$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa File: be58a495-3b46-4802-b20e-0b767c46bf90.roa (raw, json) Hash identifier: 7jkSM+O7jEgdziKxYvFOCfltusA6OhuO8lITs82rI2Y= Subject key identifier: B4:24:27:6C:1B:F3:7F:FD:0D:54:70:05:9A:31:79:33:EF:38:A2:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A59F730B2B699A9D530652EF46DA96DCB6D5683 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:59:f7:30:b2:b6:99:a9:d5:30:65:2e:f4:6d:a9:6d:cb:6d:56:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=21ab6aa966cdce5d80efc27c26badb64e3ac21affbfeddf0ba0ccbc04a27c54f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b8:ac:a8:ee:2d:14:82:fb:dc:7d:94:c9:e0: 6c:6f:25:3c:fb:cb:4d:d8:5c:0e:3b:89:7b:70:29: b1:f6:3a:43:7e:b8:b2:a5:3e:f4:11:79:d9:42:35: a9:af:fb:c1:29:26:43:f6:09:98:7b:10:05:7e:c4: d1:8b:3b:01:51:a9:61:8a:17:13:e6:b4:d6:87:7e: c4:74:8c:dc:32:d1:e0:98:43:60:d4:d4:7e:79:18: d5:66:02:fc:5e:cd:fb:e8:74:fb:52:ab:68:5c:48: 8d:96:a4:7d:5d:88:7f:14:bc:68:74:ef:41:57:39: 5b:c3:f2:9c:a4:29:07:f1:9e:3c:47:a6:52:60:1b: a4:2a:e7:82:74:bd:51:b1:df:5c:0e:67:3b:cb:ff: 26:04:7c:5b:79:f0:fb:1a:ff:db:f5:e5:a4:a8:58: f5:1c:c4:c0:e2:ff:8e:e1:f4:91:9a:dd:e3:43:36: 5d:a7:14:1a:f6:0f:09:56:63:86:c4:64:d7:46:dd: 41:b2:46:83:11:28:51:61:c6:98:95:6d:23:50:18: 4e:9e:cf:8e:60:bb:4a:cb:0f:f6:6b:16:54:52:66: 61:7d:7a:1f:09:a9:87:b3:fc:fa:2f:ef:f3:3d:57: 89:0c:a8:01:06:41:aa:fd:40:9c:f3:79:6f:7e:a2: 41:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:24:27:6C:1B:F3:7F:FD:0D:54:70:05:9A:31:79:33:EF:38:A2:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be58a495-3b46-4802-b20e-0b767c46bf90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:e000::/40 Signature Algorithm: sha256WithRSAEncryption a3:da:81:4d:4c:f9:51:e5:37:76:4f:11:b5:95:d9:f5:6f:c2: 87:da:e8:cf:fa:c3:84:7a:0e:86:b1:ee:67:4e:7f:b3:96:53: 4c:6f:6e:f0:05:93:2a:2f:bc:20:ba:6a:47:60:1f:63:ef:e6: 70:1b:3b:d8:5e:91:d2:4c:55:20:b0:e5:ba:8e:8c:ce:ed:82: be:81:ca:c7:54:a3:0a:cf:9d:ce:44:5e:83:c1:b3:61:d7:6f: 01:1e:c4:fc:ed:25:77:3b:98:3a:53:cf:c9:51:4e:52:07:44: e9:c2:e3:7d:e3:6b:8c:97:7e:d6:06:89:05:6a:c9:f8:28:c2: 64:a3:37:73:c0:52:16:75:fe:bb:51:1c:4e:a0:26:7a:e6:79: 6f:5e:49:51:2b:64:29:36:c1:52:3e:5a:4a:b8:e8:91:4c:df: 78:50:dd:d3:9b:7c:e0:f7:00:6b:a6:66:8e:69:a0:c0:f0:fd: e1:24:d2:36:41:02:b6:3a:5a:a0:88:e4:a0:5e:01:45:09:b5: 0d:d1:81:ea:6c:c9:82:fb:9d:78:a2:2a:0d:d3:b1:5c:04:e3: 25:8a:f0:0f:03:6d:aa:20:b1:19:c6:a0:ae:2a:86:b1:6d:06: b3:17:d3:5c:70:87:8c:ed:d6:dc:99:82:48:40:f3:7a:5a:2c: 66:d0:64:51 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSln3MLK2manVMGUu9G2pbcttVoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWFiNmFhOTY2Y2RjZTVkODBlZmMyN2MyNmJhZGI2NGUz YWMyMWFmZmJmZWRkZjBiYTBjY2JjMDRhMjdjNTRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUuKyo7i0UgvvcfZTJ4GxvJTz7y03YXA47iXtwKbH2OkN+ uLKlPvQRedlCNamv+8EpJkP2CZh7EAV+xNGLOwFRqWGKFxPmtNaHfsR0jNwy0eCY Q2DU1H55GNVmAvxezfvodPtSq2hcSI2WpH1diH8UvGh070FXOVvD8pykKQfxnjxH plJgG6Qq54J0vVGx31wOZzvL/yYEfFt58Psa/9v15aSoWPUcxMDi/47h9JGa3eND Nl2nFBr2DwlWY4bEZNdG3UGyRoMRKFFhxpiVbSNQGE6ez45gu0rLD/ZrFlRSZmF9 eh8JqYez/Pov7/M9V4kMqAEGQar9QJzzeW9+okEvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtCQnbBvzf/0NVHAFmjF5M+84oq4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlNThhNDk1LTNiNDYtNDgwMi1iMjBlLTBiNzY3YzQ2YmY5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/64DANBgkqhkiG9w0BAQsFAAOCAQEAo9qBTUz5UeU3dk8RtZXZ9W/C h9roz/rDhHoOhrHuZ05/s5ZTTG9u8AWTKi+8ILpqR2AfY+/mcBs72F6R0kxVILDl uo6Mzu2CvoHKx1SjCs+dzkReg8GzYddvAR7E/O0ldzuYOlPPyVFOUgdE6cLjfeNr jJd+1gaJBWrJ+CjCZKM3c8BSFnX+u1EcTqAmeuZ5b15JUStkKTbBUj5aSrjokUzf eFDd05t84PcAa6ZmjmmgwPD94STSNkECtjpaoIjkoF4BRQm1DdGB6mzJgvudeKIq DdOxXATjJYrwDwNtqiCxGcagriqGsW0GsxfTXHCHjO3W3JmCSEDzelosZtBkUQ== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:56 2024 by rpki-client on console-fra.rpki-client.org