$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa File: d21d2b11-198a-4187-babe-5e898f2a1576.roa (raw, json) Hash identifier: wLmd+l+iHZe05cKEyK29dhJSB7vZF1eI4ZZZTcQ8C0A= Subject key identifier: AC:3B:0B:57:41:A5:7C:13:75:06:F9:90:E9:1A:34:90:AA:A2:14:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C2B6BA2C360BC9BD2DA76F47237BD760741B36B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:2b:6b:a2:c3:60:bc:9b:d2:da:76:f4:72:37:bd:76:07:41:b3:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=84c1f34bbfba31296fea2bb0ef876033347452b46ace47c7cccfb6f30fb07428, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d0:5e:0e:ee:5a:2f:8d:0a:95:4c:8d:5d:46: 68:24:1c:18:59:cd:2b:ae:ff:47:19:0f:dd:56:2a: 20:35:05:f4:72:f6:1b:57:b8:eb:4c:eb:69:9e:64: 3f:56:0a:4c:4b:19:8a:99:2e:b5:c8:7d:1f:81:ee: 4b:ee:08:ee:90:e2:c8:50:92:3e:a0:49:ff:04:bc: fd:02:db:68:1b:47:36:2e:9d:5e:9d:94:23:6a:91: b4:44:96:c0:71:b2:95:bc:47:23:de:db:0c:fa:ce: c4:35:91:93:4c:2e:c6:11:f0:17:02:75:e0:05:a8: 48:b2:7c:d7:5b:69:93:04:0e:10:e5:70:68:c4:e6: 97:ab:f7:35:fa:b1:e6:d8:e8:76:34:78:06:2a:00: 3c:a5:da:a4:9f:99:a7:25:b7:27:c6:8e:23:14:e4: 86:8e:c9:76:a2:cd:d6:70:b7:3a:c9:9a:72:b9:f4: 09:63:30:5b:08:e2:5e:53:69:57:81:72:fe:52:78: 56:1a:4d:1d:89:51:1b:d5:7b:75:ab:46:49:1c:80: 27:f3:e4:b6:b4:41:57:48:7b:57:57:78:23:9f:03: c0:75:c3:ea:9a:86:98:af:5a:05:50:d5:a6:4a:4d: 8e:b1:0c:45:9b:bb:f4:e6:9e:34:58:97:58:f8:77: 2f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3B:0B:57:41:A5:7C:13:75:06:F9:90:E9:1A:34:90:AA:A2:14:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:8000::/39 Signature Algorithm: sha256WithRSAEncryption 7a:9a:a1:27:8d:66:15:be:49:79:a8:0d:c0:22:c3:ad:8d:91: ef:f7:9a:d6:46:b6:de:81:3c:0f:01:5b:5a:19:79:67:aa:17: 75:a9:06:d3:48:b1:c0:59:ab:df:ee:c3:14:58:3c:2d:ef:b2: bb:40:97:0f:1d:2f:e6:aa:fd:41:c9:3e:99:98:0f:73:80:ea: 40:48:38:e4:29:fa:be:15:f4:aa:25:00:c6:58:10:9f:82:1e: 1b:81:f7:69:be:dd:54:22:3b:f6:39:30:7c:da:34:02:be:32: 30:e7:fa:91:c0:6b:dd:e1:02:85:54:2c:b0:74:77:b8:7f:dc: a9:84:9a:2d:c5:20:57:46:65:07:d5:4b:5c:70:09:90:ef:20: db:53:11:6e:2e:5d:b2:52:74:35:04:a8:11:08:3d:c2:ef:57: ec:4a:9f:f0:b8:09:8d:af:be:e8:d2:52:6b:98:23:97:83:70: d5:61:99:dd:70:ac:be:3d:74:c0:8c:db:c1:ef:9e:13:5a:45: 16:98:f1:23:a5:d3:1f:84:07:9d:9a:6b:69:bc:ef:0c:08:3b: e6:dd:79:20:29:8c:f5:d3:c4:23:10:af:7d:7a:78:3e:09:01: f1:1a:e6:bf:07:1f:fd:93:df:dc:52:b3:f5:56:a3:d3:d3:0c: 59:de:a4:c4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXCtrosNgvJvS2nb0cje9dgdBs2swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGMxZjM0YmJmYmEzMTI5NmZlYTJiYjBlZjg3NjAzMzM0 NzQ1MmI0NmFjZTQ3YzdjY2NmYjZmMzBmYjA3NDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC0F4O7lovjQqVTI1dRmgkHBhZzSuu/0cZD91WKiA1BfRy 9htXuOtM62meZD9WCkxLGYqZLrXIfR+B7kvuCO6Q4shQkj6gSf8EvP0C22gbRzYu nV6dlCNqkbRElsBxspW8RyPe2wz6zsQ1kZNMLsYR8BcCdeAFqEiyfNdbaZMEDhDl cGjE5per9zX6sebY6HY0eAYqADyl2qSfmacltyfGjiMU5IaOyXaizdZwtzrJmnK5 9AljMFsI4l5TaVeBcv5SeFYaTR2JURvVe3WrRkkcgCfz5La0QVdIe1dXeCOfA8B1 w+qahpivWgVQ1aZKTY6xDEWbu/TmnjRYl1j4dy85AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrDsLV0GlfBN1BvmQ6Ro0kKqiFFowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyMWQyYjExLTE5OGEtNDE4Ny1iYWJlLTVlODk4ZjJhMTU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+ggDANBgkqhkiG9w0BAQsFAAOCAQEAepqhJ41mFb5JeagNwCLDrY2R 7/ea1ka23oE8DwFbWhl5Z6oXdakG00ixwFmr3+7DFFg8Le+yu0CXDx0v5qr9Qck+ mZgPc4DqQEg45Cn6vhX0qiUAxlgQn4IeG4H3ab7dVCI79jkwfNo0Ar4yMOf6kcBr 3eEChVQssHR3uH/cqYSaLcUgV0ZlB9VLXHAJkO8g21MRbi5dslJ0NQSoEQg9wu9X 7Eqf8LgJja++6NJSa5gjl4Nw1WGZ3XCsvj10wIzbwe+eE1pFFpjxI6XTH4QHnZpr abzvDAg75t15ICmM9dPEIxCvfXp4PgkB8Rrmvwcf/ZPf3FKz9Vaj09MMWd6kxA== -----END CERTIFICATE-----Generated at Fri Apr 26 02:46:53 2024 by rpki-client on console-ams.rpki-client.org