$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa File: aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa (raw, json) Hash identifier: 2/eqSikfzHwESbuMibu+/+GpzV/Qm/welmfsoZ1CAjA= Subject key identifier: 64:04:7C:E4:27:B2:06:5D:C6:DB:05:8E:B6:80:19:1F:1A:97:44:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25936404CDD0BA4B1C4C9A0DC25A51844A7A20CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f23:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:93:64:04:cd:d0:ba:4b:1c:4c:9a:0d:c2:5a:51:84:4a:7a:20:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=83df5079c7a7fb37d72a1af6d15e740bcd4932d44d73e23c84e1a22cc94a11b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fa:f4:69:cf:3d:82:e2:2d:f5:c4:30:7a:91: 3e:47:f5:30:b4:f0:dc:9b:53:c5:2f:d1:14:b1:f6: 82:1e:78:e6:c8:63:6a:50:98:95:a2:85:ec:55:86: 8f:b8:35:88:bf:1e:ec:08:ed:a0:91:7b:66:b9:d9: 94:7c:d5:49:57:83:1e:5e:31:3a:dd:2c:b5:6d:c1: 75:9d:ad:e2:1e:15:11:d8:66:ee:5c:31:e4:f5:95: c4:df:c0:67:26:3f:ef:17:df:33:17:e4:d5:28:31: f8:c5:4f:0f:93:b8:39:de:a2:a7:c9:76:82:5c:d4: 34:70:d6:c5:85:67:4d:e8:e5:ba:86:4b:28:1a:19: 74:ba:7a:d7:7f:ce:26:23:9e:59:32:b7:4d:0b:31: 8f:00:46:01:9f:ad:76:fd:5b:39:1a:04:07:05:7c: 3e:17:cb:54:35:3f:63:2b:c0:e9:b5:9f:19:7d:01: 73:db:27:71:0d:fb:7e:fd:de:de:ee:e5:fa:91:b1: 8f:b1:bc:cc:e4:6c:ea:7f:3a:83:0f:ac:7d:00:63: cd:ad:aa:02:9a:58:c2:6c:68:09:ac:41:82:c3:45: 63:6a:40:41:06:33:42:c2:70:16:69:67:6b:87:62: 45:9e:20:46:48:5a:45:fc:48:e2:5d:d8:64:82:1e: 20:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:04:7C:E4:27:B2:06:5D:C6:DB:05:8E:B6:80:19:1F:1A:97:44:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f23:8000::/36 Signature Algorithm: sha256WithRSAEncryption 97:15:7a:a1:a6:f6:48:83:0b:60:6c:b1:72:6b:07:17:c4:4c: 6a:29:80:d8:c3:0c:1d:d6:f3:74:7d:05:fb:94:ca:7e:57:b7: d9:89:dd:2b:14:bb:a7:cc:02:18:82:00:6d:dc:0a:c2:6b:81: 4d:f6:06:86:e3:5e:c5:56:a9:a0:58:a6:3b:5b:be:8e:d9:f9: 40:97:2f:6d:8b:e4:e3:ca:91:14:cd:ee:9b:dc:a9:75:d2:fc: f9:17:f8:46:61:77:9a:ef:8f:7e:d1:c6:58:94:0b:26:ae:18: ec:78:1c:da:8a:ff:f4:54:6f:fc:d3:7c:c6:7c:cc:f6:c0:ff: b7:0a:4f:a1:c1:ff:74:35:5d:8a:cc:b1:cc:fe:8a:31:ed:dd: 18:ef:cd:3b:1c:ad:e0:10:eb:d3:92:96:cf:f3:da:3d:9c:31: 21:ea:27:76:b2:52:04:2e:e0:7b:70:15:b7:23:60:d3:df:af: 17:30:01:8c:e6:1c:10:f9:ae:76:b5:08:04:5d:28:9a:6e:df: 84:52:a6:66:1a:ed:13:4a:b0:50:55:68:7e:75:bd:ff:e5:d2: bb:e2:60:a3:c4:f5:fb:78:7b:36:e1:4d:05:31:04:6a:10:aa: 91:78:51:ca:33:55:6b:0f:e7:3b:25:1e:36:2b:a8:85:ec:e8: 31:a1:f5:31 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJZNkBM3QukscTJoNwlpRhEp6IM4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2RmNTA3OWM3YTdmYjM3ZDcyYTFhZjZkMTVlNzQwYmNk NDkzMmQ0NGQ3M2UyM2M4NGUxYTIyY2M5NGExMWI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt+vRpzz2C4i31xDB6kT5H9TC08NybU8Uv0RSx9oIeeObI Y2pQmJWihexVho+4NYi/HuwI7aCRe2a52ZR81UlXgx5eMTrdLLVtwXWdreIeFRHY Zu5cMeT1lcTfwGcmP+8X3zMX5NUoMfjFTw+TuDneoqfJdoJc1DRw1sWFZ03o5bqG SygaGXS6etd/ziYjnlkyt00LMY8ARgGfrXb9WzkaBAcFfD4Xy1Q1P2MrwOm1nxl9 AXPbJ3EN+3793t7u5fqRsY+xvMzkbOp/OoMPrH0AY82tqgKaWMJsaAmsQYLDRWNq QEEGM0LCcBZpZ2uHYkWeIEZIWkX8SOJd2GSCHiBRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZAR85CeyBl3G2wWOtoAZHxqXRHQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYTFhOGM0LTk2MjMtNDgyZS1iYWM4LTdmNDdhYjJlNjExNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8jgDANBgkqhkiG9w0BAQsFAAOCAQEAlxV6oab2SIMLYGyxcmsHF8RM aimA2MMMHdbzdH0F+5TKfle32YndKxS7p8wCGIIAbdwKwmuBTfYGhuNexVapoFim O1u+jtn5QJcvbYvk48qRFM3um9ypddL8+Rf4RmF3mu+PftHGWJQLJq4Y7Hgc2or/ 9FRv/NN8xnzM9sD/twpPocH/dDVdisyxzP6KMe3dGO/NOxyt4BDr05KWz/PaPZwx IeondrJSBC7ge3AVtyNg09+vFzABjOYcEPmudrUIBF0omm7fhFKmZhrtE0qwUFVo fnW9/+XSu+Jgo8T1+3h7NuFNBTEEahCqkXhRyjNVaw/nOyUeNiuohezoMaH1MQ== -----END CERTIFICATE-----Generated at Thu May 2 17:41:17 2024 by rpki-client on console-fra.rpki-client.org