$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd6e89df-6959-4545-8d62-85d63b3e89a6.roa File: dd6e89df-6959-4545-8d62-85d63b3e89a6.roa (raw, json) Hash identifier: 2J0Tc/3X+n3NrdKeJU07/5Jgafp0NPjkFYErzHOFeJU= Subject key identifier: EB:60:C5:B9:74:8B:67:3D:D4:50:CD:98:98:0A:31:F1:84:55:4F:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FC3A5B1916FE232E8CBD2A821FD2A79880B4BBC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd6e89df-6959-4545-8d62-85d63b3e89a6.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c3:a5:b1:91:6f:e2:32:e8:cb:d2:a8:21:fd:2a:79:88:0b:4b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=ac349c84ba82c87cbb3fb017ec0f31e3a5c105102a29c1034596ed3510782e6c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7f:94:b2:91:48:65:b2:90:d6:c6:93:7c:b7: 9c:6a:fa:b8:d3:3d:59:5a:66:66:58:0e:80:14:28: 20:0c:af:8f:40:74:38:cc:f8:5d:ba:d7:1a:6f:5f: f9:38:70:e8:30:79:9f:1e:7c:b3:f5:60:be:bd:dd: 89:c7:a2:bb:5f:e9:2e:ba:82:29:22:69:d0:65:a5: 87:7f:9f:87:d8:d3:3b:eb:7d:ce:aa:03:62:ac:2a: a9:33:8b:2f:44:91:b8:68:a7:a6:9d:c9:0c:62:af: 07:2c:14:93:d3:94:87:5b:c5:80:1a:24:1e:c7:b1: 5c:52:3d:7e:96:eb:06:cf:50:6c:46:0d:7e:34:d0: c7:e0:96:90:69:d2:2d:83:3d:79:a5:0d:eb:a3:41: eb:8d:1e:08:04:e7:72:8a:af:8b:98:cb:d9:10:f6: 69:2f:ad:12:0a:f2:bf:65:1c:37:5d:cb:a1:bc:c5: 7d:b9:3c:8a:66:b8:2b:9e:ac:31:59:b6:84:d5:1c: 37:e7:18:40:2b:a1:f3:25:bc:7a:ec:73:b1:5f:4f: f4:c6:a5:56:3d:d6:fa:95:3a:fb:ee:7f:28:8a:f8: f8:b4:4a:51:c4:62:ab:71:e7:39:a1:17:3f:42:b3: 87:0c:53:aa:f8:ad:c2:8c:3f:7c:25:ab:c6:43:8b: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:60:C5:B9:74:8B:67:3D:D4:50:CD:98:98:0A:31:F1:84:55:4F:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd6e89df-6959-4545-8d62-85d63b3e89a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7400::/40 Signature Algorithm: sha256WithRSAEncryption cb:fa:e0:31:71:7d:c8:42:dd:6a:d0:dd:bf:ad:0b:21:8d:d2: 7c:1a:b5:75:47:83:7b:aa:0f:6a:92:04:21:dd:bb:d5:e7:67: 53:3a:5f:5a:72:97:3b:ff:3c:14:82:1c:14:89:b1:a6:0e:d2: 9b:94:db:0c:db:7e:20:c1:a4:8e:d0:27:de:40:ed:72:d2:36: 0e:6f:48:30:cd:d5:6a:26:e0:5e:79:c2:5e:61:9c:d0:54:4b: eb:f2:d1:e1:65:7e:4f:fe:2f:b3:bd:bf:87:8c:81:48:b9:01: 1e:a3:a8:54:78:31:c0:5e:e8:f8:cd:d8:ed:52:78:03:a5:61: c1:49:6e:15:7c:69:90:7f:5d:3d:e5:6e:ec:0a:4b:42:34:86: 67:18:8b:16:52:9a:ac:a3:69:5f:45:fc:29:ed:1e:08:3f:f6: 71:71:15:30:34:6c:40:96:67:32:ff:30:19:5f:4d:d8:4f:1c: b2:f0:5f:e2:b5:eb:93:66:1c:35:95:b4:c2:96:98:c8:72:a9: b2:0f:4f:5b:51:8b:bc:f6:4d:be:d4:88:31:a9:84:be:3d:f1: 00:b6:8e:44:fa:da:49:c2:f4:76:ab:8a:cd:d3:09:4b:cd:0d: 8a:3a:f5:8f:75:6d:31:c6:36:36:87:93:81:fe:20:59:63:f2: 0a:86:85:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUf8OlsZFv4jLoy9KoIf0qeYgLS7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzM0OWM4NGJhODJjODdjYmIzZmIwMTdlYzBmMzFlM2E1 YzEwNTEwMmEyOWMxMDM0NTk2ZWQzNTEwNzgyZTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7f5SykUhlspDWxpN8t5xq+rjTPVlaZmZYDoAUKCAMr49A dDjM+F261xpvX/k4cOgweZ8efLP1YL693YnHortf6S66gikiadBlpYd/n4fY0zvr fc6qA2KsKqkziy9Ekbhop6adyQxirwcsFJPTlIdbxYAaJB7HsVxSPX6W6wbPUGxG DX400MfglpBp0i2DPXmlDeujQeuNHggE53KKr4uYy9kQ9mkvrRIK8r9lHDddy6G8 xX25PIpmuCuerDFZtoTVHDfnGEArofMlvHrsc7FfT/TGpVY91vqVOvvufyiK+Pi0 SlHEYqtx5zmhFz9Cs4cMU6r4rcKMP3wlq8ZDi3SnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU62DFuXSLZz3UUM2YmAox8YRVT+UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkNmU4OWRmLTY5NTktNDU0NS04ZDYyLTg1ZDYzYjNlODlhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/ydDANBgkqhkiG9w0BAQsFAAOCAQEAy/rgMXF9yELdatDdv60LIY3S fBq1dUeDe6oPapIEId271ednUzpfWnKXO/88FIIcFImxpg7Sm5TbDNt+IMGkjtAn 3kDtctI2Dm9IMM3VaibgXnnCXmGc0FRL6/LR4WV+T/4vs72/h4yBSLkBHqOoVHgx wF7o+M3Y7VJ4A6VhwUluFXxpkH9dPeVu7ApLQjSGZxiLFlKarKNpX0X8Ke0eCD/2 cXEVMDRsQJZnMv8wGV9N2E8csvBf4rXrk2YcNZW0wpaYyHKpsg9PW1GLvPZNvtSI MamEvj3xALaORPraScL0dquKzdMJS80Nijr1j3VtMcY2NoeTgf4gWWPyCoaFfw== -----END CERTIFICATE-----Generated at Thu May 2 17:41:21 2024 by rpki-client on console-fra.rpki-client.org