$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: 8PcOt5BObdl6qgRTv9kcBvb6VA6PJeSIyDUQnTXJ/sM= Subject key identifier: 02:95:AD:58:3C:21:D5:5A:7D:77:CB:21:5D:7F:C8:4E:59:6A:57:14 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7DCEA03614F156C7AABA52086F3BA6C25DD7D48E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ce:a0:36:14:f1:56:c7:aa:ba:52:08:6f:3b:a6:c2:5d:d7:d4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=dc42f026e39c8c6b6f05ed4f2f917708e9a64663f8f1eb7f12f58181ea6100ce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5b:4f:49:3c:a7:6e:96:b3:fd:17:03:2c:af: f9:ff:c2:25:c8:63:a6:a7:29:b1:5b:8f:6a:f9:90: e3:5b:1b:10:a3:a6:c5:a3:82:a1:50:67:f4:19:07: fd:14:bd:fd:66:5a:fd:dd:40:d5:6a:ca:7d:4c:44: b3:9f:97:ad:b4:c8:90:29:40:d3:a6:68:a8:44:39: 0d:b4:de:73:38:91:a1:f6:46:c0:d7:1b:03:b0:0b: 49:40:af:a1:65:fa:21:b0:a7:53:26:92:53:17:53: 87:da:08:06:85:fa:d4:5d:72:0e:ce:db:0b:cd:60: e7:c1:82:ff:ea:fc:00:18:82:18:94:ba:dd:5c:18: 5e:89:5c:d2:3f:3d:4b:4d:39:24:14:5f:9f:2d:81: c9:d8:13:d4:07:31:4b:d5:90:f4:d3:ac:c7:2d:23: 86:81:26:57:cc:5e:94:33:e8:e2:8f:46:1d:bb:50: fc:66:ca:59:f7:f7:5d:c7:be:8b:49:8e:75:a2:2e: bd:d8:a9:ba:da:97:f6:ef:67:48:52:49:c6:9b:18: da:88:69:97:9e:2e:8d:9b:03:e8:de:df:c9:cb:ed: eb:b5:6c:4b:e9:07:49:73:2d:3c:5b:0c:5a:e6:4f: ed:45:1f:77:a4:e1:56:33:5b:43:28:3b:2a:97:7c: 34:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:95:AD:58:3C:21:D5:5A:7D:77:CB:21:5D:7F:C8:4E:59:6A:57:14 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 46:00:f0:da:d4:0f:36:50:13:8a:61:b1:21:91:be:52:07:b7: a2:1a:83:d4:c9:d5:71:a2:37:fa:b2:4f:55:7b:b2:ec:18:8e: 78:36:76:fa:ba:05:46:e8:7c:93:3d:b1:b4:22:b7:d4:c7:2b: cd:22:0b:37:c6:69:50:b0:72:00:64:17:5e:49:23:82:46:03: 76:d9:4a:af:42:9e:43:56:a6:5a:ef:ab:60:24:3f:85:f5:9b: 84:7e:ef:9f:90:6b:37:28:c6:e8:f6:71:a3:ac:2d:ae:ae:af: f4:7c:f2:7c:7f:23:8d:b9:c9:f9:55:a4:23:dd:7b:2d:45:36: e4:22:03:b4:ad:1e:b2:e2:3d:43:1f:ee:ce:6c:a4:4d:43:eb: 2e:96:98:48:80:92:6e:e4:f9:9d:3c:52:d8:1f:cd:c6:f7:42: c9:98:4c:c9:37:36:21:e7:5c:61:3e:13:95:a0:d6:36:25:7c: 49:13:08:af:57:f1:e4:61:fc:41:e0:ff:4f:cc:ac:20:3d:64: 42:9f:3d:ea:1d:12:58:c8:8b:a3:ed:70:1d:6f:4b:f4:38:86: a3:01:1e:43:d3:ac:39:8f:f4:f5:ba:bd:50:0c:af:58:c4:22: 40:85:73:50:3b:ec:44:eb:cc:5b:23:f2:fc:75:df:fb:e2:f3: 65:b5:10:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfc6gNhTxVsequlIIbzumwl3X1I4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzQyZjAyNmUzOWM4YzZiNmYwNWVkNGYyZjkxNzcwOGU5 YTY0NjYzZjhmMWViN2YxMmY1ODE4MWVhNjEwMGNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRW09JPKdulrP9FwMsr/n/wiXIY6anKbFbj2r5kONbGxCj psWjgqFQZ/QZB/0Uvf1mWv3dQNVqyn1MRLOfl620yJApQNOmaKhEOQ203nM4kaH2 RsDXGwOwC0lAr6Fl+iGwp1MmklMXU4faCAaF+tRdcg7O2wvNYOfBgv/q/AAYghiU ut1cGF6JXNI/PUtNOSQUX58tgcnYE9QHMUvVkPTTrMctI4aBJlfMXpQz6OKPRh27 UPxmyln3913HvotJjnWiLr3Yqbral/bvZ0hSScabGNqIaZeeLo2bA+je38nL7eu1 bEvpB0lzLTxbDFrmT+1FH3ek4VYzW0MoOyqXfDSjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUApWtWDwh1Vp9d8shXX/ITllqVxQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAEYA8NrUDzZQE4phsSGRvlIH t6Iag9TJ1XGiN/qyT1V7suwYjng2dvq6BUbofJM9sbQit9THK80iCzfGaVCwcgBk F15JI4JGA3bZSq9CnkNWplrvq2AkP4X1m4R+75+Qazcoxuj2caOsLa6ur/R88nx/ I425yflVpCPdey1FNuQiA7StHrLiPUMf7s5spE1D6y6WmEiAkm7k+Z08Utgfzcb3 QsmYTMk3NiHnXGE+E5Wg1jYlfEkTCK9X8eRh/EHg/0/MrCA9ZEKfPeodEljIi6Pt cB1vS/Q4hqMBHkPTrDmP9PW6vVAMr1jEIkCFc1A77ETrzFsj8vx13/vi82W1ENQ= -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org