$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf45a27c-60f4-460d-8b53-50a5fbe95ccb.roa File: cf45a27c-60f4-460d-8b53-50a5fbe95ccb.roa (raw, json) Hash identifier: hAK1im9e+oH0NsA/vOKcRGQWqHboJVExE7ueb3ExRKM= Subject key identifier: 1E:13:97:5C:7B:1F:9F:F8:EA:F7:E6:D2:1F:D6:D5:C8:BA:79:BC:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65D8EC98A5FFA9273F2F505597A21643E66E42D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf45a27c-60f4-460d-8b53-50a5fbe95ccb.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d8:ec:98:a5:ff:a9:27:3f:2f:50:55:97:a2:16:43:e6:6e:42:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=b702cad15846fe84f3bae2cc204ad454b3b17ab85de10e544e4d080a3668f56c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:bc:69:c7:4b:c2:5c:d5:6f:ec:6e:eb:87: 81:e1:dd:d5:53:2c:cc:c4:51:55:84:0f:a3:70:cc: fc:cb:52:89:79:53:fb:11:3e:05:d2:2c:73:79:ce: 26:ef:cb:22:df:f9:bc:bc:26:8a:3f:39:8b:d6:ba: 36:18:05:ac:89:82:a7:a3:1a:5a:9c:14:49:e1:1a: ff:c6:a1:4a:be:3f:7f:8f:5b:ad:17:9a:c7:b0:4e: c6:1d:d0:8b:23:03:7d:d9:88:4e:5d:06:2d:2c:b1: d2:db:3e:aa:41:1e:5b:92:7b:49:c1:29:46:5e:56: 21:ad:3f:1b:e1:60:9d:c4:a5:f1:3e:50:43:ca:8b: 73:5c:3d:d5:69:02:40:38:c0:c2:35:08:51:a4:91: 02:f9:23:31:f0:f9:94:11:0b:ec:00:ac:cf:80:3a: 06:36:5d:8f:c3:5f:72:89:4d:93:b4:82:85:c5:b6: 0f:25:76:83:31:5f:62:09:eb:d9:92:82:8a:f8:11: 4d:2d:01:d4:84:7f:60:70:4e:69:60:83:7e:d1:c3: e1:45:f9:29:c3:64:35:94:8d:aa:d2:03:70:90:0e: 91:3a:16:56:7b:3c:57:af:21:aa:aa:9a:ab:5d:02: 48:f5:34:be:4a:78:4d:40:2e:42:8c:eb:5e:e1:54: b7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:13:97:5C:7B:1F:9F:F8:EA:F7:E6:D2:1F:D6:D5:C8:BA:79:BC:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf45a27c-60f4-460d-8b53-50a5fbe95ccb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:3400::/40 Signature Algorithm: sha256WithRSAEncryption a1:fc:e1:e5:9c:66:5f:b3:13:03:bc:7e:26:3b:e7:44:48:9f: cb:bf:0c:85:7f:1f:ff:da:7f:29:1c:bd:ea:d4:92:bb:54:b3: f5:f2:26:93:b2:fd:b0:bd:e7:70:c1:7b:4c:b7:22:9f:90:48: 4e:0a:bc:dd:cf:0e:74:46:bd:22:b1:9a:da:bc:9d:94:b4:ad: 95:73:5d:c7:31:6b:9b:be:29:b2:ac:34:d6:9e:5b:e1:3f:22: 94:45:a8:f2:5a:26:a6:db:bf:33:34:e8:a7:1f:5d:16:a2:30: 0d:b0:4d:cb:2f:55:c1:08:8b:f8:ce:e6:78:f9:50:db:c5:2b: a5:84:5e:51:a0:65:ef:ca:09:6c:fa:89:8c:22:77:94:ae:43: 27:f7:0a:e8:8d:da:8f:09:72:1c:e7:6c:aa:8d:c0:6d:2c:89: 58:27:87:5d:05:45:75:5c:fc:d0:92:dc:8e:1b:f2:9a:23:24: df:af:e9:db:30:0e:1e:8b:bd:b1:01:64:26:c6:b8:32:3b:da: cf:ae:41:33:ac:e8:a9:ce:c1:90:e4:e5:2a:c6:88:8f:d5:fe: 2e:e2:e5:da:cc:3a:41:f9:ea:9d:42:d5:36:30:c4:4a:c9:e4: 50:2e:8a:b8:91:17:1b:53:75:7f:db:3a:db:e5:01:b7:7c:0c: 04:a4:6b:07 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZdjsmKX/qSc/L1BVl6IWQ+ZuQtMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzAyY2FkMTU4NDZmZTg0ZjNiYWUyY2MyMDRhZDQ1NGIz YjE3YWI4NWRlMTBlNTQ0ZTRkMDgwYTM2NjhmNTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+bLxpx0vCXNVv7G7rh4Hh3dVTLMzEUVWED6NwzPzLUol5 U/sRPgXSLHN5zibvyyLf+by8Joo/OYvWujYYBayJgqejGlqcFEnhGv/GoUq+P3+P W60XmsewTsYd0IsjA33ZiE5dBi0ssdLbPqpBHluSe0nBKUZeViGtPxvhYJ3EpfE+ UEPKi3NcPdVpAkA4wMI1CFGkkQL5IzHw+ZQRC+wArM+AOgY2XY/DX3KJTZO0goXF tg8ldoMxX2IJ69mSgor4EU0tAdSEf2BwTmlgg37Rw+FF+SnDZDWUjarSA3CQDpE6 FlZ7PFevIaqqmqtdAkj1NL5KeE1ALkKM617hVLcxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHhOXXHsfn/jq9+bSH9bVyLp5vA0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmNDVhMjdjLTYwZjQtNDYwZC04YjUzLTUwYTVmYmU5NWNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xNDANBgkqhkiG9w0BAQsFAAOCAQEAofzh5ZxmX7MTA7x+JjvnREif y78MhX8f/9p/KRy96tSSu1Sz9fImk7L9sL3ncMF7TLcin5BITgq83c8OdEa9IrGa 2rydlLStlXNdxzFrm74psqw01p5b4T8ilEWo8lomptu/MzTopx9dFqIwDbBNyy9V wQiL+M7mePlQ28UrpYReUaBl78oJbPqJjCJ3lK5DJ/cK6I3ajwlyHOdsqo3AbSyJ WCeHXQVFdVz80JLcjhvymiMk36/p2zAOHou9sQFkJsa4Mjvaz65BM6zoqc7BkOTl KsaIj9X+LuLl2sw6QfnqnULVNjDESsnkUC6KuJEXG1N1f9s62+UBt3wMBKRrBw== -----END CERTIFICATE-----Generated at Thu May 2 11:33:24 2024 by rpki-client on console-fra.rpki-client.org