$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9971109a-e18f-4075-acd9-c1e07b482511.roa File: 9971109a-e18f-4075-acd9-c1e07b482511.roa (raw, json) Hash identifier: IDdJkHkbo0NIg4bOJXMNmNBH7k0lHpG2NTSKmrts7BM= Subject key identifier: AC:CB:8E:BE:4C:DF:B9:B7:05:2A:BC:68:3D:F5:43:77:FB:A2:83:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E4B5987A90EEB53B4D0200A6F2F72EADD8FEF15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9971109a-e18f-4075-acd9-c1e07b482511.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:4b:59:87:a9:0e:eb:53:b4:d0:20:0a:6f:2f:72:ea:dd:8f:ef:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=6d1074dfed0bf12f5444e299810ee48acc663a4b8d3c1fc51479752dd55d81e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9d:a5:55:36:8e:c0:45:a2:6a:4a:a5:59:cc: 6b:19:8d:f2:26:aa:e4:6e:cd:38:5e:32:67:1c:10: d0:d1:8b:98:90:f0:9b:05:6e:d9:30:2c:7c:4e:69: 2b:1e:fe:23:49:6d:51:82:84:24:3d:45:80:5b:05: 38:8c:ae:51:ee:37:22:f4:b1:82:ba:d5:c8:62:1d: 83:bc:8d:db:c4:15:51:9e:ea:2a:08:45:fe:49:bb: f0:5f:5d:c7:02:59:c5:d4:0b:ec:43:17:98:0f:5b: 61:88:56:3c:46:a2:27:5d:59:c3:24:cb:f2:1d:13: be:a7:86:e9:0b:3e:2d:32:c8:b4:5f:79:c9:78:ed: 47:e7:72:bf:71:a4:96:d7:a7:27:5e:ac:f1:f0:0e: ca:3d:b1:20:aa:be:4c:ca:b9:76:5c:17:8d:a3:85: 50:d2:fa:87:b2:76:59:a9:24:bd:c2:d8:58:7c:4f: 2c:7f:06:30:0f:e9:3e:03:05:5d:60:22:92:24:04: 1f:3d:9b:25:2b:9e:89:5c:b7:4f:70:c0:d6:4e:db: 15:42:6c:d7:94:f0:8d:d1:67:53:82:5e:a1:2a:75: 6c:32:71:31:39:94:b8:70:1b:1c:22:7b:8e:14:25: 96:a4:50:58:39:23:76:db:cb:a8:70:9b:6c:b9:04: 4f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CB:8E:BE:4C:DF:B9:B7:05:2A:BC:68:3D:F5:43:77:FB:A2:83:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9971109a-e18f-4075-acd9-c1e07b482511.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:4000::/40 Signature Algorithm: sha256WithRSAEncryption 49:59:bf:bb:79:dd:14:4c:ec:fe:e0:17:65:a1:49:bc:c9:9b: d1:1c:94:46:52:ba:a2:9d:e3:46:5b:fc:7a:0a:69:31:fd:01: bf:e1:b5:07:28:45:08:27:3b:7e:45:64:29:97:50:c8:ec:05: c5:6d:35:1a:e4:4e:f8:79:f2:0a:94:55:fe:9c:bd:9f:9a:ac: 85:49:6c:4d:76:c1:99:e7:3c:84:16:01:32:4a:b1:65:76:61: ce:02:51:db:68:37:22:36:bc:27:32:7a:88:6c:0c:41:5e:31: af:6c:a9:72:68:e1:19:50:ec:eb:ef:9e:dc:76:c6:cd:07:75: 8a:00:cb:61:1d:e6:f9:f2:1b:0d:bf:aa:46:7c:23:3e:a1:69: 05:54:c7:9e:6d:2d:83:71:7d:a5:90:1c:c8:c0:e1:f0:10:37: f6:d4:80:a2:2b:8c:06:f1:cb:53:bd:9c:c1:b5:0b:61:bf:e6: 58:50:05:07:7b:82:5b:03:ff:84:20:2e:fc:b2:e1:b4:48:e8: 49:c2:8d:df:49:72:e3:00:07:f7:75:8b:b6:a1:8a:55:9f:77: f8:b4:84:34:2b:53:64:da:dc:cd:d9:60:13:5f:ea:84:4f:54: dc:97:1a:56:77:8e:2f:ca:4f:d1:d4:2c:09:97:4d:cc:ac:ef: 32:93:98:dd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXktZh6kO61O00CAKby9y6t2P7xUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDEwNzRkZmVkMGJmMTJmNTQ0NGUyOTk4MTBlZTQ4YWNj NjYzYTRiOGQzYzFmYzUxNDc5NzUyZGQ1NWQ4MWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfnaVVNo7ARaJqSqVZzGsZjfImquRuzTheMmccENDRi5iQ 8JsFbtkwLHxOaSse/iNJbVGChCQ9RYBbBTiMrlHuNyL0sYK61chiHYO8jdvEFVGe 6ioIRf5Ju/BfXccCWcXUC+xDF5gPW2GIVjxGoiddWcMky/IdE76nhukLPi0yyLRf ecl47Ufncr9xpJbXpyderPHwDso9sSCqvkzKuXZcF42jhVDS+oeydlmpJL3C2Fh8 Tyx/BjAP6T4DBV1gIpIkBB89myUrnolct09wwNZO2xVCbNeU8I3RZ1OCXqEqdWwy cTE5lLhwGxwie44UJZakUFg5I3bby6hwm2y5BE9BAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrMuOvkzfubcFKrxoPfVDd/uig0cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5NzExMDlhLWUxOGYtNDA3NS1hY2Q5LWMxZTA3YjQ4MjUxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wQDANBgkqhkiG9w0BAQsFAAOCAQEASVm/u3ndFEzs/uAXZaFJvMmb 0RyURlK6op3jRlv8egppMf0Bv+G1ByhFCCc7fkVkKZdQyOwFxW01GuRO+HnyCpRV /py9n5qshUlsTXbBmec8hBYBMkqxZXZhzgJR22g3Ija8JzJ6iGwMQV4xr2ypcmjh GVDs6++e3HbGzQd1igDLYR3m+fIbDb+qRnwjPqFpBVTHnm0tg3F9pZAcyMDh8BA3 9tSAoiuMBvHLU72cwbULYb/mWFAFB3uCWwP/hCAu/LLhtEjoScKN30ly4wAH93WL tqGKVZ93+LSENCtTZNrczdlgE1/qhE9U3JcaVneOL8pP0dQsCZdNzKzvMpOY3Q== -----END CERTIFICATE-----Generated at Fri Apr 26 06:07:35 2024 by rpki-client on console-ams.rpki-client.org