$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fae3eabc-4cd1-446b-b61d-51ce31c26fb8.roa File: fae3eabc-4cd1-446b-b61d-51ce31c26fb8.roa (raw, json) Hash identifier: jZ7vsxEOFA8GarJyuNGNZkGahFtpy/1Y1cMn1+TNBaA= Subject key identifier: 97:13:8F:1D:85:9B:9C:EC:93:13:52:20:02:B7:C6:18:55:75:17:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AA230CFED87EF0C6F88759F79CB3BD6D5ACF8B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fae3eabc-4cd1-446b-b61d-51ce31c26fb8.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a2:30:cf:ed:87:ef:0c:6f:88:75:9f:79:cb:3b:d6:d5:ac:f8:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=133e0d8561dc8190d6bddc12c9d405687e1ac2e79c39991a780497a1e8ac0e95, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:88:0a:4c:0d:16:48:95:82:5e:6a:23:47:a9: d1:f8:c7:84:b8:c4:44:21:07:a1:f3:90:cf:16:a2: 9f:db:99:df:74:11:61:a9:63:10:c5:62:0a:e1:7b: 24:9c:6a:d2:9f:cc:d2:03:aa:4e:59:99:02:ce:dc: 37:2f:53:91:7e:9a:6f:c9:b9:e4:12:d2:11:79:8b: d7:45:ff:f1:90:c2:4f:35:8c:f6:79:93:c7:cf:1b: d6:e5:75:ec:ed:15:a5:79:92:01:44:9d:c4:ce:b9: b7:06:45:08:d1:e5:23:e8:4c:f5:16:03:7b:97:29: 68:47:e5:dd:ce:6d:ab:90:af:9d:b2:57:eb:b1:bc: 17:2b:c0:62:b5:50:6b:47:84:6f:1d:5d:f9:6e:fc: 44:36:89:56:4d:d7:04:24:a6:7d:a9:20:10:36:25: 78:97:40:1f:3c:00:72:22:af:3b:86:7d:ca:d8:a6: 75:91:56:45:47:47:cd:48:4a:76:03:48:b5:37:d4: 87:c5:ee:14:24:f3:2c:64:78:c4:5c:43:5b:3d:bc: 44:5d:35:8a:fa:b2:69:70:55:36:f5:44:5e:e5:8b: 2e:99:ea:5d:a6:53:8c:5f:d8:cb:05:64:1f:a5:43: 68:9d:e8:cc:75:6b:24:56:13:f0:1c:b6:b5:19:66: e6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:13:8F:1D:85:9B:9C:EC:93:13:52:20:02:B7:C6:18:55:75:17:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fae3eabc-4cd1-446b-b61d-51ce31c26fb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:c000::/40 Signature Algorithm: sha256WithRSAEncryption 3a:bd:a8:a6:e6:aa:19:7e:5c:73:60:2f:02:c0:18:ed:02:83: f6:51:e6:a7:3a:1f:ac:2b:6b:4e:8d:a6:ab:55:9c:70:d2:c2: 70:e2:39:e8:11:25:59:a6:0f:3b:4a:ee:11:6f:f4:cf:db:ac: 87:6e:4a:6e:b9:a2:ae:65:d7:1c:32:46:f5:0d:3c:d9:fb:7e: 4f:ed:a1:fe:d4:e5:d2:19:69:f4:4b:10:07:36:1d:2f:31:f7: ce:18:c9:43:16:7b:67:7c:77:17:d3:74:d4:07:43:21:21:e2: 02:3d:dc:d4:15:30:bf:75:12:29:1f:05:0c:62:f7:db:2e:10: fc:09:18:90:1f:eb:0b:de:33:2c:d2:c6:53:d0:66:a1:c2:62: c4:b7:08:d6:d9:60:f8:7d:d9:7b:2c:51:9e:f5:92:df:6c:4b: 3e:ff:ca:2a:93:89:b3:42:67:52:04:cb:85:c0:c8:83:4f:13: 9b:a0:bf:b4:67:8d:10:75:dc:7d:0d:c6:bd:f0:e8:3c:8a:c5: ce:5d:9f:45:08:82:d9:a8:cf:59:81:8d:b6:84:42:3c:01:9f: a9:21:91:2c:10:96:b3:d6:30:df:5e:56:58:4c:92:78:b0:7d: 34:5e:2b:8a:bf:df:84:6b:3c:f5:d0:8a:bf:dc:46:e1:da:cb: 15:74:12:9d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSqIwz+2H7wxviHWfecs71tWs+LMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzNlMGQ4NTYxZGM4MTkwZDZiZGRjMTJjOWQ0MDU2ODdl MWFjMmU3OWMzOTk5MWE3ODA0OTdhMWU4YWMwZTk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChiApMDRZIlYJeaiNHqdH4x4S4xEQhB6HzkM8Wop/bmd90 EWGpYxDFYgrheyScatKfzNIDqk5ZmQLO3DcvU5F+mm/JueQS0hF5i9dF//GQwk81 jPZ5k8fPG9bldeztFaV5kgFEncTOubcGRQjR5SPoTPUWA3uXKWhH5d3ObauQr52y V+uxvBcrwGK1UGtHhG8dXflu/EQ2iVZN1wQkpn2pIBA2JXiXQB88AHIirzuGfcrY pnWRVkVHR81ISnYDSLU31IfF7hQk8yxkeMRcQ1s9vERdNYr6smlwVTb1RF7liy6Z 6l2mU4xf2MsFZB+lQ2id6Mx1ayRWE/ActrUZZuaNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlxOPHYWbnOyTE1IgArfGGFV1F+cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhZTNlYWJjLTRjZDEtNDQ2Yi1iNjFkLTUxY2UzMWMyNmZiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6wDANBgkqhkiG9w0BAQsFAAOCAQEAOr2opuaqGX5cc2AvAsAY7QKD 9lHmpzofrCtrTo2mq1WccNLCcOI56BElWaYPO0ruEW/0z9ush25KbrmirmXXHDJG 9Q082ft+T+2h/tTl0hlp9EsQBzYdLzH3zhjJQxZ7Z3x3F9N01AdDISHiAj3c1BUw v3USKR8FDGL32y4Q/AkYkB/rC94zLNLGU9BmocJixLcI1tlg+H3ZeyxRnvWS32xL Pv/KKpOJs0JnUgTLhcDIg08Tm6C/tGeNEHXcfQ3GvfDoPIrFzl2fRQiC2ajPWYGN toRCPAGfqSGRLBCWs9Yw315WWEySeLB9NF4rir/fhGs89dCKv9xG4drLFXQSnQ== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:26 2024 by rpki-client on console-ams.rpki-client.org