$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: 7Y2xSB+FC35idzmrVEngXu8uS6TjnpmP6yg3tpm4LAA= Subject key identifier: 5A:2B:A6:9B:32:32:2D:92:12:24:3E:58:98:F3:9D:97:A4:42:DA:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4CF75DEA3799C7E82BD814C873220F23A3002879 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Mon 03 Jun 2024 00:00:00 +0000 ROA not before: Mon 03 Jun 2024 00:00:00 +0000 ROA not after: Mon 08 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Jun 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:f7:5d:ea:37:99:c7:e8:2b:d8:14:c8:73:22:0f:23:a3:00:28:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 3 00:00:00 2024 GMT Not After : Jul 8 23:59:59 2024 GMT Subject: serialNumber=4f64973e6b01f6d44fe4202c3a92cbaba6f732f58030dc9a29b08c53b6d74b0e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6f:da:bf:54:34:61:08:7d:08:da:94:1b:f9: 47:d5:85:b3:41:a2:80:c7:51:49:71:2e:02:23:23: ff:02:4a:75:c9:f4:90:89:c0:86:18:88:77:c3:74: 53:89:8b:d8:98:ba:ce:26:de:46:91:c6:b9:5e:bf: e5:f3:06:ef:b8:3b:c6:53:df:78:10:17:45:b2:51: e5:db:5e:c2:d2:e3:34:ca:03:5d:06:b2:33:a5:24: be:a5:a0:24:41:d6:be:d1:bb:75:05:d9:8e:c6:69: 53:1d:94:dd:a3:c4:3d:3b:69:d4:4f:b3:ab:91:32: 2a:f5:0f:36:ce:0b:8a:3a:16:63:89:56:ca:80:fc: be:43:d8:6f:9a:80:db:aa:f9:53:51:64:28:47:37: 14:aa:93:40:47:bd:85:90:a2:74:fa:12:62:f9:1b: ec:7c:4c:c6:f2:b8:63:55:86:6d:e8:1b:d5:37:b2: c5:07:04:46:94:09:db:7d:ff:f4:66:9c:ad:11:08: e5:bb:fa:d5:51:31:eb:6a:7e:1e:44:1e:32:70:45: f9:20:7b:75:6b:c0:a7:38:88:63:b2:9c:ae:ef:59: 6a:3c:ca:47:0c:19:e0:41:a0:b6:ed:30:ab:30:9b: 25:4a:f2:99:3c:14:60:e2:73:66:8d:6d:c8:43:9e: 49:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:2B:A6:9B:32:32:2D:92:12:24:3E:58:98:F3:9D:97:A4:42:DA:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 82:76:ff:e8:31:2d:1d:0f:7e:f2:71:d5:61:88:7d:a6:9f:ac: 22:a7:ad:b1:38:2d:ac:bb:27:c0:63:44:c8:cb:b0:3d:16:bb: 56:09:30:60:03:7d:b1:dc:62:ec:f6:65:e0:99:65:a6:94:b7: 32:2c:40:52:6e:75:7c:dd:a8:43:80:0f:2d:10:ca:82:92:f6: 2a:b4:52:41:9c:f7:84:c7:a7:66:94:21:91:5c:db:60:ee:3d: 7a:e7:73:7f:5e:1e:85:78:42:a8:27:92:17:8e:5a:f7:c8:ec: 4a:71:b9:6a:f6:84:54:52:08:e3:e6:99:b3:da:19:4b:0d:a3: 63:1a:50:da:c7:98:14:84:d3:b1:79:1f:ac:2e:77:f5:f2:d8: 9f:67:9f:d1:df:a4:17:c3:c3:a6:cd:94:e1:89:57:f4:4b:ff: 43:bc:89:4f:39:e5:0d:18:5f:af:af:36:92:df:54:ac:b9:1f: a6:af:81:8c:ca:83:94:c7:d3:58:ff:34:7e:0a:5e:f1:d6:ac: ae:e2:78:b8:ef:5a:07:13:ff:a1:c0:01:1e:2f:8a:00:4b:4f: 99:91:17:42:99:6f:4b:22:cf:2b:e4:cb:94:05:c1:b8:7b:1e: 62:b9:e0:22:45:7d:7c:1d:1f:4d:0f:44:c0:39:92:3e:4c:32: bd:fc:23:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTPdd6jeZx+gr2BTIcyIPI6MAKHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNjAzMDAwMDAwWhcNMjQwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjY0OTczZTZiMDFmNmQ0NGZlNDIwMmMzYTkyY2JhYmE2 ZjczMmY1ODAzMGRjOWEyOWIwOGM1M2I2ZDc0YjBlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbb9q/VDRhCH0I2pQb+UfVhbNBooDHUUlxLgIjI/8CSnXJ 9JCJwIYYiHfDdFOJi9iYus4m3kaRxrlev+XzBu+4O8ZT33gQF0WyUeXbXsLS4zTK A10GsjOlJL6loCRB1r7Ru3UF2Y7GaVMdlN2jxD07adRPs6uRMir1DzbOC4o6FmOJ VsqA/L5D2G+agNuq+VNRZChHNxSqk0BHvYWQonT6EmL5G+x8TMbyuGNVhm3oG9U3 ssUHBEaUCdt9//RmnK0RCOW7+tVRMetqfh5EHjJwRfkge3VrwKc4iGOynK7vWWo8 ykcMGeBBoLbtMKswmyVK8pk8FGDic2aNbchDnknXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWiummzIyLZISJD5YmPOdl6RC2iowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAIJ2/+gxLR0PfvJx1WGIfaaf rCKnrbE4Lay7J8BjRMjLsD0Wu1YJMGADfbHcYuz2ZeCZZaaUtzIsQFJudXzdqEOA Dy0QyoKS9iq0UkGc94THp2aUIZFc22DuPXrnc39eHoV4QqgnkheOWvfI7EpxuWr2 hFRSCOPmmbPaGUsNo2MaUNrHmBSE07F5H6wud/Xy2J9nn9HfpBfDw6bNlOGJV/RL /0O8iU855Q0YX6+vNpLfVKy5H6avgYzKg5TH01j/NH4KXvHWrK7ieLjvWgcT/6HA AR4vigBLT5mRF0KZb0sizyvky5QFwbh7HmK54CJFfXwdH00PRMA5kj5MMr38I/A= -----END CERTIFICATE-----Generated at Sun Jun 16 17:32:32 2024 by rpki-client on console-ams.rpki-client.org