$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa File: 9b0748cf-edf9-47ce-9877-29fee7abf992.roa (raw, json) Hash identifier: WY9z0vj5SK3A/MP9cpzDTTF21unmGmk7TnBakVKuT6A= Subject key identifier: 46:1E:33:AB:C5:9C:48:2B:B7:9E:D2:A2:76:AC:50:38:55:80:69:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3103874182C2277771CBF1B6A6C5292799FBCF59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:03:87:41:82:c2:27:77:71:cb:f1:b6:a6:c5:29:27:99:fb:cf:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=9f87198a090a6463a9251e5bc4fcfbaaa20fe1adc27a6d0537b7d4c5229fc29b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fd:f0:9b:a6:dc:95:f7:1d:11:10:63:1f:fb: 6d:65:03:77:04:58:48:4c:f3:d5:38:d3:ad:3a:ea: c4:63:44:61:0a:3c:b8:24:92:77:4c:2d:b4:f5:13: c7:5a:b7:e0:39:b9:be:13:62:6f:c2:b2:ed:a7:24: be:b9:f0:2a:c3:fb:65:f0:1a:f5:81:23:68:1f:12: 31:06:58:b9:d1:ad:e6:45:35:07:b1:31:7b:e8:69: 9e:20:bd:65:63:0d:2e:0d:39:22:b3:7d:56:e6:7b: ff:0c:de:ef:25:38:68:1e:4b:33:c0:a9:08:5a:6f: 2d:6d:1d:8f:e2:0b:b9:5d:fe:bd:35:5e:07:0b:93: d3:03:01:98:ae:fe:fe:ea:90:17:8a:9b:6c:ae:99: 30:3f:91:14:fc:54:4a:95:6f:e7:ab:2e:38:c6:fb: aa:c7:09:cc:33:2c:6c:13:eb:55:85:b3:db:5e:25: 07:4b:35:17:17:5b:b8:f2:62:e6:f0:eb:31:de:c1: d9:72:4b:8c:41:d3:a5:b4:fa:03:8b:37:53:95:6e: 01:e1:0b:8a:4e:63:10:c7:12:3b:70:6d:21:a0:65: df:b2:64:03:20:a0:28:c9:3f:a3:1e:23:9e:16:9c: 4f:7b:62:5c:6d:46:fd:c8:9e:e0:6c:84:8e:c3:ca: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1E:33:AB:C5:9C:48:2B:B7:9E:D2:A2:76:AC:50:38:55:80:69:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b0748cf-edf9-47ce-9877-29fee7abf992.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:1000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:15:f0:59:2d:89:7b:ee:46:70:66:66:a4:b6:f3:6e:b2:5d: c5:29:21:9e:1c:78:1a:18:d9:96:b9:31:a4:e5:4f:49:c6:ef: ad:aa:6b:29:7e:a0:19:f7:43:19:95:7c:f3:49:5d:db:61:99: 9e:04:51:5b:93:ef:6a:a3:61:75:0d:dd:c9:27:8a:8a:54:65: b5:6c:87:77:dd:4b:23:68:41:d5:27:71:2d:8d:27:db:8a:1b: 75:a0:e7:9d:48:bf:ed:7b:4a:ad:10:ea:28:7f:81:87:33:0b: 2f:53:12:03:7b:83:07:7a:4b:cb:4a:0e:5f:6e:f5:23:c6:f0: 01:8d:0d:14:b3:ef:83:fe:6d:50:56:61:27:ce:34:9e:fc:67: e1:cc:c5:0b:d9:89:e3:aa:8b:f9:05:d4:49:ba:84:98:1e:f4: 40:16:d9:3d:d8:2d:a8:29:37:b4:62:25:7f:52:7e:9e:a3:77: 2f:89:ba:ef:5a:67:31:62:27:d5:d8:16:76:cf:06:70:88:b7: aa:94:90:2b:3e:38:ca:d9:89:d2:65:6f:14:4a:c9:57:07:da: c3:36:91:b1:30:fc:26:f7:30:ee:bc:6e:57:87:e2:b4:58:80: 0b:da:bf:11:ab:74:f7:88:0e:41:4d:b6:ec:6a:23:bc:ca:88: de:4c:a9:52 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMQOHQYLCJ3dxy/G2psUpJ5n7z1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5Zjg3MTk4YTA5MGE2NDYzYTkyNTFlNWJjNGZjZmJhYWEy MGZlMWFkYzI3YTZkMDUzN2I3ZDRjNTIyOWZjMjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH/fCbptyV9x0REGMf+21lA3cEWEhM89U406066sRjRGEK PLgkkndMLbT1E8dat+A5ub4TYm/Csu2nJL658CrD+2XwGvWBI2gfEjEGWLnRreZF NQexMXvoaZ4gvWVjDS4NOSKzfVbme/8M3u8lOGgeSzPAqQhaby1tHY/iC7ld/r01 XgcLk9MDAZiu/v7qkBeKm2yumTA/kRT8VEqVb+erLjjG+6rHCcwzLGwT61WFs9te JQdLNRcXW7jyYubw6zHewdlyS4xB06W0+gOLN1OVbgHhC4pOYxDHEjtwbSGgZd+y ZAMgoCjJP6MeI54WnE97YlxtRv3InuBshI7DyvM3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURh4zq8WcSCu3ntKidqxQOFWAaf4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliMDc0OGNmLWVkZjktNDdjZS05ODc3LTI5ZmVlN2FiZjk5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//EDANBgkqhkiG9w0BAQsFAAOCAQEADxXwWS2Je+5GcGZmpLbzbrJd xSkhnhx4GhjZlrkxpOVPScbvraprKX6gGfdDGZV880ld22GZngRRW5PvaqNhdQ3d ySeKilRltWyHd91LI2hB1SdxLY0n24obdaDnnUi/7XtKrRDqKH+BhzMLL1MSA3uD B3pLy0oOX271I8bwAY0NFLPvg/5tUFZhJ840nvxn4czFC9mJ46qL+QXUSbqEmB70 QBbZPdgtqCk3tGIlf1J+nqN3L4m671pnMWIn1dgWds8GcIi3qpSQKz44ytmJ0mVv FErJVwfawzaRsTD8Jvcw7rxuV4fitFiAC9q/Eat094gOQU227GojvMqI3kypUg== -----END CERTIFICATE-----Generated at Wed Apr 24 01:49:01 2024 by rpki-client on console-fra.rpki-client.org