$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87ee8abc-17e1-4b71-9f08-e0c3a3145ffd.roa File: 87ee8abc-17e1-4b71-9f08-e0c3a3145ffd.roa (raw, json) Hash identifier: XnlZX4ihxLFiKuJ9LwZdq+TX9xcQ67UclGIc4EifIhY= Subject key identifier: D7:2F:10:35:3E:86:E2:2B:ED:19:10:0E:C6:5C:2D:99:40:3B:05:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78343FED3B23F0028C57D71E20020E5E5FEE5D3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87ee8abc-17e1-4b71-9f08-e0c3a3145ffd.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffc:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:34:3f:ed:3b:23:f0:02:8c:57:d7:1e:20:02:0e:5e:5f:ee:5d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=fabd172d8168fe18214958cb0e80e9139bf037e9f8d5d5bfa6eadcf66c623fca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:82:e3:68:f5:6b:9f:d4:56:f5:f5:f4:db:7e: 30:13:4f:69:4c:d4:fb:89:77:81:39:1b:fe:0b:ca: a2:be:a7:65:80:2b:c8:bf:68:f9:e7:b1:ac:bf:13: 2e:74:f4:d4:e7:17:f5:37:02:a6:df:2e:66:2d:c1: 26:dd:3a:43:30:65:d8:d9:33:40:55:fb:df:50:c0: bd:69:e4:bf:20:c6:68:1f:23:45:93:8e:47:15:b8: 87:05:68:6a:9a:a4:0d:f7:12:0b:96:26:db:00:32: 88:65:76:e3:84:ae:92:8e:e7:b3:15:29:96:db:f4: 34:58:e1:a0:18:00:75:e6:b1:a8:ab:bc:40:b0:e2: 81:ec:e2:a3:55:74:d8:b1:ab:01:31:76:72:84:df: 6a:bb:50:25:90:e2:cf:fa:73:2d:77:63:57:55:35: 2b:55:e6:dd:c0:04:9f:59:aa:e7:46:2e:b4:69:86: 3d:7a:14:41:04:b5:9c:b0:69:4b:46:ad:84:89:61: f5:0a:c9:fe:4b:bb:df:7e:86:4b:d1:17:d9:a9:8f: c5:09:3b:b0:54:28:6a:46:9b:0e:89:d1:52:e8:41: 2a:9d:2a:3c:e8:22:ac:69:70:da:d5:f6:8b:e3:3e: 7f:e0:58:24:bb:6d:1f:9e:1f:72:b2:43:cc:c0:ae: 76:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2F:10:35:3E:86:E2:2B:ED:19:10:0E:C6:5C:2D:99:40:3B:05:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87ee8abc-17e1-4b71-9f08-e0c3a3145ffd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffc:3400::/40 Signature Algorithm: sha256WithRSAEncryption 20:a4:9e:bf:c0:21:4d:09:cd:99:e2:8a:6a:9a:59:61:c5:c3: 1e:42:c0:bd:96:a6:f3:5c:8a:38:2c:fa:8e:65:ce:58:4c:ee: 89:a0:e2:32:a2:48:fa:bb:9f:66:56:a4:85:ad:f0:ee:8c:7f: 61:c2:70:4f:c8:87:c0:a7:16:c0:ad:8d:b2:d0:5d:c9:3a:4c: 44:2a:a6:53:98:76:66:d5:03:23:0c:1a:6e:63:1d:be:80:df: 4f:b5:88:d2:34:b6:37:78:44:21:aa:67:5d:25:01:40:b9:8a: 0b:8e:88:2f:37:9c:e0:81:e8:c8:54:8c:1e:5a:03:cb:25:4e: 49:3b:3d:f9:d0:05:23:f4:74:68:60:cf:38:34:a0:ba:76:98: 9f:47:38:1f:df:af:26:5a:07:75:53:27:dc:94:07:50:73:98: 0e:10:a6:67:f3:ba:1f:0b:6e:dd:4b:5d:e4:08:89:bc:17:c2: 04:47:23:fe:96:d9:e8:6f:25:83:c4:43:10:5e:c5:79:b4:d8: f1:59:4f:45:a3:d7:25:9f:83:9e:09:3a:cc:95:0c:30:8a:55: ee:bb:b9:13:de:64:13:ef:0c:4a:15:8f:2c:12:2b:98:93:e9: 83:04:0a:1a:71:09:46:ca:28:78:fb:1b:7e:b5:61:18:44:9e: 0b:cb:59:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeDQ/7Tsj8AKMV9ceIAIOXl/uXT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWJkMTcyZDgxNjhmZTE4MjE0OTU4Y2IwZTgwZTkxMzli ZjAzN2U5ZjhkNWQ1YmZhNmVhZGNmNjZjNjIzZmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpguNo9Wuf1Fb19fTbfjATT2lM1PuJd4E5G/4LyqK+p2WA K8i/aPnnsay/Ey509NTnF/U3AqbfLmYtwSbdOkMwZdjZM0BV+99QwL1p5L8gxmgf I0WTjkcVuIcFaGqapA33EguWJtsAMohlduOErpKO57MVKZbb9DRY4aAYAHXmsair vECw4oHs4qNVdNixqwExdnKE32q7UCWQ4s/6cy13Y1dVNStV5t3ABJ9ZqudGLrRp hj16FEEEtZywaUtGrYSJYfUKyf5Lu99+hkvRF9mpj8UJO7BUKGpGmw6J0VLoQSqd KjzoIqxpcNrV9ovjPn/gWCS7bR+eH3KyQ8zArnYnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1y8QNT6G4ivtGRAOxlwtmUA7BSIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3ZWU4YWJjLTE3ZTEtNGI3MS05ZjA4LWUwYzNhMzE0NWZmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/8NDANBgkqhkiG9w0BAQsFAAOCAQEAIKSev8AhTQnNmeKKappZYcXD HkLAvZam81yKOCz6jmXOWEzuiaDiMqJI+rufZlakha3w7ox/YcJwT8iHwKcWwK2N stBdyTpMRCqmU5h2ZtUDIwwabmMdvoDfT7WI0jS2N3hEIapnXSUBQLmKC46ILzec 4IHoyFSMHloDyyVOSTs9+dAFI/R0aGDPODSgunaYn0c4H9+vJloHdVMn3JQHUHOY DhCmZ/O6Hwtu3Utd5AiJvBfCBEcj/pbZ6G8lg8RDEF7FebTY8VlPRaPXJZ+Dngk6 zJUMMIpV7ru5E95kE+8MShWPLBIrmJPpgwQKGnEJRsooePsbfrVhGESeC8tZ5g== -----END CERTIFICATE-----Generated at Thu May 2 17:17:13 2024 by rpki-client on console-ams.rpki-client.org