$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa File: 7b2a143a-b610-47d7-9e1e-06b87afef19a.roa (raw, json) Hash identifier: g9C7czgDLa6/7vV+8FIHXwnEviG4PV2Q3Hgm8m4SZEE= Subject key identifier: C9:1B:1F:6F:96:5A:0F:95:E1:2E:43:5C:9A:33:0B:1B:78:DA:A0:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 186273A0168A751E623FA06803A94A2C8B91BFE9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:62:73:a0:16:8a:75:1e:62:3f:a0:68:03:a9:4a:2c:8b:91:bf:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=283c822324b81a24fdafc292a73c8a2dd749533446a0cf958fbe2a89c87578df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:05:81:ef:2c:ba:03:98:29:88:dd:a4:f8: c7:98:37:8c:ed:05:ec:cb:37:7f:4c:a7:98:d4:8c: ac:b2:67:c8:20:c0:a0:bc:43:70:31:4d:0a:4d:c2: 38:56:07:88:b8:99:bf:ca:d7:18:03:41:ae:a7:a5: fd:1a:1d:0a:5d:43:2f:35:7b:11:06:76:e4:da:2a: e3:ce:04:7c:fc:2e:f1:0a:47:8e:21:bd:08:74:c9: f4:1f:ad:31:06:4e:c1:43:83:9d:4e:ec:ac:b2:2a: 8a:44:46:3e:d5:7f:c3:4a:a3:f6:41:fc:fc:bb:03: 3e:3e:cb:68:71:c6:9a:fa:f9:57:f1:d2:53:d9:91: 70:24:f0:1a:b2:c4:81:cc:d9:d2:b0:ab:c9:41:a1: b0:a6:02:45:46:41:f1:34:3e:54:b1:c6:b3:1a:50: a2:f7:fa:b3:7e:e5:db:2f:78:42:0f:f6:29:f0:4b: d6:e8:e9:49:7d:9b:7f:29:6a:3c:2a:93:c9:de:bd: 77:6b:11:de:41:05:c1:3f:2e:aa:56:a1:72:ba:10: ca:5e:f0:30:a8:ec:61:55:0a:71:0a:c3:8a:a5:a7: 3b:25:42:65:4d:48:78:d7:57:d5:00:fb:07:91:ea: 37:f6:cb:69:1d:e4:db:53:b9:02:86:27:05:ab:6b: 5e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1B:1F:6F:96:5A:0F:95:E1:2E:43:5C:9A:33:0B:1B:78:DA:A0:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/39 Signature Algorithm: sha256WithRSAEncryption 1d:91:37:d0:79:6a:a2:1b:3b:7f:0e:17:59:ee:fa:22:87:70: 0c:fe:ad:2d:4c:4d:96:7f:03:e8:62:a4:3f:90:4e:3b:2a:42: c9:b1:ae:09:d6:b3:8a:f0:77:17:6e:1c:00:2c:ac:67:b8:1f: 86:d8:bd:a0:a9:6b:65:a3:ef:33:07:da:a2:58:8f:8b:88:c5: e6:e5:9d:81:b5:78:e7:3f:72:49:9b:7d:96:81:3c:29:d4:64: ad:59:6a:bd:e2:31:ea:2e:1c:a8:00:2e:f5:c8:ec:0d:3e:e9: b3:4b:49:6b:b8:1a:a5:dd:6d:8d:f0:65:1e:25:fc:8a:72:5d: 1c:2f:87:08:be:7b:39:df:4d:bb:9c:b0:d7:98:d9:e9:9c:ed: 49:28:4a:fc:28:f9:24:3f:46:4a:66:09:84:1e:34:38:0a:26: 08:d4:c4:1c:ef:87:90:90:1e:b6:3a:44:f9:48:4a:1b:b3:c9: 03:ef:8b:d7:fb:63:d5:6e:11:7f:9f:33:ef:ba:90:2d:8a:d1: 75:6c:e6:29:a4:d5:15:bc:0f:50:49:a8:65:7b:ef:eb:ef:2d: 74:92:b7:a2:6b:70:6c:a1:8a:e1:39:99:71:47:b4:b5:71:9b: cf:b7:da:53:1f:0b:c7:ad:53:fa:1a:5b:47:bf:81:4c:c6:bf: f7:f7:88:f2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGGJzoBaKdR5iP6BoA6lKLIuRv+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODNjODIyMzI0YjgxYTI0ZmRhZmMyOTJhNzNjOGEyZGQ3 NDk1MzM0NDZhMGNmOTU4ZmJlMmE4OWM4NzU3OGRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1OQWB7yy6A5gpiN2k+MeYN4ztBezLN39Mp5jUjKyyZ8gg wKC8Q3AxTQpNwjhWB4i4mb/K1xgDQa6npf0aHQpdQy81exEGduTaKuPOBHz8LvEK R44hvQh0yfQfrTEGTsFDg51O7KyyKopERj7Vf8NKo/ZB/Py7Az4+y2hxxpr6+Vfx 0lPZkXAk8BqyxIHM2dKwq8lBobCmAkVGQfE0PlSxxrMaUKL3+rN+5dsveEIP9inw S9bo6Ul9m38pajwqk8nevXdrEd5BBcE/LqpWoXK6EMpe8DCo7GFVCnEKw4qlpzsl QmVNSHjXV9UA+weR6jf2y2kd5NtTuQKGJwWra16BAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUyRsfb5ZaD5XhLkNcmjMLG3jaoPAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiMmExNDNhLWI2MTAtNDdkNy05ZTFlLTA2Yjg3YWZlZjE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAHZE30Hlqohs7fw4XWe76Iodw DP6tLUxNln8D6GKkP5BOOypCybGuCdazivB3F24cACysZ7gfhti9oKlrZaPvMwfa oliPi4jF5uWdgbV45z9ySZt9loE8KdRkrVlqveIx6i4cqAAu9cjsDT7ps0tJa7ga pd1tjfBlHiX8inJdHC+HCL57Od9Nu5yw15jZ6ZztSShK/Cj5JD9GSmYJhB40OAom CNTEHO+HkJAetjpE+UhKG7PJA++L1/tj1W4Rf58z77qQLYrRdWzmKaTVFbwPUEmo ZXvv6+8tdJK3omtwbKGK4TmZcUe0tXGbz7faUx8Lx61T+hpbR7+BTMa/9/eI8g== -----END CERTIFICATE-----Generated at Thu May 2 12:23:08 2024 by rpki-client on console-ams.rpki-client.org