$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa File: b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa (raw, json) Hash identifier: vqXL5sYJWGhuMDPnla5H2cf9kPY6T+FITx0l5VTTLeI= Subject key identifier: 35:84:9C:B3:64:C9:ED:A7:C4:59:DB:AA:B0:01:F9:1E:05:27:CC:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0646C7ECB25D94B9B7033AF4EA41B5184C536E55 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1f:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:46:c7:ec:b2:5d:94:b9:b7:03:3a:f4:ea:41:b5:18:4c:53:6e:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=64cd725b518286df2700c97f99cd73c0f5681efed60b18c18685063c795d7cd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:3a:27:ee:f3:db:6c:6f:c7:b2:60:e2:06: 9c:7c:1e:d0:46:d0:bb:99:4b:81:86:88:4e:51:87: 60:27:85:2a:ad:a9:27:35:21:33:52:67:3f:b1:06: 71:2c:2c:c0:c3:06:42:83:10:72:a8:47:e5:4a:01: 2c:77:50:c5:54:c3:b3:e1:60:71:6d:60:22:2e:69: ff:b1:80:aa:19:af:52:6d:39:9b:2d:01:a5:7c:13: a9:48:6f:0c:d3:2b:c3:c6:9b:19:16:2e:51:66:64: 26:ae:08:53:a6:fb:4c:64:a7:20:6a:aa:5d:f9:16: 1f:b2:26:bf:6a:13:b5:f3:1b:da:78:ad:ee:27:1d: 23:db:ab:96:62:64:2a:db:b4:ee:8c:2a:68:22:fe: c4:8a:4f:ae:c4:6c:f6:32:15:d1:9d:a2:18:51:e4: d1:5d:5c:76:68:48:3f:c8:94:f1:b6:b1:50:59:fa: a9:0f:a4:17:41:b9:22:85:71:fd:17:75:60:a4:37: 18:b4:78:17:51:ad:0b:61:e0:98:d9:d9:7d:a8:e9: 6e:27:93:f7:1d:d0:dd:78:4a:3c:ab:46:20:16:c7: 69:26:8e:0d:06:fb:bc:0b:24:be:3d:cd:16:10:a2: 0e:a1:9e:e3:d1:84:16:b5:70:79:f2:27:da:43:bc: e9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:84:9C:B3:64:C9:ED:A7:C4:59:DB:AA:B0:01:F9:1E:05:27:CC:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4000::/36 Signature Algorithm: sha256WithRSAEncryption b2:6e:4f:4b:cd:73:7f:42:8c:2e:23:ec:d5:b5:ac:5f:fe:52: 3d:da:d9:ac:ac:e1:40:c6:4d:b4:13:de:c3:bc:4c:49:d1:f1: 61:11:25:2b:de:36:fb:53:e8:9a:31:9f:c8:39:42:1d:c6:fb: 41:86:35:1b:5f:50:44:ca:62:68:1c:5f:98:ed:83:5b:66:3f: 3d:f4:06:d4:a3:dd:8c:80:6d:0f:6a:21:dc:11:da:10:c7:7c: f4:e3:c1:9c:a3:5d:76:13:c3:19:e5:23:9e:3a:19:1d:e7:94: f9:3f:e7:82:44:29:0b:c7:26:6e:64:15:5d:df:0c:0c:33:57: d1:39:26:68:36:38:c3:65:f5:1f:79:3c:fe:0a:7a:13:f3:0d: 4b:c1:77:9a:ad:ba:ce:b1:39:73:e5:ee:eb:73:ca:79:33:fd: 3d:b1:06:29:2f:89:03:d9:0c:de:a3:54:f3:b9:51:21:42:af: 07:0e:77:f5:1a:a0:ae:36:f8:d0:b7:d1:5b:22:9d:d2:1e:83: 76:3e:bf:1d:8b:12:93:db:e1:b0:9f:29:9d:a4:aa:3b:24:e4: 84:8b:5b:b1:20:b4:16:98:d3:30:77:3d:f3:8a:36:6e:83:03: 66:0c:fc:89:ac:64:2d:07:04:f2:93:07:84:9d:10:10:06:d4: 56:8b:9b:e7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBkbH7LJdlLm3Azr06kG1GExTblUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGNkNzI1YjUxODI4NmRmMjcwMGM5N2Y5OWNkNzNjMGY1 NjgxZWZlZDYwYjE4YzE4Njg1MDYzYzc5NWQ3Y2Q5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtszon7vPbbG/HsmDiBpx8HtBG0LuZS4GGiE5Rh2AnhSqt qSc1ITNSZz+xBnEsLMDDBkKDEHKoR+VKASx3UMVUw7PhYHFtYCIuaf+xgKoZr1Jt OZstAaV8E6lIbwzTK8PGmxkWLlFmZCauCFOm+0xkpyBqql35Fh+yJr9qE7XzG9p4 re4nHSPbq5ZiZCrbtO6MKmgi/sSKT67EbPYyFdGdohhR5NFdXHZoSD/IlPG2sVBZ +qkPpBdBuSKFcf0XdWCkNxi0eBdRrQth4JjZ2X2o6W4nk/cd0N14SjyrRiAWx2km jg0G+7wLJL49zRYQog6hnuPRhBa1cHnyJ9pDvOm1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNYScs2TJ7afEWduqsAH5HgUnzFMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YThlZjkyLTM3MGYtNDgzMi05ZjRiLTBmMTExMWQwYmZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8fQDANBgkqhkiG9w0BAQsFAAOCAQEAsm5PS81zf0KMLiPs1bWsX/5S PdrZrKzhQMZNtBPew7xMSdHxYRElK942+1PomjGfyDlCHcb7QYY1G19QRMpiaBxf mO2DW2Y/PfQG1KPdjIBtD2oh3BHaEMd89OPBnKNddhPDGeUjnjoZHeeU+T/ngkQp C8cmbmQVXd8MDDNX0TkmaDY4w2X1H3k8/gp6E/MNS8F3mq26zrE5c+Xu63PKeTP9 PbEGKS+JA9kM3qNU87lRIUKvBw539Rqgrjb40LfRWyKd0h6Ddj6/HYsSk9vhsJ8p naSqOyTkhItbsSC0FpjTMHc984o2boMDZgz8iaxkLQcE8pMHhJ0QEAbUVoub5w== -----END CERTIFICATE-----Generated at Thu May 2 17:41:18 2024 by rpki-client on console-fra.rpki-client.org