$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa File: ceb67e80-419a-468c-9de9-477adbe51133.roa (raw, json) Hash identifier: KCOm8tWyQpoKq/nRCYFq+uUaJcHYtptD+N8knTolKjs= Subject key identifier: 9E:85:A5:64:39:DD:DD:66:1B:C0:2D:C0:D2:C7:88:86:59:81:80:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D858E29FABC9614D2CFD49DBED68E1882C7477C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:85:8e:29:fa:bc:96:14:d2:cf:d4:9d:be:d6:8e:18:82:c7:47:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2d00941c96652699d1c79830c0f69a9ecc40517b55a94cac0be81eccf04f68ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4c:34:80:68:4e:fe:2a:47:3d:1b:ba:63:0a: 57:d4:a1:f6:0f:db:46:4e:b9:ba:32:da:61:79:5c: 33:be:d7:19:82:15:55:1c:27:73:2c:63:0e:be:fb: fe:e2:b8:23:ca:1c:7d:fa:f3:36:07:01:05:0a:5e: 96:1b:e6:b9:02:08:08:92:ae:7d:4c:d0:93:fb:ee: 89:fb:0e:2d:81:c6:d1:22:e2:c8:11:41:74:3f:bb: 36:be:07:2a:ab:0b:c4:c6:41:58:15:a3:40:3f:fa: 14:bb:4d:5d:b3:59:18:81:de:10:a6:d5:30:b6:6e: 48:1f:63:d6:95:59:4a:71:41:54:6b:ef:87:4a:e9: 9a:ce:81:a6:c5:83:c1:5a:18:39:da:4f:05:cd:e9: 99:cd:c5:09:a7:f8:4a:99:c3:aa:8e:5e:95:64:07: 36:86:aa:4a:bd:9c:37:96:54:eb:35:5d:c4:6b:cd: 96:4b:d9:6e:e2:cb:4a:20:52:e8:6b:ba:99:15:79: 66:50:b5:c0:58:2a:27:c1:3d:6e:0f:06:66:c3:c7: dc:51:81:17:6b:02:e6:d3:23:4b:ad:c8:68:ed:e8: 73:75:30:d8:b1:5f:df:08:97:8e:32:19:5c:93:76: e1:8f:b6:82:02:4c:d9:22:97:33:e1:75:63:c7:dd: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:85:A5:64:39:DD:DD:66:1B:C0:2D:C0:D2:C7:88:86:59:81:80:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:5000::/40 Signature Algorithm: sha256WithRSAEncryption b0:f9:b5:f8:23:b2:6c:ef:81:71:dc:8d:c2:81:2f:44:b2:fc: b0:2d:32:2e:0b:4e:da:3f:50:28:23:6e:7a:71:95:7d:ff:f7: 33:ba:1a:1f:82:73:ca:2f:b9:45:8c:47:75:ac:c6:f0:c4:2a: bf:bb:3e:e3:57:f8:e3:d1:f9:35:86:7b:a5:6d:2e:15:55:4c: 8e:35:c7:83:9d:ac:4a:24:13:cf:d2:1f:64:23:da:79:df:13: c0:1f:4f:a3:32:63:0d:3c:60:2e:07:73:6f:89:f9:95:5a:da: f6:ba:3b:b3:91:28:34:18:eb:f5:a1:7e:3a:77:4d:59:6c:95: 55:74:28:07:51:e6:76:da:60:7a:58:47:83:5b:cc:80:12:71: b3:85:d5:68:e5:82:10:f3:3b:e3:4d:33:53:a6:b1:82:87:02: cd:9c:0d:c3:7d:8f:a9:12:b0:3c:18:02:3b:5a:27:58:e2:b6: 9b:70:82:c9:f4:aa:cd:4d:07:f5:18:6d:c8:de:7e:45:bf:5b: 9f:59:ac:d0:b4:af:c2:61:ea:c7:be:d6:69:f4:cc:c4:34:d8: 0d:a6:50:ca:be:3e:88:b8:66:c6:45:e5:e1:07:a9:85:d9:c9: ee:93:32:4e:fd:19:76:f3:42:cb:b2:bc:77:eb:67:cb:f0:85: 6b:4a:20:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULYWOKfq8lhTSz9SdvtaOGILHR3wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDAwOTQxYzk2NjUyNjk5ZDFjNzk4MzBjMGY2OWE5ZWNj NDA1MTdiNTVhOTRjYWMwYmU4MWVjY2YwNGY2OGVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQTDSAaE7+Kkc9G7pjClfUofYP20ZOuboy2mF5XDO+1xmC FVUcJ3MsYw6++/7iuCPKHH368zYHAQUKXpYb5rkCCAiSrn1M0JP77on7Di2BxtEi 4sgRQXQ/uza+ByqrC8TGQVgVo0A/+hS7TV2zWRiB3hCm1TC2bkgfY9aVWUpxQVRr 74dK6ZrOgabFg8FaGDnaTwXN6ZnNxQmn+EqZw6qOXpVkBzaGqkq9nDeWVOs1XcRr zZZL2W7iy0ogUuhrupkVeWZQtcBYKifBPW4PBmbDx9xRgRdrAubTI0utyGjt6HN1 MNixX98Il44yGVyTduGPtoICTNkilzPhdWPH3RNHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnoWlZDnd3WYbwC3A0seIhlmBgLAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYjY3ZTgwLTQxOWEtNDY4Yy05ZGU5LTQ3N2FkYmU1MTEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6UDANBgkqhkiG9w0BAQsFAAOCAQEAsPm1+COybO+BcdyNwoEvRLL8 sC0yLgtO2j9QKCNuenGVff/3M7oaH4Jzyi+5RYxHdazG8MQqv7s+41f449H5NYZ7 pW0uFVVMjjXHg52sSiQTz9IfZCPaed8TwB9PozJjDTxgLgdzb4n5lVra9ro7s5Eo NBjr9aF+OndNWWyVVXQoB1HmdtpgelhHg1vMgBJxs4XVaOWCEPM7400zU6axgocC zZwNw32PqRKwPBgCO1onWOK2m3CCyfSqzU0H9RhtyN5+Rb9bn1ms0LSvwmHqx77W afTMxDTYDaZQyr4+iLhmxkXl4QephdnJ7pMyTv0ZdvNCy7K8d+tny/CFa0ogWA== -----END CERTIFICATE-----Generated at Tue Apr 23 18:30:46 2024 by rpki-client on console-fra.rpki-client.org