$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa File: abe42905-b032-4c0a-b08a-22ef7222b003.roa (raw, json) Hash identifier: Av66HW0XS9OyjQmU508dT6tMoGUb9eHpChR8vHMLY/k= Subject key identifier: 0B:AA:6B:87:BE:11:02:F3:BE:15:8B:CB:70:6F:FC:88:EC:6A:5D:39 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 75073543E07BA5EC54F636D9D5E606A759891A93 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:8400::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:07:35:43:e0:7b:a5:ec:54:f6:36:d9:d5:e6:06:a7:59:89:1a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=616fc102744fa9d3192a4fdffc1387ace0bbe33fa5dd6aa6d10a9a378ba20a44, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:85:63:40:d4:5b:95:b4:fa:2f:61:b2:9f: 44:b6:38:f4:d2:1e:eb:58:68:9e:41:26:3f:3c:be: 86:28:8e:67:ab:46:5e:2e:1b:b9:7e:cf:c8:f6:47: 5f:b9:cd:06:d2:4e:3d:86:d6:16:27:6d:e1:ab:d1: da:8e:1c:6e:2f:76:31:f1:5c:88:90:a6:ff:07:84: 72:23:ac:03:37:ed:f8:4a:ca:4d:69:a7:ca:53:28: 14:22:e4:34:ee:b5:89:c1:0f:59:95:ad:67:ba:fd: 44:57:88:33:49:ab:92:0c:41:33:d7:d8:59:fb:7f: 7a:f3:1e:0d:63:94:f4:a0:64:c7:68:0c:49:a6:43: 0a:74:eb:1d:9a:76:de:4e:38:b4:e8:1f:1e:33:48: 24:e9:27:60:2d:1b:1d:76:e8:99:0e:49:22:0d:86: d3:58:fe:06:c1:53:14:99:53:70:0c:27:a7:16:92: 82:c9:9a:4e:1c:4a:9f:59:8d:c4:d9:51:87:6e:da: d0:cd:03:0e:c7:17:0e:87:42:4d:a3:a3:2d:81:72: 15:e3:c7:0c:b6:b8:9c:82:3f:3c:f0:38:c2:4e:51: b2:99:db:54:06:98:64:a8:ac:c4:07:38:e8:3d:45: a8:18:9b:e9:f8:b8:37:d9:cf:39:45:72:b7:7b:7e: 8b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AA:6B:87:BE:11:02:F3:BE:15:8B:CB:70:6F:FC:88:EC:6A:5D:39 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/abe42905-b032-4c0a-b08a-22ef7222b003.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8400::/39 Signature Algorithm: sha256WithRSAEncryption 32:e6:af:1d:d2:00:13:f2:76:d2:18:50:4f:74:1e:10:80:84: 83:78:31:d4:77:29:71:86:47:80:c0:ff:e3:01:9d:b5:9e:b9: 0c:bb:0a:d6:75:42:64:89:d6:58:8b:4c:cc:5a:4e:4c:5e:25: 55:82:4f:1e:af:26:82:1f:4c:a3:3a:e8:42:c6:db:d5:96:09: bd:37:77:7b:11:1c:25:96:4d:5e:13:04:a2:84:34:a1:b4:ea: ab:3a:1a:af:10:5f:92:e8:e4:04:f2:37:2d:c3:d4:c6:84:71: 33:eb:57:ec:6f:a9:84:42:d3:8a:34:18:32:a9:88:ae:0b:4b: f8:09:1e:35:98:0f:0a:f8:46:57:56:53:58:c8:b1:25:7c:70: 4f:4e:c3:5b:bd:bd:8c:a4:e3:7f:63:cd:c0:fd:de:9a:9c:ab: 8f:57:0d:b6:12:8c:b8:09:58:13:c0:2b:13:20:e4:88:34:3d: 08:97:71:5c:28:2d:13:0c:cf:23:85:3a:3b:eb:8c:34:9f:b8: da:e1:38:e3:bc:88:26:a6:67:cd:ef:91:e1:59:de:23:7f:68: 7c:d1:b6:6e:ea:88:69:0d:60:68:a6:ba:71:8d:7a:0d:b0:b1: 7b:08:da:79:90:ad:c8:5d:dd:fd:04:fa:33:d7:3f:a6:d0:81: 00:97:fa:cb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdQc1Q+B7pexU9jbZ1eYGp1mJGpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTZmYzEwMjc0NGZhOWQzMTkyYTRmZGZmYzEzODdhY2Uw YmJlMzNmYTVkZDZhYTZkMTBhOWEzNzhiYTIwYTQ0MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/8oVjQNRblbT6L2Gyn0S2OPTSHutYaJ5BJj88voYojmer Rl4uG7l+z8j2R1+5zQbSTj2G1hYnbeGr0dqOHG4vdjHxXIiQpv8HhHIjrAM37fhK yk1pp8pTKBQi5DTutYnBD1mVrWe6/URXiDNJq5IMQTPX2Fn7f3rzHg1jlPSgZMdo DEmmQwp06x2adt5OOLToHx4zSCTpJ2AtGx126JkOSSINhtNY/gbBUxSZU3AMJ6cW koLJmk4cSp9ZjcTZUYdu2tDNAw7HFw6HQk2joy2BchXjxwy2uJyCPzzwOMJOUbKZ 21QGmGSorMQHOOg9RagYm+n4uDfZzzlFcrd7fosFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUC6prh74RAvO+FYvLcG/8iOxqXTkwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2FiZTQyOTA1LWIwMzItNGMwYS1iMDhhLTIyZWY3MjIyYjAwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AhDANBgkqhkiG9w0BAQsFAAOCAQEAMuavHdIAE/J20hhQT3QeEICE g3gx1HcpcYZHgMD/4wGdtZ65DLsK1nVCZInWWItMzFpOTF4lVYJPHq8mgh9Mozro Qsbb1ZYJvTd3exEcJZZNXhMEooQ0obTqqzoarxBfkujkBPI3LcPUxoRxM+tX7G+p hELTijQYMqmIrgtL+AkeNZgPCvhGV1ZTWMixJXxwT07DW729jKTjf2PNwP3empyr j1cNthKMuAlYE8ArEyDkiDQ9CJdxXCgtEwzPI4U6O+uMNJ+42uE447yIJqZnze+R 4VneI39ofNG2buqIaQ1gaKa6cY16DbCxewjaeZCtyF3d/QT6M9c/ptCBAJf6yw== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:44 2024 by rpki-client on console-fra.rpki-client.org