$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa File: 15c69da0-d471-4f52-b26d-a3639b01e410.roa (raw, json) Hash identifier: T4ZgkQxnkFTWYKiO5L3G1cc35IotKdy1C1l0sy57Y+E= Subject key identifier: 0C:19:38:38:33:23:0A:EF:57:E4:3A:11:95:0E:71:13:00:32:FB:F3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 599F551606963C543E615FF59BA238313E04B924 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9f:55:16:06:96:3c:54:3e:61:5f:f5:9b:a2:38:31:3e:04:b9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=5f49f65bfedd741dc70ca0c5f49a1400567223bbd557ff13cc6ce32c87142928, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:92:37:e0:6f:ac:26:9a:28:03:20:80:27:34: 9a:cd:68:50:21:4e:53:0f:26:49:cc:0a:6f:a3:80: 93:ff:43:f8:33:f0:e2:07:5e:4e:36:3d:c9:34:61: 24:cb:7a:f7:1d:7d:9c:fd:3b:5a:0a:53:00:8b:57: 1a:7a:13:f2:64:d6:5c:d8:fb:bb:34:9f:09:16:5d: dc:4f:19:ab:bf:50:6b:6b:33:d9:f0:c9:e4:8f:af: 02:9c:93:96:af:5a:ae:92:d7:7c:aa:ac:e8:29:5b: 05:0a:82:85:ff:fa:7d:35:59:7e:6f:70:7e:de:69: 0c:36:45:e9:fa:21:ac:f9:cb:a6:c4:0c:db:45:67: 0e:ab:b5:10:a7:65:43:f6:1b:62:24:87:91:e7:16: aa:9c:3d:4b:91:43:5c:7b:f1:a1:aa:4d:e1:3d:37: 25:3c:01:69:57:94:ef:85:f0:65:a2:92:a8:1b:11: b7:96:0f:7c:5e:29:ac:e4:b7:68:84:ad:83:2f:11: dc:76:47:50:80:cc:a9:59:53:45:17:27:ff:3e:87: 1c:48:d8:8a:29:16:fc:d5:32:9f:06:a2:06:e7:b0: 07:96:66:00:5d:fd:90:93:8a:77:01:b8:44:66:72: 6d:a0:dc:4e:19:a9:30:53:54:91:1f:7c:74:bc:78: 77:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:19:38:38:33:23:0A:EF:57:E4:3A:11:95:0E:71:13:00:32:FB:F3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/15c69da0-d471-4f52-b26d-a3639b01e410.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0e::/48 Signature Algorithm: sha256WithRSAEncryption a4:05:cb:fc:bc:24:85:63:05:58:29:a2:38:dc:ae:a1:00:ab: 29:59:14:28:e7:36:4a:df:5d:b1:71:af:66:de:c8:c7:1d:5e: 5f:ca:dc:e8:43:5c:40:6d:10:c2:5c:72:f4:69:df:62:ee:8c: 73:4c:b1:59:c6:60:7d:2e:92:5f:93:1b:23:90:44:19:0a:49: b2:e5:e2:68:e5:9c:35:09:99:07:ee:d8:15:ae:19:dc:73:04: b6:31:d6:dd:ac:bc:5e:e7:78:71:70:0e:fb:0f:7a:be:a0:e8: aa:92:6e:88:fa:ab:d0:18:8d:e3:59:e4:bb:21:50:54:a8:14: 3f:a6:2f:91:14:54:3a:b7:79:cb:be:1d:2f:76:a2:d6:36:e5: f1:b8:cd:23:09:00:1f:95:40:1c:9f:b0:29:b1:a7:f8:ac:06: b9:36:07:11:44:69:70:84:8d:99:fb:f8:9d:b7:be:cf:5e:92: 85:de:98:a9:b0:2d:22:e3:3a:e8:60:65:e9:cb:df:1f:67:a5: c1:5b:79:b3:2b:01:f8:05:b4:6d:51:ca:a9:7b:22:41:b1:0c: 42:fb:55:7d:91:5a:f5:00:93:7d:b4:2e:8c:e4:0f:98:2b:9f: e0:78:61:26:3a:0a:f6:6b:5a:61:45:17:27:be:32:4f:66:65: 03:66:d3:7e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWZ9VFgaWPFQ+YV/1m6I4MT4EuSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjQ5ZjY1YmZlZGQ3NDFkYzcwY2EwYzVmNDlhMTQwMDU2 NzIyM2JiZDU1N2ZmMTNjYzZjZTMyYzg3MTQyOTI4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjkjfgb6wmmigDIIAnNJrNaFAhTlMPJknMCm+jgJP/Q/gz 8OIHXk42Pck0YSTLevcdfZz9O1oKUwCLVxp6E/Jk1lzY+7s0nwkWXdxPGau/UGtr M9nwyeSPrwKck5avWq6S13yqrOgpWwUKgoX/+n01WX5vcH7eaQw2Ren6Iaz5y6bE DNtFZw6rtRCnZUP2G2Ikh5HnFqqcPUuRQ1x78aGqTeE9NyU8AWlXlO+F8GWikqgb EbeWD3xeKazkt2iErYMvEdx2R1CAzKlZU0UXJ/8+hxxI2IopFvzVMp8GogbnsAeW ZgBd/ZCTincBuERmcm2g3E4ZqTBTVJEffHS8eHf5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDBk4ODMjCu9X5DoRlQ5xEwAy+/MwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzE1YzY5ZGEwLWQ0NzEtNGY1Mi1iMjZkLWEzNjM5YjAxZTQxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA4wDQYJKoZIhvcNAQELBQADggEBAKQFy/y8JIVjBVgpojjcrqEA qylZFCjnNkrfXbFxr2beyMcdXl/K3OhDXEBtEMJccvRp32LujHNMsVnGYH0ukl+T GyOQRBkKSbLl4mjlnDUJmQfu2BWuGdxzBLYx1t2svF7neHFwDvsPer6g6KqSboj6 q9AYjeNZ5LshUFSoFD+mL5EUVDq3ecu+HS92otY25fG4zSMJAB+VQByfsCmxp/is Brk2BxFEaXCEjZn7+J23vs9ekoXemKmwLSLjOuhgZenL3x9npcFbebMrAfgFtG1R yql7IkGxDEL7VX2RWvUAk320LozkD5grn+B4YSY6CvZrWmFFFye+Mk9mZQNm034= -----END CERTIFICATE-----Generated at Thu May 2 11:33:33 2024 by rpki-client on console-fra.rpki-client.org