$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa File: 974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa (raw, json) Hash identifier: PcWDvJl1/Is+A+cNuzeQBG/BXhXM+Lo19lFCR+HFvSw= Subject key identifier: A6:1A:FA:46:EA:20:6D:CD:9E:43:A0:FC:B6:EE:69:01:AA:7E:D6:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C59B1C01148DC9E746EC337A326BBC16DA0F900 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f21::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:59:b1:c0:11:48:dc:9e:74:6e:c3:37:a3:26:bb:c1:6d:a0:f9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=3d528298c5971a2f658cfafa4f58d63cde5864036c5c284ee50923717bd870b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:3b:2e:0b:d0:44:b0:d0:ed:26:09:81:48: 2a:ba:97:f3:2a:32:b8:6f:7b:00:c1:e0:99:c4:82: 0e:1a:12:e1:41:89:d6:94:b2:10:59:7d:cd:ab:ff: aa:18:c9:98:40:ce:84:cc:a5:8d:a0:46:21:96:2c: bf:54:03:42:54:f0:b5:35:16:bd:4c:07:cc:f0:64: fc:78:80:54:5a:00:75:c6:12:74:06:19:d4:cf:9e: dd:b5:fe:81:41:d8:49:0f:cf:91:b4:d1:aa:38:01: 94:f7:d4:3f:06:a8:29:c6:a6:a2:31:08:2e:fd:9b: 70:45:79:76:1c:63:78:8d:a4:92:65:b2:8c:75:9f: 5c:f8:4f:84:cc:f2:46:94:d9:ba:b7:3b:f7:a6:93: 9c:63:a7:d8:88:fa:ce:a0:31:71:b3:57:41:ac:fa: cc:82:7d:e2:cb:de:1e:cb:4a:84:d9:ac:16:fb:b6: 3a:a4:3c:73:0e:8d:f6:34:0e:28:ff:53:2d:9a:c6: 85:57:1b:d0:5a:f0:46:94:58:d5:10:14:45:4d:f4: d4:b0:7d:ad:a9:42:4c:7f:47:6f:2b:df:59:f7:27: 30:9f:d2:9f:ab:cd:c1:0d:04:c6:d5:ba:49:7b:16: 1b:40:db:10:d5:bc:78:12:37:d0:2c:02:8c:42:4a: fc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1A:FA:46:EA:20:6D:CD:9E:43:A0:FC:B6:EE:69:01:AA:7E:D6:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f21::/36 Signature Algorithm: sha256WithRSAEncryption 15:2a:b9:66:98:8a:f8:4f:01:ab:1c:15:38:07:a3:c2:00:5f: e2:30:15:d9:99:9f:eb:9d:dd:9c:ee:bb:8d:87:84:af:39:51: 78:57:95:a4:31:26:c4:53:61:3d:6d:d1:f0:f0:d3:39:cc:73: fc:03:87:b7:11:8d:b5:dc:7d:32:35:2f:d1:d1:a0:1a:df:f9: 48:c9:2a:79:17:55:a3:82:47:d4:47:73:a1:b5:9a:ca:f8:78: 31:6f:2b:79:ba:12:73:17:62:c8:ef:34:4e:8d:cb:39:53:c6: fd:08:1d:97:3c:66:12:f0:d7:f1:62:fa:c4:8d:b2:88:d9:1b: bb:60:3a:9e:f7:e7:a8:8b:54:96:96:18:6c:fb:66:40:33:c0: 9e:48:b0:a3:99:a5:a7:0e:32:1e:9c:2b:80:8f:a6:42:29:f0: 4f:4b:2c:85:3c:22:b3:84:3c:e1:fd:cc:cd:cf:7b:91:a4:bf: be:cd:bd:bd:91:04:91:04:66:2f:4c:48:f1:9f:b5:99:6c:11: bb:bd:72:cb:85:98:55:f3:61:6b:a3:3b:66:b1:86:01:29:eb: 7b:49:85:f5:02:d1:ae:d8:ea:83:6f:10:ad:3b:9b:25:dd:a9: 12:e2:ca:4f:9b:be:10:df:d4:67:63:d5:35:ed:f6:60:6a:df: a7:60:40:1b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULFmxwBFI3J50bsM3oya7wW2g+QAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDUyODI5OGM1OTcxYTJmNjU4Y2ZhZmE0ZjU4ZDYzY2Rl NTg2NDAzNmM1YzI4NGVlNTA5MjM3MTdiZDg3MGI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIYDsuC9BEsNDtJgmBSCq6l/MqMrhvewDB4JnEgg4aEuFB idaUshBZfc2r/6oYyZhAzoTMpY2gRiGWLL9UA0JU8LU1Fr1MB8zwZPx4gFRaAHXG EnQGGdTPnt21/oFB2EkPz5G00ao4AZT31D8GqCnGpqIxCC79m3BFeXYcY3iNpJJl sox1n1z4T4TM8kaU2bq3O/emk5xjp9iI+s6gMXGzV0Gs+syCfeLL3h7LSoTZrBb7 tjqkPHMOjfY0Dij/Uy2axoVXG9Ba8EaUWNUQFEVN9NSwfa2pQkx/R28r31n3JzCf 0p+rzcENBMbVukl7FhtA2xDVvHgSN9AsAoxCSvwfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUphr6Ruogbc2eQ6D8tu5pAap+1gUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3NGU2ZGZjLTYxYmYtNGYwNS1iMjZhLWM0ZWJjYzg3NWNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8hADANBgkqhkiG9w0BAQsFAAOCAQEAFSq5ZpiK+E8BqxwVOAejwgBf 4jAV2Zmf653dnO67jYeErzlReFeVpDEmxFNhPW3R8PDTOcxz/AOHtxGNtdx9MjUv 0dGgGt/5SMkqeRdVo4JH1EdzobWayvh4MW8reboScxdiyO80To3LOVPG/Qgdlzxm EvDX8WL6xI2yiNkbu2A6nvfnqItUlpYYbPtmQDPAnkiwo5mlpw4yHpwrgI+mQinw T0sshTwis4Q84f3Mzc97kaS/vs29vZEEkQRmL0xI8Z+1mWwRu71yy4WYVfNha6M7 ZrGGASnre0mF9QLRrtjqg28QrTubJd2pEuLKT5u+EN/UZ2PVNe32YGrfp2BAGw== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:25 2024 by rpki-client on console-fra.rpki-client.org