$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa File: caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa (raw, json) Hash identifier: 5JyDNvN6sYuEha0GvGBAjANJdfOi858SmHau15Y/AAI= Subject key identifier: 6A:F1:44:53:30:7D:4B:29:D6:28:D5:02:F7:EE:01:98:DB:B3:76:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25BC42D7C9D5CACEF65C552EF271EBAF185BE57C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:4870::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:bc:42:d7:c9:d5:ca:ce:f6:5c:55:2e:f2:71:eb:af:18:5b:e5:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=29a3e9be864cb42a81f3e2f5fff2f381daba7d430d2ee2f7297bf4e267b74888, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:db:ad:c4:de:cf:38:68:5d:f5:1d:38:48:53: a7:3f:d7:76:75:5f:ce:17:81:b3:81:81:f2:1f:9b: 83:26:30:70:8d:a0:ef:aa:3e:f1:d2:50:68:61:3b: 2f:6e:6b:a1:b5:13:17:5b:e9:27:8f:81:b1:39:26: 2a:78:e0:f2:60:f4:50:06:af:30:e3:81:a7:30:6d: 5f:d9:f0:20:33:11:26:77:8b:69:20:c0:c6:be:9e: 72:0c:e6:fa:af:f2:5d:8b:f8:df:23:2d:e9:23:62: cd:c2:e7:11:39:fd:19:f4:c2:08:06:34:2b:c8:8e: eb:6c:a8:aa:5d:dc:3a:9f:aa:8c:7a:ac:65:de:b4: 38:9b:8f:26:1e:4f:ee:8f:b9:6f:b8:32:b2:ad:8a: 86:95:93:f4:76:08:e7:40:86:1a:bd:3f:28:94:44: 08:7e:7d:42:1c:29:51:ca:61:39:ad:f2:0c:a2:2d: 03:db:78:90:2b:60:dd:dd:b6:18:7f:34:fc:ee:53: ad:10:c1:5c:2a:25:6d:24:a8:a0:05:df:5f:91:ec: f5:d6:98:25:74:49:4f:b2:1b:44:00:82:85:b1:de: 16:dd:d3:93:0b:0b:30:7c:da:4f:a4:20:13:7c:94: 7a:23:61:e4:79:be:b9:af:6c:a3:4e:61:31:d7:87: 11:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F1:44:53:30:7D:4B:29:D6:28:D5:02:F7:EE:01:98:DB:B3:76:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caf057ec-66e9-45b0-9bd8-fc95a48230f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4870::/47 Signature Algorithm: sha256WithRSAEncryption b6:28:c7:88:aa:2a:25:b7:c4:68:28:d6:11:9b:67:d4:f6:93: 3b:09:f7:0b:e6:fa:6d:e2:34:cc:7b:83:17:84:21:37:47:d0: 80:60:9f:56:55:8b:65:f5:3f:33:a9:c3:b5:1e:13:cf:8d:74: e2:65:a9:3b:89:61:9e:0a:30:98:40:1a:e3:53:2a:79:f0:0b: 01:b5:48:ed:5b:c6:1f:56:2c:0e:f5:5f:95:80:4e:4b:8b:1e: 83:54:9e:cf:3d:35:5b:7b:92:43:9a:ec:3f:b8:66:59:d0:b0: 20:d7:ba:39:f9:2d:65:ee:5a:08:be:ba:9f:09:31:99:9f:6d: 9e:65:5c:8a:a4:32:d9:95:f1:42:d7:65:57:52:25:d1:49:8b: 0e:fb:77:ef:20:7b:6a:4e:1e:53:d3:d2:65:1d:1f:e5:c3:89: b6:ba:1d:ed:a1:f4:67:f8:7e:78:de:3e:c7:c3:2f:15:f8:85: 21:c6:d3:89:25:ee:a0:01:89:ad:81:84:8a:d0:78:8f:94:ee: ac:16:37:ae:db:1b:6b:87:f1:9e:d6:07:f7:4f:bb:ec:df:52: 1d:8d:81:9a:0d:8d:d8:09:f1:ed:8f:f3:7e:b8:dc:f6:6d:b5: 29:9e:d1:6a:07:1e:f4:24:0b:b1:87:95:b4:2c:6e:83:2b:72: 5e:95:4d:bf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJbxC18nVys72XFUu8nHrrxhb5XwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWEzZTliZTg2NGNiNDJhODFmM2UyZjVmZmYyZjM4MWRh YmE3ZDQzMGQyZWUyZjcyOTdiZjRlMjY3Yjc0ODg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW263E3s84aF31HThIU6c/13Z1X84XgbOBgfIfm4MmMHCN oO+qPvHSUGhhOy9ua6G1Exdb6SePgbE5Jip44PJg9FAGrzDjgacwbV/Z8CAzESZ3 i2kgwMa+nnIM5vqv8l2L+N8jLekjYs3C5xE5/Rn0wggGNCvIjutsqKpd3Dqfqox6 rGXetDibjyYeT+6PuW+4MrKtioaVk/R2COdAhhq9PyiURAh+fUIcKVHKYTmt8gyi LQPbeJArYN3dthh/NPzuU60QwVwqJW0kqKAF31+R7PXWmCV0SU+yG0QAgoWx3hbd 05MLCzB82k+kIBN8lHojYeR5vrmvbKNOYTHXhxEzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUavFEUzB9SynWKNUC9+4BmNuzdhowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhZjA1N2VjLTY2ZTktNDViMC05YmQ4LWZjOTVhNDgyMzBmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSHAwDQYJKoZIhvcNAQELBQADggEBALYox4iqKiW3xGgo1hGbZ9T2 kzsJ9wvm+m3iNMx7gxeEITdH0IBgn1ZVi2X1PzOpw7UeE8+NdOJlqTuJYZ4KMJhA GuNTKnnwCwG1SO1bxh9WLA71X5WATkuLHoNUns89NVt7kkOa7D+4ZlnQsCDXujn5 LWXuWgi+up8JMZmfbZ5lXIqkMtmV8ULXZVdSJdFJiw77d+8ge2pOHlPT0mUdH+XD iba6He2h9Gf4fnjePsfDLxX4hSHG04kl7qABia2BhIrQeI+U7qwWN67bG2uH8Z7W B/dPu+zfUh2NgZoNjdgJ8e2P83643PZttSme0WoHHvQkC7GHlbQsboMrcl6VTb8= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:23 2024 by rpki-client on console-ams.rpki-client.org