$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa File: c31b78e4-cc18-4088-ba24-402ac961b359.roa (raw, json) Hash identifier: PvImIs5dtI8vFKSwr8n3YEP9ySDNjTVvSgh4bSfuNb4= Subject key identifier: FA:CC:77:41:0F:79:91:C9:A0:19:AC:27:4E:2C:22:FB:86:93:CE:E5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2FEFB20E1570E367303821F9F38D37F0F16FD4E9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:9000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 06 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ef:b2:0e:15:70:e3:67:30:38:21:f9:f3:8d:37:f0:f1:6f:d4:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=baab964155364f45129b9a0b1d8400a91b38f2431cbc4240615a0613c4118e0c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7c:45:d3:33:a6:b4:97:ea:1a:6f:13:4e:c8: ba:90:4f:33:8b:26:41:3a:6c:73:0a:71:04:3a:29: 81:16:3b:28:b8:cb:6e:97:82:f2:a1:2a:99:aa:d7: 4b:50:e6:2e:82:c8:88:ab:4d:42:49:53:a1:1d:d2: 36:cc:1d:c9:3d:be:d5:aa:c8:f5:7c:f4:06:60:eb: 40:af:ad:df:a1:f4:2f:12:22:f7:e4:14:96:c1:42: b6:d5:8b:7b:3e:2a:0c:86:64:b2:35:8c:a7:50:0d: 89:c7:d4:b2:5a:4c:eb:a2:09:d6:66:b4:13:bf:27: be:62:c8:5b:24:21:6d:e4:2c:9f:12:d1:20:65:a3: 14:dc:1c:05:77:9e:13:ad:f0:4c:d2:ce:fc:85:8d: a7:3f:bb:99:a4:64:2a:00:a0:99:3d:b2:a0:2c:ed: 51:a2:a7:68:05:d4:eb:6a:a5:e9:f0:a8:8c:a1:33: db:63:e2:0e:43:5f:d9:4a:00:ee:fe:32:11:c0:32: bb:b5:cb:1f:52:7c:8d:bc:5e:a2:e2:f4:63:50:cf: 3e:fc:54:61:3d:a6:01:f2:6e:52:78:27:23:f2:08: 77:56:b0:aa:de:39:fe:90:7f:b8:d8:f1:b2:52:72: 0c:fb:f0:8a:ae:a9:dd:ff:4a:1e:b4:aa:ce:74:42: aa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CC:77:41:0F:79:91:C9:A0:19:AC:27:4E:2C:22:FB:86:93:CE:E5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000::/28 Signature Algorithm: sha256WithRSAEncryption 24:55:f2:47:a0:73:05:d0:fc:ac:d0:59:1b:37:96:1d:8d:0d: fc:d4:6f:6f:62:a2:e0:3f:eb:bd:54:a0:8c:8d:e5:26:aa:5a: 78:ba:51:df:84:d4:de:91:2c:8b:9f:44:a8:02:ff:4d:f7:1f: 24:f6:a4:ce:99:84:b5:6f:69:7f:b5:2c:6a:77:e8:6f:21:a1: 7a:1d:5e:88:ca:a6:06:e4:8f:90:09:4d:f0:07:6e:e7:36:2a: 45:c0:8e:86:ef:2f:e8:5f:5f:3b:49:8c:11:7e:1f:83:84:59: 93:71:87:eb:03:74:ea:5f:e1:03:8f:41:49:6c:69:6e:b0:36: 1d:ca:f8:3b:50:c6:06:e5:cb:97:ae:ac:bb:49:c0:09:fe:28: e7:5d:75:77:9b:a6:99:7c:c0:2c:25:93:b8:94:a9:84:9f:37: 1d:04:ea:e8:14:9e:22:39:b4:1e:53:58:91:18:90:8c:b7:04: 16:6a:30:e5:a9:79:5d:cc:2d:cd:dd:a2:e1:07:c2:c7:53:a2: 6c:d2:b7:42:86:97:3a:62:a3:37:24:51:b1:de:2b:6d:fc:f3: 5c:2f:69:59:3a:ec:25:2b:4a:db:d7:4f:b5:69:a7:cf:fb:ef: 4d:cf:9f:0e:ee:dc:d3:36:8a:df:d2:68:1b:25:fb:a6:b8:0b: cc:56:7b:d5 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUL++yDhVw42cwOCH584038PFv1OkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWFiOTY0MTU1MzY0ZjQ1MTI5YjlhMGIxZDg0MDBhOTFi MzhmMjQzMWNiYzQyNDA2MTVhMDYxM2M0MTE4ZTBjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGfEXTM6a0l+oabxNOyLqQTzOLJkE6bHMKcQQ6KYEWOyi4 y26XgvKhKpmq10tQ5i6CyIirTUJJU6Ed0jbMHck9vtWqyPV89AZg60Cvrd+h9C8S IvfkFJbBQrbVi3s+KgyGZLI1jKdQDYnH1LJaTOuiCdZmtBO/J75iyFskIW3kLJ8S 0SBloxTcHAV3nhOt8EzSzvyFjac/u5mkZCoAoJk9sqAs7VGip2gF1OtqpenwqIyh M9tj4g5DX9lKAO7+MhHAMru1yx9SfI28XqLi9GNQzz78VGE9pgHyblJ4JyPyCHdW sKreOf6Qf7jY8bJScgz78Iquqd3/Sh60qs50QqpDAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU+sx3QQ95kcmgGawnTiwi+4aTzuUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2MzMWI3OGU0LWNjMTgtNDA4OC1iYTI0LTQwMmFjOTYxYjM1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAJAAMA0GCSqGSIb3DQEBCwUAA4IBAQAkVfJHoHMF0Pys0FkbN5YdjQ38 1G9vYqLgP+u9VKCMjeUmqlp4ulHfhNTekSyLn0SoAv9N9x8k9qTOmYS1b2l/tSxq d+hvIaF6HV6IyqYG5I+QCU3wB27nNipFwI6G7y/oX187SYwRfh+DhFmTcYfrA3Tq X+EDj0FJbGlusDYdyvg7UMYG5cuXrqy7ScAJ/ijnXXV3m6aZfMAsJZO4lKmEnzcd BOroFJ4iObQeU1iRGJCMtwQWajDlqXldzC3N3aLhB8LHU6Js0rdChpc6YqM3JFGx 3itt/PNcL2lZOuwlK0rb10+1aafP++9Nz58O7tzTNorf0mgbJfumuAvMVnvV -----END CERTIFICATE-----Generated at Sun May 5 16:30:03 2024 by rpki-client on console-fra.rpki-client.org