$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa File: d3720b08-99f6-4690-a4ae-55aae1b75988.roa (raw, json) Hash identifier: CWWytClvRkDqjfmlXGE/mUF6mVsxppIo746eCWkZJic= Subject key identifier: F1:4C:39:23:86:08:F2:3C:B4:E1:E3:CF:FA:7A:11:98:69:07:5E:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1560A40CBFC9B758129525C2BF98D82F38389B9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:60:a4:0c:bf:c9:b7:58:12:95:25:c2:bf:98:d8:2f:38:38:9b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=39d174b30260d5bb4bb3c10982ccdbe687e9a9db2356d04ab15dc9d24ef8f5d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1f:8d:2f:f8:65:23:09:b0:bd:4c:5c:c1:7b: 79:5d:37:ac:e1:f4:db:47:cf:83:0f:3f:e8:fc:a7: 43:86:ce:eb:46:f6:48:28:59:f6:cf:c6:cf:6c:3e: 71:f1:a6:6c:75:68:49:b3:4c:88:54:23:57:26:65: 97:eb:b0:15:12:95:d0:56:4f:06:c4:1d:e9:86:b6: 04:ab:a1:2b:82:12:63:bf:ea:7f:c1:98:79:6a:5e: d5:ef:3a:27:33:3f:5f:cb:c7:3c:95:bd:07:10:36: 65:db:c6:2c:2c:69:43:62:ce:86:19:68:c7:17:fd: b6:c2:ac:48:8f:ba:ea:fb:a1:3f:03:32:df:d8:7c: 29:74:e8:ef:d3:c2:40:99:05:e0:ea:e0:28:ef:f7: dd:a5:0d:39:8d:39:ca:f9:50:37:b3:f7:68:45:3f: 56:f8:a7:d6:cc:81:ae:db:25:4d:25:ae:92:dd:de: 9a:1a:0c:1e:f2:8d:31:bc:69:55:c9:d8:86:ff:94: ff:97:c6:fa:fa:49:a9:e0:1e:11:ff:b2:9c:69:f6: d1:da:c2:1f:98:e1:b9:17:43:0e:f8:6c:6d:12:c5: 64:7f:3d:84:00:fb:b7:57:fa:8f:a3:c4:18:ea:d2: 6c:9e:47:2f:9a:4b:51:ec:52:e9:da:92:62:15:07: 49:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4C:39:23:86:08:F2:3C:B4:E1:E3:CF:FA:7A:11:98:69:07:5E:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:6000::/40 Signature Algorithm: sha256WithRSAEncryption 63:53:6e:8b:4f:b5:cb:ee:3a:c6:84:0d:bb:8b:56:95:7b:de: 8c:06:75:61:30:93:0b:67:70:aa:ec:cf:80:5b:9b:48:7b:72: 43:fd:79:50:8a:4a:42:8b:b8:0b:86:9f:1a:d9:1e:86:0b:59: 1b:c1:87:c0:62:05:56:be:37:39:16:f7:f1:8e:35:e3:b0:d9: 0c:f6:f0:9a:e5:4b:4c:90:d4:fc:12:55:d0:66:3d:81:f5:6a: 9b:5b:2a:00:7e:d1:c5:1c:de:25:6c:58:57:e3:eb:fb:4f:2a: fb:74:27:e0:1a:06:46:8c:c4:86:b2:f7:a0:45:45:59:92:fd: e1:8c:33:6c:f8:de:f5:83:9e:d9:91:c0:48:aa:fa:2b:73:81: 65:c9:3f:e2:3e:eb:6c:58:d9:c2:5f:40:bc:f3:7d:ec:4a:4b: f1:13:52:db:88:1b:82:2e:36:04:3a:c1:b2:2f:ab:94:77:8c: a3:b9:e8:17:0d:3c:be:aa:cc:11:53:ef:6f:8a:53:f3:f8:8e: a5:8f:5f:b2:1a:2c:66:d6:2e:9a:3b:37:ba:c4:22:32:7a:92: 39:00:9a:95:2a:cc:b3:6b:e8:35:2d:84:83:41:cc:b2:8f:79: 8c:de:fb:3e:b3:1a:16:52:37:3d:9c:3a:51:a5:59:c4:8d:6e: a8:28:4f:a8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFWCkDL/Jt1gSlSXCv5jYLzg4m5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWQxNzRiMzAyNjBkNWJiNGJiM2MxMDk4MmNjZGJlNjg3 ZTlhOWRiMjM1NmQwNGFiMTVkYzlkMjRlZjhmNWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3H40v+GUjCbC9TFzBe3ldN6zh9NtHz4MPP+j8p0OGzutG 9kgoWfbPxs9sPnHxpmx1aEmzTIhUI1cmZZfrsBUSldBWTwbEHemGtgSroSuCEmO/ 6n/BmHlqXtXvOiczP1/LxzyVvQcQNmXbxiwsaUNizoYZaMcX/bbCrEiPuur7oT8D Mt/YfCl06O/TwkCZBeDq4Cjv992lDTmNOcr5UDez92hFP1b4p9bMga7bJU0lrpLd 3poaDB7yjTG8aVXJ2Ib/lP+Xxvr6SangHhH/spxp9tHawh+Y4bkXQw74bG0SxWR/ PYQA+7dX+o+jxBjq0myeRy+aS1HsUunakmIVB0lFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8Uw5I4YI8jy04ePP+noRmGkHXuMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNzIwYjA4LTk5ZjYtNDY5MC1hNGFlLTU1YWFlMWI3NTk4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1YDANBgkqhkiG9w0BAQsFAAOCAQEAY1Nui0+1y+46xoQNu4tWlXve jAZ1YTCTC2dwquzPgFubSHtyQ/15UIpKQou4C4afGtkehgtZG8GHwGIFVr43ORb3 8Y4147DZDPbwmuVLTJDU/BJV0GY9gfVqm1sqAH7RxRzeJWxYV+Pr+08q+3Qn4BoG RozEhrL3oEVFWZL94YwzbPje9YOe2ZHASKr6K3OBZck/4j7rbFjZwl9AvPN97EpL 8RNS24gbgi42BDrBsi+rlHeMo7noFw08vqrMEVPvb4pT8/iOpY9fshosZtYumjs3 usQiMnqSOQCalSrMs2voNS2Eg0HMso95jN77PrMaFlI3PZw6UaVZxI1uqChPqA== -----END CERTIFICATE-----Generated at Thu May 2 11:33:25 2024 by rpki-client on console-fra.rpki-client.org