74: 52:5d:69:cf -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUakhhwoaUS+WTFPUgEeOy0+IiChowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2QzODEzOGIwNDRmYmIxZGQxZjJiMTZmNmFlNDZkYmU2 ODVlNDY2YmFmYjFhYzBhZDQ3NjljZGY5NTgzYjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJkVSo+jeXDD2W+d4Z55UIE8ObSrGeDXqct7SrdqvrahW6 jOiXKRmGLzALndP4FNHD9K2r//VzcTdbZJraXJfpuLe+hRAWhGP0fN1njbeuBZGb BzsPpCqyA8MYKHoaal6peptYmlr4061ALBpNlM3ZGxPbYFEqRxa1I4JVALzYrFIv ufQdaWFpeYoKd24CxjV/jtcLXkEGlEAaLGceFeEm834VxFp6vp/qcEVRADedUt8t DhX8or/FZbUUlkSMnNi9IovfkO4OQIVpK5FqNkXkBO2PLexnG/mJ/zH5kB6m0FQx Evt2/qlM9VmTTtKfgaZiMY0S2Q+CmLUeMMGkdkQbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUiQ/DVKa2klrJlPuiCWNXgcS5DYIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3YjliNjUyLWE2ZTAtNGQ1MC1iNGE4LWJmOWVhMjcyNDgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oUDANBgkqhkiG9w0BAQsFAAOCAQEAzqSu1/T/Da4Q8qmWYgACeX6T 23YVUjoTF0q+c6DbBwvWBDSylusXEraPzAOrWtik3oPfzrKrpWXfM/XHHos85KWr JuSOnl0Qu5LW5wmMflfA391H48v0Vto+lNEHBA+iE2YiJeVWqo+JDkDr/PCJv0Dv 6XIsxuXQNx5/zItbIKI4FCIUwizggnMyx+iekheWvsIgKBukikMsk1/yxe82tgFL 0ixwwd+lAtbH+2+/ZgK4Vp7Bx3EMBjh3LBZgTBKiBFfsmusxB2FeSvVDdO32/SjE qcf0kUd8pSj5fGJoluqIwIyKW1rT6QFtxtmVaIJDGg3/Ltt3fYhP0XB0Ul1pzw== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:16 2024 by rpki-client on console-ams.rpki-client.org