$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d445e728-d44c-4756-b75c-84a184a73fca.roa File: d445e728-d44c-4756-b75c-84a184a73fca.roa (raw, json) Hash identifier: OTTL5QaGppdzne6utPdQO0wyerxucgqp7u56WILqiU4= Subject key identifier: 88:12:09:A2:E0:42:6A:72:22:8E:99:F5:C9:02:C7:0B:6C:9C:82:48 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 3373225BB324AA0BF9203CA5DCCD6D0C7776AA12 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d445e728-d44c-4756-b75c-84a184a73fca.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:73:22:5b:b3:24:aa:0b:f9:20:3c:a5:dc:cd:6d:0c:77:76:aa:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=88059d2d2d609b3f565b5517e9eaf28ff1f202b94f5be937c61578eee4f7a0e5, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:28:e0:1a:77:64:54:7b:e5:22:89:dc:e9:b8: 23:ed:fd:65:59:d4:54:3a:6f:97:ef:4a:07:43:ad: c6:53:25:08:3c:3f:b5:ff:9a:15:2a:60:b4:49:62: 33:2c:d4:d3:52:a9:14:03:5e:17:4f:ca:3f:d8:ea: f6:fe:17:92:cb:d5:25:1c:8d:4c:1e:ed:8c:cc:33: b3:55:d5:d5:3b:a9:b2:f2:0f:b6:74:56:b3:53:57: 2d:08:78:73:51:e2:34:e0:75:34:f5:1f:02:f9:1f: f7:3c:92:a8:e6:06:02:62:12:10:c2:30:a4:ae:1a: fc:2b:aa:5d:ec:c8:aa:fc:f2:bc:8c:b3:2c:56:c0: 50:ad:fe:65:10:23:66:c5:e3:70:56:ff:91:09:0f: f9:77:d0:dd:d6:f6:58:95:30:30:83:0b:6b:a8:58: 8e:cd:18:f8:1a:25:ea:ea:8e:4b:f6:ca:97:a9:b6: 93:26:27:a3:f8:ed:3f:94:c6:ad:8d:d0:9c:42:1e: 3f:de:a2:bc:19:6b:dc:73:d4:ca:1d:2c:a7:dc:a5: a3:ba:da:19:5f:00:cc:b0:4f:20:1b:bf:ed:30:ec: cb:5e:00:21:4c:63:4b:e1:47:1c:71:10:ef:cd:5e: 29:2e:6a:97:a1:a3:89:86:c9:5c:3c:5a:ef:57:e0: b7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:12:09:A2:E0:42:6A:72:22:8E:99:F5:C9:02:C7:0B:6C:9C:82:48 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/d445e728-d44c-4756-b75c-84a184a73fca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption cc:5a:21:34:9d:7c:4a:c8:78:e5:49:6d:56:6b:31:73:df:d0: 94:04:da:d7:8e:1e:59:57:0c:46:97:98:03:5d:a0:8c:dc:ed: 1c:61:1a:10:35:e0:25:77:5d:57:71:6e:0d:80:98:85:a1:2e: 16:84:31:45:0e:17:3e:57:e4:f1:da:07:e6:02:0b:10:54:71: e4:0e:b1:99:92:f6:83:1c:21:79:59:42:e7:98:3c:1c:c1:1c: 8c:b2:0e:d0:3b:06:d0:1c:5e:b4:64:cd:1f:aa:01:92:f1:1b: 0c:54:4d:db:99:3c:9e:64:59:1d:a9:9a:5e:e7:1e:95:52:2c: 4b:d7:0a:00:f6:76:7f:53:90:09:bb:b7:3f:de:7e:fb:9d:46: c8:24:d0:96:1b:8e:f7:41:17:ee:34:c2:cc:0b:cb:65:1b:78: e9:36:9a:dc:40:85:d9:d7:be:b9:29:ac:78:8d:c9:e8:57:7d: 3d:c9:6b:a1:9a:9b:86:8c:94:37:da:46:66:5c:7a:9c:ea:85: df:e7:69:f4:19:54:de:91:80:b4:ac:a6:3e:97:c3:9d:5c:96: 11:ac:7b:7b:f6:ef:89:07:bb:0c:c8:b4:8a:96:a1:80:5e:8f: fd:59:ba:9a:61:a9:7a:cb:e5:e0:4c:04:08:05:78:c2:7d:27: 37:57:03:b4 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUM3MiW7Mkqgv5IDyl3M1tDHd2qhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODA1OWQyZDJkNjA5YjNmNTY1YjU1MTdlOWVhZjI4ZmYx ZjIwMmI5NGY1YmU5MzdjNjE1NzhlZWU0ZjdhMGU1MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmKOAad2RUe+UiidzpuCPt/WVZ1FQ6b5fvSgdDrcZTJQg8 P7X/mhUqYLRJYjMs1NNSqRQDXhdPyj/Y6vb+F5LL1SUcjUwe7YzMM7NV1dU7qbLy D7Z0VrNTVy0IeHNR4jTgdTT1HwL5H/c8kqjmBgJiEhDCMKSuGvwrql3syKr88ryM syxWwFCt/mUQI2bF43BW/5EJD/l30N3W9liVMDCDC2uoWI7NGPgaJerqjkv2ypep tpMmJ6P47T+Uxq2N0JxCHj/eorwZa9xz1ModLKfcpaO62hlfAMywTyAbv+0w7Mte ACFMY0vhRxxxEO/NXikuapeho4mGyVw8Wu9X4LfBAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUiBIJouBCanIijpn1yQLHC2ycgkgwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2Q0NDVlNzI4LWQ0NGMtNDc1Ni1iNzVjLTg0YTE4NGE3M2ZjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQDMWiE0nXxKyHjlSW1WazFz39CU BNrXjh5ZVwxGl5gDXaCM3O0cYRoQNeAld11XcW4NgJiFoS4WhDFFDhc+V+Tx2gfm AgsQVHHkDrGZkvaDHCF5WULnmDwcwRyMsg7QOwbQHF60ZM0fqgGS8RsMVE3bmTye ZFkdqZpe5x6VUixL1woA9nZ/U5AJu7c/3n77nUbIJNCWG473QRfuNMLMC8tlG3jp NprcQIXZ1765Kax4jcnoV309yWuhmpuGjJQ32kZmXHqc6oXf52n0GVTekYC0rKY+ l8OdXJYRrHt79u+JB7sMyLSKlqGAXo/9WbqaYal6y+XgTAQIBXjCfSc3VwO0 -----END CERTIFICATE-----Generated at Thu May 9 00:29:37 2024 by rpki-client on console-ams.rpki-client.org