$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8c21db8-4506-4b8c-8481-4f1698c10adc.roa File: e8c21db8-4506-4b8c-8481-4f1698c10adc.roa (raw, json) Hash identifier: aKW+2XcU6PxeAl4SKEgYQvIweXhc8iSH4/Pd5zYhQxE= Subject key identifier: D5:02:C7:04:4C:7C:3F:93:44:04:A8:84:8F:4B:94:07:96:52:A8:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5466CD08E3A66831D2B87C047D40F57F5B813E4B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8c21db8-4506-4b8c-8481-4f1698c10adc.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f69:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:66:cd:08:e3:a6:68:31:d2:b8:7c:04:7d:40:f5:7f:5b:81:3e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=448a99943fac7a1d39d563ff6ca225b65eae6046d7beb1675356d83072a062ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:89:65:64:b0:86:21:d6:8e:30:4c:ea:e3:37: 64:58:f5:02:cc:9a:0c:c2:d7:51:f4:88:e9:79:91: 32:53:db:d6:a2:c7:41:56:35:26:b8:ba:c9:d9:c2: 00:f0:42:e0:d7:93:55:22:7f:d2:0a:aa:c1:04:54: 6c:09:d0:4a:0c:77:69:81:df:e4:bd:b8:2d:3d:7b: d8:55:53:09:28:d7:0f:05:79:f4:be:c7:5a:da:5c: ab:0f:53:73:02:94:69:87:3f:cb:62:7c:91:94:34: 5c:d3:48:35:94:8c:19:6e:2b:f4:84:38:b3:58:73: 5f:9b:c8:51:93:54:28:55:7a:aa:75:45:fb:19:9d: 64:82:94:21:9f:8b:0f:66:2c:be:1d:3d:89:a8:16: 6b:a7:82:dc:5d:41:4a:07:b5:a5:bf:44:35:e2:01: 77:cf:17:87:e5:2f:36:98:c5:2f:25:0d:c4:46:9a: 69:64:44:27:09:7c:fe:e1:72:84:c6:12:71:6f:6f: ba:72:0e:5f:45:e3:7a:2d:e9:aa:94:38:73:97:2e: ce:fe:64:6b:91:eb:11:08:7b:ac:86:08:5f:cc:15: 3b:87:36:6c:78:68:49:3d:d3:ce:09:74:bb:79:af: 34:db:84:f0:53:73:59:e1:17:9e:8f:7c:d2:5b:d5: 38:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:02:C7:04:4C:7C:3F:93:44:04:A8:84:8F:4B:94:07:96:52:A8:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8c21db8-4506-4b8c-8481-4f1698c10adc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:8000::/39 Signature Algorithm: sha256WithRSAEncryption 1e:73:b8:cb:fc:9c:9f:f3:2e:ee:40:10:a0:59:ba:6e:a4:fd: 6c:0f:6b:84:06:3e:f7:7d:b0:91:96:94:24:0a:49:c7:20:61: 9e:65:e8:21:f4:3c:23:eb:e2:7b:22:cc:15:99:b1:05:82:c7: a9:18:d3:ab:d2:ca:b3:32:da:ef:69:c2:e5:09:d6:40:e1:ef: 95:1e:b4:8b:3d:7a:3e:2b:b1:21:b2:6c:ba:c7:ef:b6:df:b8: c1:68:eb:37:94:02:4c:ec:a7:b4:5a:ba:68:db:8c:e7:27:1f: 53:66:1e:48:7e:c5:9e:7f:ec:51:9f:8a:3b:b4:d5:d9:77:df: 7d:35:d5:65:cb:e1:b4:89:39:0f:cd:20:ad:df:34:03:ce:b4: 6d:39:5d:74:ec:27:da:4a:be:82:5a:11:c8:05:cc:96:e2:d4: f0:3d:e2:01:5d:2f:50:d1:79:3e:05:06:00:bd:90:04:cb:d5: 9f:ae:6d:f6:a2:a8:8d:8a:9e:d6:05:df:86:ba:cf:21:ca:78: 84:e6:89:b4:ba:06:3c:7f:03:42:5d:93:d6:31:dd:a4:05:eb: 13:5b:39:0c:21:b9:d3:03:c7:9f:1c:d6:28:0f:61:b3:bd:64: 5a:15:66:b0:96:5b:f0:f7:c7:3d:d6:58:46:91:15:4e:60:e7: ae:d2:47:8d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVGbNCOOmaDHSuHwEfUD1f1uBPkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDhhOTk5NDNmYWM3YTFkMzlkNTYzZmY2Y2EyMjViNjVl YWU2MDQ2ZDdiZWIxNjc1MzU2ZDgzMDcyYTA2MmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgiWVksIYh1o4wTOrjN2RY9QLMmgzC11H0iOl5kTJT29ai x0FWNSa4usnZwgDwQuDXk1Uif9IKqsEEVGwJ0EoMd2mB3+S9uC09e9hVUwko1w8F efS+x1raXKsPU3MClGmHP8tifJGUNFzTSDWUjBluK/SEOLNYc1+byFGTVChVeqp1 RfsZnWSClCGfiw9mLL4dPYmoFmungtxdQUoHtaW/RDXiAXfPF4flLzaYxS8lDcRG mmlkRCcJfP7hcoTGEnFvb7pyDl9F43ot6aqUOHOXLs7+ZGuR6xEIe6yGCF/MFTuH Nmx4aEk9084JdLt5rzTbhPBTc1nhF56PfNJb1TiNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1QLHBEx8P5NEBKiEj0uUB5ZSqEAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4YzIxZGI4LTQ1MDYtNGI4Yy04NDgxLTRmMTY5OGMxMGFkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB9pgDANBgkqhkiG9w0BAQsFAAOCAQEAHnO4y/ycn/Mu7kAQoFm6bqT9 bA9rhAY+932wkZaUJApJxyBhnmXoIfQ8I+vieyLMFZmxBYLHqRjTq9LKszLa72nC 5QnWQOHvlR60iz16PiuxIbJsusfvtt+4wWjrN5QCTOyntFq6aNuM5ycfU2YeSH7F nn/sUZ+KO7TV2XfffTXVZcvhtIk5D80grd80A860bTlddOwn2kq+gloRyAXMluLU 8D3iAV0vUNF5PgUGAL2QBMvVn65t9qKojYqe1gXfhrrPIcp4hOaJtLoGPH8DQl2T 1jHdpAXrE1s5DCG50wPHnxzWKA9hs71kWhVmsJZb8PfHPdZYRpEVTmDnrtJHjQ== -----END CERTIFICATE-----Generated at Thu May 2 00:52:15 2024 by rpki-client on console-ams.rpki-client.org