$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/695f9294-36de-4a6b-bb70-b1d67c35944e.roa File: 695f9294-36de-4a6b-bb70-b1d67c35944e.roa (raw, json) Hash identifier: jR+OdHypSeeZbRhbbDykWPyudEeFEh6XrJwSLWVfPRI= Subject key identifier: D6:FC:CA:00:E4:AB:8B:F0:2B:B6:8F:19:44:A1:EC:54:50:A3:E0:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7556A9D9F5F2573578B41AA645B9C3AE15F4E54B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/695f9294-36de-4a6b-bb70-b1d67c35944e.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:56:a9:d9:f5:f2:57:35:78:b4:1a:a6:45:b9:c3:ae:15:f4:e5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6b9aeddc1ca12c8c29d20763b218abd705f8c3a35f7f1ac1514c7d56c7d0fb94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9d:1f:09:e3:f0:ad:08:2d:a1:9f:f1:a1:f0: d4:4f:b9:79:33:91:6c:64:12:e1:12:2e:18:70:a3: 96:f3:46:96:46:0a:aa:88:9f:15:50:42:fc:dd:09: b9:1c:5b:8b:62:c9:a3:6c:eb:44:68:e7:29:ff:c4: 7f:6d:f5:fa:f1:80:8a:53:4a:42:d7:b9:c4:d2:d9: f6:5b:bb:75:72:ad:53:84:a8:5b:6a:e3:48:89:c0: cd:c6:40:1c:77:06:de:69:cf:8c:37:2d:bc:34:c0: 4e:b7:f8:17:09:4f:3f:ff:d0:19:f7:62:4b:ac:55: f4:3d:59:4d:bc:95:cd:81:df:7b:00:7e:83:cc:7e: 5c:40:bb:a7:49:f6:29:ad:48:f3:b1:55:61:08:1f: bc:8b:f0:19:31:ca:7b:f2:47:38:db:08:44:b7:90: aa:b7:bd:60:55:15:4d:71:af:80:5d:1c:31:a8:21: c6:6d:ce:76:e0:b8:1a:13:81:10:11:9a:23:ab:a8: 73:2d:7a:d1:3d:b0:f3:f8:c8:bf:f4:68:4a:68:09: 9d:08:e2:ea:b1:f1:d7:c0:61:cf:8a:bc:24:75:18: 24:42:1d:71:1b:6c:4d:09:50:e5:69:f1:63:26:8b: 9a:99:21:d2:23:bf:b0:2a:0b:e9:df:2b:43:69:21: 7c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FC:CA:00:E4:AB:8B:F0:2B:B6:8F:19:44:A1:EC:54:50:A3:E0:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/695f9294-36de-4a6b-bb70-b1d67c35944e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/36 Signature Algorithm: sha256WithRSAEncryption 67:b5:45:1f:f2:a9:63:36:94:71:06:92:4b:3a:4a:8b:52:e3: fc:3c:f0:89:25:64:1b:f3:4d:38:01:27:8f:2a:36:d6:96:75: ba:d6:2e:d8:79:cc:b7:20:43:e9:ab:3b:e5:3a:0a:e6:54:ff: 3a:9e:d3:74:ea:83:4d:ae:f8:0f:c3:f6:b9:10:21:f5:98:a9: a7:07:fb:9c:f5:09:21:3a:c6:db:4c:08:93:c8:35:bd:a4:ed: 3e:f6:27:cc:e5:3b:a3:3d:5e:c4:c1:f0:be:6c:e6:b7:b4:d7: a6:db:4f:b6:5b:d5:97:c6:31:d4:6b:06:ec:53:ad:75:19:cd: b2:3a:88:63:1c:6d:b0:19:2a:4a:2d:b6:25:98:4a:95:3d:01: 98:a2:48:45:1a:7a:d4:49:a8:15:56:c9:94:6c:a0:d1:f1:4d: ac:ef:94:2e:06:b5:b5:06:59:17:97:bb:2b:40:00:69:47:02: 5c:eb:86:fc:b3:de:4b:d2:46:fd:c4:43:b1:7e:00:d8:82:77: f5:01:09:b2:ca:99:7d:a5:10:1e:f7:7e:7b:9b:a6:4b:1f:e3: 65:23:43:85:c0:4e:25:b6:32:3c:e1:f2:30:59:32:df:7e:10: 38:43:86:a9:88:e2:80:73:7e:d0:2f:18:4f:ef:a2:56:bc:cd: c0:f7:a8:2b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdVap2fXyVzV4tBqmRbnDrhX05UswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjlhZWRkYzFjYTEyYzhjMjlkMjA3NjNiMjE4YWJkNzA1 ZjhjM2EzNWY3ZjFhYzE1MTRjN2Q1NmM3ZDBmYjk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjnR8J4/CtCC2hn/Gh8NRPuXkzkWxkEuESLhhwo5bzRpZG CqqInxVQQvzdCbkcW4tiyaNs60Ro5yn/xH9t9frxgIpTSkLXucTS2fZbu3VyrVOE qFtq40iJwM3GQBx3Bt5pz4w3Lbw0wE63+BcJTz//0Bn3YkusVfQ9WU28lc2B33sA foPMflxAu6dJ9imtSPOxVWEIH7yL8BkxynvyRzjbCES3kKq3vWBVFU1xr4BdHDGo IcZtznbguBoTgRARmiOrqHMtetE9sPP4yL/0aEpoCZ0I4uqx8dfAYc+KvCR1GCRC HXEbbE0JUOVp8WMmi5qZIdIjv7AqC+nfK0NpIXz3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1vzKAOSri/Arto8ZRKHsVFCj4NIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NWY5Mjk0LTM2ZGUtNGE2Yi1iYjcwLWIxZDY3YzM1OTQ0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEAZ7VFH/KpYzaUcQaSSzpKi1Lj /DzwiSVkG/NNOAEnjyo21pZ1utYu2HnMtyBD6as75ToK5lT/Op7TdOqDTa74D8P2 uRAh9Zippwf7nPUJITrG20wIk8g1vaTtPvYnzOU7oz1exMHwvmzmt7TXpttPtlvV l8Yx1GsG7FOtdRnNsjqIYxxtsBkqSi22JZhKlT0BmKJIRRp61EmoFVbJlGyg0fFN rO+ULga1tQZZF5e7K0AAaUcCXOuG/LPeS9JG/cRDsX4A2IJ39QEJssqZfaUQHvd+ e5umSx/jZSNDhcBOJbYyPOHyMFky334QOEOGqYjigHN+0C8YT++iVrzNwPeoKw== -----END CERTIFICATE-----Generated at Thu May 2 20:48:39 2024 by rpki-client on console-fra.rpki-client.org