$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3e210e4-70a5-473b-b403-c1a3c0460c28.roa File: a3e210e4-70a5-473b-b403-c1a3c0460c28.roa (raw, json) Hash identifier: hgx/K8Oax4M2kPmAv/8RO0jqVzExaxjZ/w1fK6URJl4= Subject key identifier: 00:20:24:CD:8E:93:97:92:46:23:09:83:26:BA:45:3C:7E:48:02:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DC46344F92497C84D886654FA9A99BD502D62DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3e210e4-70a5-473b-b403-c1a3c0460c28.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffc:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c4:63:44:f9:24:97:c8:4d:88:66:54:fa:9a:99:bd:50:2d:62:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=0c6c38680411d53b3d712b314d5e7ea32233c98e7ed93bf7d6f92175f08b2af6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:90:2b:e7:3a:a7:3e:ea:3b:35:48:31:59:c0: 8b:6d:88:f8:1a:93:2b:72:e3:84:0b:d3:bf:9b:35: dd:bf:4d:61:0b:a6:47:4d:09:e2:8b:06:84:76:ae: 5e:11:2c:90:d4:17:62:ad:65:d2:22:e6:79:3d:6f: c8:94:84:3b:40:1a:90:f9:74:55:27:a6:99:0b:d9: 0b:ad:d5:ad:1a:a0:c4:51:14:cb:47:2f:ac:4b:82: 4f:1f:a1:93:40:15:0a:be:c9:7c:d5:00:e6:93:b9: c8:ba:a2:de:76:31:c4:9d:0b:6d:45:20:78:73:4d: ae:36:df:cc:73:75:b4:c6:fd:1f:cd:d0:a2:57:ec: 39:a5:3b:fd:81:9e:4a:b1:f4:eb:d6:24:3a:c6:e4: 37:00:98:c3:87:55:b5:e0:12:6e:bb:fb:32:7e:62: e8:1d:ad:89:80:b7:a6:f3:40:83:fd:45:a3:05:32: 82:37:7e:25:97:01:e3:84:5d:21:75:7b:11:18:96: b7:dd:ab:e1:d2:af:c1:91:31:78:35:14:b4:1c:bd: 65:b7:87:d5:1a:6c:6e:21:6e:25:a5:2f:b2:cc:b3: 4e:15:ae:03:26:6c:e7:c9:2c:26:fd:3a:f9:07:ba: ea:2c:4a:59:b6:1f:fb:9a:4b:5f:1f:b0:e1:e4:07: f3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:20:24:CD:8E:93:97:92:46:23:09:83:26:BA:45:3C:7E:48:02:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3e210e4-70a5-473b-b403-c1a3c0460c28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffc:7400::/40 Signature Algorithm: sha256WithRSAEncryption 3f:4b:0a:91:4e:e5:78:2c:87:53:56:4a:51:5f:75:5f:a7:7d: e2:8e:8a:6c:77:d8:96:be:a9:e1:d8:ef:b2:a4:9e:9a:99:15: 0c:c2:ac:60:dc:6f:de:87:29:53:d5:7d:34:7d:54:7c:2e:37: 23:32:84:20:83:cd:53:7e:fe:c9:9f:c6:8f:19:3e:46:27:db: 48:ae:21:ba:7d:26:d0:18:5d:c8:bb:e0:37:b3:1e:ae:d9:4a: 84:72:21:5d:53:e2:e4:9f:cc:86:8f:84:75:7e:63:24:dc:ef: 16:ec:c7:51:c7:5a:36:38:eb:6e:08:ce:8d:5e:29:b2:05:ed: 28:f7:28:47:48:fd:f0:6a:36:8c:74:0e:d9:c7:ce:35:05:63: 4f:1a:74:93:3e:07:cc:ba:0d:d2:a2:53:b6:c1:49:a5:e0:23: 4c:e1:87:75:5a:44:ad:29:dd:3a:93:77:bc:b7:50:09:da:3e: b6:1f:8e:44:f6:d8:ce:86:35:f5:14:fd:57:41:33:06:ad:8f: 33:71:81:34:42:a1:8b:21:6a:f1:c0:a6:36:da:e3:69:5a:df: 85:be:82:d6:4c:12:82:59:e0:f4:75:6d:4e:21:93:2f:88:90: 11:b2:8f:62:c0:21:91:ac:fb:52:84:37:df:20:45:30:8d:d8: b0:d2:b1:95 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXcRjRPkkl8hNiGZU+pqZvVAtYtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzZjMzg2ODA0MTFkNTNiM2Q3MTJiMzE0ZDVlN2VhMzIy MzNjOThlN2VkOTNiZjdkNmY5MjE3NWYwOGIyYWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFkCvnOqc+6js1SDFZwIttiPgakyty44QL07+bNd2/TWEL pkdNCeKLBoR2rl4RLJDUF2KtZdIi5nk9b8iUhDtAGpD5dFUnppkL2Qut1a0aoMRR FMtHL6xLgk8foZNAFQq+yXzVAOaTuci6ot52McSdC21FIHhzTa4238xzdbTG/R/N 0KJX7DmlO/2Bnkqx9OvWJDrG5DcAmMOHVbXgEm67+zJ+YugdrYmAt6bzQIP9RaMF MoI3fiWXAeOEXSF1exEYlrfdq+HSr8GRMXg1FLQcvWW3h9UabG4hbiWlL7LMs04V rgMmbOfJLCb9OvkHuuosSlm2H/uaS18fsOHkB/OjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUACAkzY6Tl5JGIwmDJrpFPH5IAmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzZTIxMGU0LTcwYTUtNDczYi1iNDAzLWMxYTNjMDQ2MGMyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/8dDANBgkqhkiG9w0BAQsFAAOCAQEAP0sKkU7leCyHU1ZKUV91X6d9 4o6KbHfYlr6p4djvsqSempkVDMKsYNxv3ocpU9V9NH1UfC43IzKEIIPNU37+yZ/G jxk+RifbSK4hun0m0BhdyLvgN7MertlKhHIhXVPi5J/Mho+EdX5jJNzvFuzHUcda NjjrbgjOjV4psgXtKPcoR0j98Go2jHQO2cfONQVjTxp0kz4HzLoN0qJTtsFJpeAj TOGHdVpErSndOpN3vLdQCdo+th+ORPbYzoY19RT9V0EzBq2PM3GBNEKhiyFq8cCm NtrjaVrfhb6C1kwSglng9HVtTiGTL4iQEbKPYsAhkaz7UoQ33yBFMI3YsNKxlQ== -----END CERTIFICATE-----Generated at Thu May 2 17:41:16 2024 by rpki-client on console-fra.rpki-client.org