$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/820a277b-3813-4dd0-abe9-cc361242111b.roa File: 820a277b-3813-4dd0-abe9-cc361242111b.roa (raw, json) Hash identifier: 4YA5ez2ohD6AxtG9PvNesqMf09mpnoPiNZRr70/iF38= Subject key identifier: BC:36:3E:B0:36:B1:03:FB:E7:AC:E8:99:11:37:15:F7:14:2F:A4:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ABFF6AE331C9AB03E9FA0FE7BDCB0C7B9265DB8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/820a277b-3813-4dd0-abe9-cc361242111b.roa Signing time: Tue 30 Apr 2024 00:00:00 +0000 ROA not before: Tue 30 Apr 2024 00:00:00 +0000 ROA not after: Tue 04 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:bf:f6:ae:33:1c:9a:b0:3e:9f:a0:fe:7b:dc:b0:c7:b9:26:5d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:00:00 2024 GMT Not After : Jun 4 23:59:59 2024 GMT Subject: serialNumber=d591c33fa6d9c1c725cf62fa3d7fa21c2e453d24f06a645820811d6132016c37, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f3:0b:ce:6e:18:5a:67:54:a2:4a:41:8e:5d: e7:d3:f2:e6:41:1c:66:bd:ee:ea:7f:99:25:71:6d: fa:30:a4:ee:c3:75:46:cd:c5:e1:94:6d:f5:bb:ca: fd:5d:c6:16:e2:d6:ae:22:46:28:3a:e0:36:64:69: 2a:46:21:1d:47:62:3b:d6:8b:0e:84:e3:49:bc:52: b3:fe:5e:c8:72:67:df:a1:d4:83:84:43:34:6b:80: 58:89:8a:60:e8:d4:a2:04:5d:6a:16:2d:50:d5:cb: 3c:d8:e9:24:3f:6e:51:b4:fb:27:06:3e:95:e5:a8: c2:64:e1:7f:44:91:51:f4:d7:f7:4b:23:a5:63:7c: 52:1a:e8:75:f7:bb:50:75:6e:e8:df:0f:a0:5c:aa: 39:ea:61:3c:c5:df:4a:b7:61:94:17:98:5f:73:ca: 61:7f:6a:3c:62:db:e6:f0:53:16:3b:1f:b6:9b:cb: 12:1a:55:5c:3e:6f:92:b3:35:04:17:83:c2:14:fb: b2:10:86:ea:d2:4d:08:23:fb:b7:da:8f:d5:d3:e8: 31:4f:c1:3c:56:04:4e:07:55:bf:87:5e:e0:9a:9b: fb:87:36:15:0f:55:b8:11:db:4a:74:bc:56:fb:ae: 4f:d4:fc:7c:e8:56:7f:fa:d5:90:7f:49:67:bb:00: 1c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:36:3E:B0:36:B1:03:FB:E7:AC:E8:99:11:37:15:F7:14:2F:A4:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/820a277b-3813-4dd0-abe9-cc361242111b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c000::/36 Signature Algorithm: sha256WithRSAEncryption 49:eb:09:67:bc:58:74:f4:ef:54:e5:eb:bc:c9:6b:8a:ef:3b: b7:6c:03:ca:67:76:30:8c:6c:ae:76:dd:62:aa:7e:85:8d:4d: 7b:22:92:a0:e0:7f:29:1e:56:13:19:d3:d8:56:2e:2d:23:97: 69:98:e6:f1:de:58:2f:63:ce:bc:6d:4d:9e:53:20:12:1e:68: a5:e9:59:a0:3c:dc:75:78:87:ad:76:d2:84:84:7c:d9:5b:aa: ed:a1:d6:d1:60:72:be:86:c6:95:05:84:ef:96:44:6b:cc:ce: f9:90:1f:cb:30:02:60:38:c2:92:59:60:76:df:5b:31:55:26: 57:17:01:5a:4b:d4:74:78:47:fb:ae:22:79:62:a0:5c:4c:c4: d6:c5:a9:da:7b:ac:d8:46:26:ee:e1:30:5c:e5:b0:06:05:9f: 4f:32:02:f2:d1:0b:b3:af:39:c3:c3:0d:8b:a9:cb:eb:45:5a: 47:8f:0d:31:6d:0d:a7:14:f8:00:01:11:c6:55:95:df:4d:ac: 8c:cf:a5:d5:b9:a4:5c:49:21:89:02:a8:80:0c:14:37:8b:9c: 52:94:5f:a5:87:9f:f3:60:ed:c2:9f:d4:19:4b:75:f9:7e:82: d9:d0:56:5a:b1:20:bd:5a:10:8c:55:40:f4:9e:b0:ed:c5:3d: 02:47:6f:0b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUar/2rjMcmrA+n6D+e9ywx7kmXbgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDMwMDAwMDAwWhcNMjQwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTkxYzMzZmE2ZDljMWM3MjVjZjYyZmEzZDdmYTIxYzJl NDUzZDI0ZjA2YTY0NTgyMDgxMWQ2MTMyMDE2YzM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm8wvObhhaZ1SiSkGOXefT8uZBHGa97up/mSVxbfowpO7D dUbNxeGUbfW7yv1dxhbi1q4iRig64DZkaSpGIR1HYjvWiw6E40m8UrP+XshyZ9+h 1IOEQzRrgFiJimDo1KIEXWoWLVDVyzzY6SQ/blG0+ycGPpXlqMJk4X9EkVH01/dL I6VjfFIa6HX3u1B1bujfD6BcqjnqYTzF30q3YZQXmF9zymF/ajxi2+bwUxY7H7ab yxIaVVw+b5KzNQQXg8IU+7IQhurSTQgj+7faj9XT6DFPwTxWBE4HVb+HXuCam/uH NhUPVbgR20p0vFb7rk/U/HzoVn/61ZB/SWe7ABxPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvDY+sDaxA/vnrOiZETcV9xQvpDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyMGEyNzdiLTM4MTMtNGRkMC1hYmU5LWNjMzYxMjQyMTExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8QwDANBgkqhkiG9w0BAQsFAAOCAQEASesJZ7xYdPTvVOXrvMlriu87 t2wDymd2MIxsrnbdYqp+hY1NeyKSoOB/KR5WExnT2FYuLSOXaZjm8d5YL2POvG1N nlMgEh5opelZoDzcdXiHrXbShIR82Vuq7aHW0WByvobGlQWE75ZEa8zO+ZAfyzAC YDjCkllgdt9bMVUmVxcBWkvUdHhH+64ieWKgXEzE1sWp2nus2EYm7uEwXOWwBgWf TzIC8tELs685w8MNi6nL60VaR48NMW0NpxT4AAERxlWV302sjM+l1bmkXEkhiQKo gAwUN4ucUpRfpYef82Dtwp/UGUt1+X6C2dBWWrEgvVoQjFVA9J6w7cU9AkdvCw== -----END CERTIFICATE-----Generated at Thu May 2 17:41:12 2024 by rpki-client on console-fra.rpki-client.org