$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4aa98e13-9b17-4acd-a867-3b3dfc9dd8c2.roa File: 4aa98e13-9b17-4acd-a867-3b3dfc9dd8c2.roa (raw, json) Hash identifier: cJ0J6rFTYPzSutnhyhpZsmttXT3qGgKCFZK/wftTYis= Subject key identifier: 35:B2:EB:9F:5C:C9:11:F8:75:E6:97:69:A3:8B:6A:FB:C7:DF:71:54 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7AA7C65C910DD9221ABB077958D1448FDAB49A82 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4aa98e13-9b17-4acd-a867-3b3dfc9dd8c2.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f003:a200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:a7:c6:5c:91:0d:d9:22:1a:bb:07:79:58:d1:44:8f:da:b4:9a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=539f9751e81a41ade9ef63e1a30827df5012a0c8f1f5776c923540b193b07f10, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:94:a1:f3:61:bb:3c:15:91:bf:7a:d2:5e: da:c3:08:ed:53:ee:29:67:7c:d8:f8:85:a5:79:56: 6f:3e:c9:93:b6:57:9f:7c:d7:2a:2b:26:9f:7e:c5: bb:92:49:de:15:c4:58:b3:d1:ad:ca:84:23:ae:3d: 43:29:f7:9a:fd:96:ff:af:9a:5c:ca:0c:9a:79:d6: a0:46:0c:a3:86:ce:e3:e5:7e:4e:06:1f:93:bf:3b: f0:9c:2b:c1:e6:0a:4b:1e:6d:16:66:ff:d3:62:8f: 75:3c:5f:96:92:51:ce:a9:b5:85:d3:71:fb:a7:95: 29:bf:7b:2d:4a:a1:b2:95:77:05:91:60:f9:7d:d7: fa:32:59:2b:35:17:51:d6:00:8f:b5:b4:87:d6:01: 21:b4:8a:8d:26:0c:95:ba:9a:4b:e6:09:12:ee:ba: 27:aa:9e:ae:ee:c0:a7:ce:13:e9:b0:b5:a9:5e:41: 2e:c7:f7:81:95:ce:b9:20:d2:d5:84:53:e7:f5:b9: ce:b2:df:6e:71:2c:eb:1b:7d:09:e6:71:ca:e1:38: 01:d8:45:ca:2c:c2:f2:5d:77:3d:1c:87:fb:63:de: d5:18:75:70:00:39:b0:57:f8:fa:2d:f5:aa:be:5c: 00:08:fe:53:31:fd:86:7b:f6:96:0d:3f:04:ee:4e: 86:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B2:EB:9F:5C:C9:11:F8:75:E6:97:69:A3:8B:6A:FB:C7:DF:71:54 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4aa98e13-9b17-4acd-a867-3b3dfc9dd8c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f003:a200::/40 Signature Algorithm: sha256WithRSAEncryption 0a:3c:dc:da:27:01:a7:18:49:05:86:dd:07:cd:2d:87:a2:5b: d6:e8:c5:69:ba:07:78:4b:d8:19:26:87:c5:df:2f:05:b2:f1: 4d:f3:f1:c5:3b:3c:f2:17:69:b1:f6:60:ce:13:c1:5b:b4:03: 64:97:a6:34:00:af:34:51:87:5a:ba:5b:c8:e6:0a:ed:9d:96: 51:70:a6:1a:bc:98:65:e4:76:31:e5:24:35:0c:c8:b9:6c:d5: aa:43:e5:81:4e:cf:47:58:ad:3a:c1:ec:9b:bf:f3:56:59:69: 78:9a:2c:cd:ae:8f:11:eb:31:27:19:d8:a3:18:57:90:9f:1c: 25:fe:5f:38:02:d9:3a:ed:13:d8:56:6c:84:ce:e3:f8:1f:5a: 82:68:77:d1:46:0d:50:30:50:c9:ed:83:34:7d:20:53:2d:66: a0:85:15:6c:5a:6a:eb:7e:53:f2:c1:d4:fd:ed:72:44:26:d0: ee:cd:67:05:6a:2b:1b:01:71:29:dc:3b:d7:93:97:a9:13:e8: 0c:d6:1a:a5:02:f0:da:93:77:36:6d:42:b2:31:f4:78:99:86: a2:7c:7b:f0:89:72:b4:36:09:46:63:8c:a9:f0:93:0c:b0:55: a9:18:38:5f:91:27:04:8f:c4:c7:43:12:9a:a8:f1:84:34:bd: 64:87:1e:82 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeqfGXJEN2SIauwd5WNFEj9q0moIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzlmOTc1MWU4MWE0MWFkZTllZjYzZTFhMzA4MjdkZjUw MTJhMGM4ZjFmNTc3NmM5MjM1NDBiMTkzYjA3ZjEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6bJSh82G7PBWRv3rSXtrDCO1T7ilnfNj4haV5Vm8+yZO2 V5981yorJp9+xbuSSd4VxFiz0a3KhCOuPUMp95r9lv+vmlzKDJp51qBGDKOGzuPl fk4GH5O/O/CcK8HmCksebRZm/9Nij3U8X5aSUc6ptYXTcfunlSm/ey1KobKVdwWR YPl91/oyWSs1F1HWAI+1tIfWASG0io0mDJW6mkvmCRLuuieqnq7uwKfOE+mwtale QS7H94GVzrkg0tWEU+f1uc6y325xLOsbfQnmccrhOAHYRcoswvJddz0ch/tj3tUY dXAAObBX+Pot9aq+XAAI/lMx/YZ79pYNPwTuToa5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNbLrn1zJEfh15pdpo4tq+8ffcVQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhYTk4ZTEzLTliMTctNGFjZC1hODY3LTNiM2RmYzlkZDhjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPADojANBgkqhkiG9w0BAQsFAAOCAQEACjzc2icBpxhJBYbdB80th6Jb 1ujFaboHeEvYGSaHxd8vBbLxTfPxxTs88hdpsfZgzhPBW7QDZJemNACvNFGHWrpb yOYK7Z2WUXCmGryYZeR2MeUkNQzIuWzVqkPlgU7PR1itOsHsm7/zVllpeJosza6P EesxJxnYoxhXkJ8cJf5fOALZOu0T2FZshM7j+B9agmh30UYNUDBQye2DNH0gUy1m oIUVbFpq635T8sHU/e1yRCbQ7s1nBWorGwFxKdw715OXqRPoDNYapQLw2pN3Nm1C sjH0eJmGonx78IlytDYJRmOMqfCTDLBVqRg4X5EnBI/Ex0MSmqjxhDS9ZIcegg== -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org