$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa File: 86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa (raw, json) Hash identifier: pkC3QBPjYfRREfkMjVt4/+RnPUG4y4bsQeYw9zIPheA= Subject key identifier: 18:C5:25:8B:74:7C:F4:5A:AF:ED:F8:C1:56:68:48:22:B6:5F:C3:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1401079C37A2794591F5B54E81B51E29D873953A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:01:07:9c:37:a2:79:45:91:f5:b5:4e:81:b5:1e:29:d8:73:95:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=ee90c189f82ca86b06d5fd018478db6a1c7d9a0aaafc63362f5b2776e933d15f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:eb:25:4f:d9:15:c7:bf:ca:4d:ce:b0:b1:f2: 7c:0c:a6:ab:a5:f6:50:b6:ff:75:5f:bf:64:2a:22: a3:04:2d:15:e3:6b:7f:d7:9c:43:f0:a9:62:55:8c: 59:a1:0d:06:cd:29:8b:83:97:1f:79:dc:97:5c:00: bf:7d:75:9f:fb:09:b9:8d:6c:3f:f5:a7:40:26:36: e1:1f:e4:ef:41:e3:a0:7a:ec:94:bf:ce:4d:af:b2: 21:7c:d9:f2:95:38:cd:76:0b:6b:35:31:df:48:5f: 4d:90:8d:8f:09:55:92:a6:6a:02:cb:6a:01:9d:ab: 32:2b:0e:9a:56:eb:f0:f8:8a:54:1d:5a:99:44:c4: 16:56:8a:42:4d:88:73:26:de:4e:8b:a2:ea:d4:36: 2e:a2:f9:2e:be:08:2b:fb:9d:b6:1d:41:17:5b:48: 14:47:a2:01:f8:21:4d:6e:69:d4:aa:d3:55:b7:cb: cc:cd:15:6d:43:7c:ec:e1:9b:a0:96:26:00:ad:0e: f8:76:7a:8d:eb:dd:21:1b:74:4c:a1:3e:47:90:6c: 28:55:91:86:48:e3:50:b1:a8:64:9a:c2:e2:73:16: 5c:87:d6:9f:54:13:3e:2e:8b:54:1a:a7:c2:d9:26: a4:7b:56:4c:02:ab:28:37:48:53:76:0e:7a:42:32: 13:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C5:25:8B:74:7C:F4:5A:AF:ED:F8:C1:56:68:48:22:B6:5F:C3:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:4000::/40 Signature Algorithm: sha256WithRSAEncryption 20:80:cb:96:ac:08:0f:c1:a2:f6:53:92:30:ce:5a:a0:4b:17: c5:da:e5:8e:19:76:aa:0e:81:b4:15:33:62:ff:80:89:2e:44: 95:55:ed:91:5a:5d:2c:4a:e2:38:46:93:7b:2f:08:6b:3b:42: 60:53:61:f8:f9:95:e3:2a:13:48:56:47:66:a1:f9:62:7d:0f: a2:ba:65:e5:9b:6e:67:e5:09:09:5b:ce:7f:12:ac:4f:61:d3: ad:d4:64:76:be:57:75:ab:8e:8a:71:14:9d:d9:2a:93:a3:36: 4e:04:a9:37:31:e5:17:15:9d:39:b5:da:bc:6a:13:60:8c:72: b9:a8:3c:96:20:57:95:ad:c1:6c:aa:92:ee:5b:8a:36:8c:ef: 9e:50:9b:74:bf:27:55:79:a7:3e:d4:0e:12:e5:9b:e7:f9:87: 4e:7a:c6:81:66:74:e0:e6:61:e5:f3:6a:6d:13:d3:62:98:ab: 87:81:50:9f:66:fc:0c:7d:49:7f:cd:d0:3d:5e:61:f7:fa:96: 28:7e:dd:22:8d:8f:b8:ce:30:99:ff:82:fd:54:d7:45:57:7b: 4c:1e:25:2d:83:ec:70:0d:1e:28:7a:e3:a5:14:62:c7:74:98: 04:0c:27:9f:d9:44:b5:35:e6:b6:e2:f3:36:c8:d8:92:36:36: f1:13:5f:ef -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFAEHnDeieUWR9bVOgbUeKdhzlTowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTkwYzE4OWY4MmNhODZiMDZkNWZkMDE4NDc4ZGI2YTFj N2Q5YTBhYWFmYzYzMzYyZjViMjc3NmU5MzNkMTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf6yVP2RXHv8pNzrCx8nwMpqul9lC2/3Vfv2QqIqMELRXj a3/XnEPwqWJVjFmhDQbNKYuDlx953JdcAL99dZ/7CbmNbD/1p0AmNuEf5O9B46B6 7JS/zk2vsiF82fKVOM12C2s1Md9IX02QjY8JVZKmagLLagGdqzIrDppW6/D4ilQd WplExBZWikJNiHMm3k6LourUNi6i+S6+CCv7nbYdQRdbSBRHogH4IU1uadSq01W3 y8zNFW1DfOzhm6CWJgCtDvh2eo3r3SEbdEyhPkeQbChVkYZI41CxqGSawuJzFlyH 1p9UEz4ui1Qap8LZJqR7VkwCqyg3SFN2DnpCMhNdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGMUli3R89Fqv7fjBVmhIIrZfwzEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2YzE1Y2M0LTE1ZGUtNGZjNC04MGZkLWE5N2FjZTVjN2U1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gQDANBgkqhkiG9w0BAQsFAAOCAQEAIIDLlqwID8Gi9lOSMM5aoEsX xdrljhl2qg6BtBUzYv+AiS5ElVXtkVpdLEriOEaTey8IaztCYFNh+PmV4yoTSFZH ZqH5Yn0Porpl5ZtuZ+UJCVvOfxKsT2HTrdRkdr5XdauOinEUndkqk6M2TgSpNzHl FxWdObXavGoTYIxyuag8liBXla3BbKqS7luKNozvnlCbdL8nVXmnPtQOEuWb5/mH TnrGgWZ04OZh5fNqbRPTYpirh4FQn2b8DH1Jf83QPV5h9/qWKH7dIo2PuM4wmf+C /VTXRVd7TB4lLYPscA0eKHrjpRRix3SYBAwnn9lEtTXmtuLzNsjYkjY28RNf7w== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:03 2024 by rpki-client on console-ams.rpki-client.org