$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2aafbd4a-cb01-428a-971e-229fbc6dbbdd.roa File: 2aafbd4a-cb01-428a-971e-229fbc6dbbdd.roa (raw, json) Hash identifier: fNLesOi7000bNXvdOVFdjW5p6GgRiO1aU9LLKiIBDdo= Subject key identifier: 6E:DF:CB:CE:B9:EE:08:30:D0:F9:9D:A0:8E:ED:22:4D:90:16:54:86 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1BF5C6D676F7EB3A467FFA3EEF69DA7A9AD531AE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2aafbd4a-cb01-428a-971e-229fbc6dbbdd.roa Signing time: Fri 19 Apr 2024 00:00:00 +0000 ROA not before: Fri 19 Apr 2024 00:00:00 +0000 ROA not after: Fri 24 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f01f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f5:c6:d6:76:f7:eb:3a:46:7f:fa:3e:ef:69:da:7a:9a:d5:31:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 19 00:00:00 2024 GMT Not After : May 24 23:59:59 2024 GMT Subject: serialNumber=b5530ac977414b186e8e6a6ec511e263f8774a8ae63d5d8b6751d5b9d25bbae0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7c:af:7f:43:9f:6a:dd:ad:3d:db:4f:cc:1c: b0:b1:90:ad:8b:78:64:bb:36:b9:7b:9d:57:fe:b4: 5e:f5:1d:b2:a3:87:2b:17:84:e4:14:1e:94:ff:ff: 7f:65:63:2c:20:d9:bb:7e:bc:4e:fa:42:ff:2b:9b: 35:3f:d9:d6:c1:6d:3c:e3:02:37:a8:82:5b:8b:94: bf:a2:26:13:ed:8c:13:8c:37:96:53:1f:47:32:da: e5:3d:df:94:dc:13:e5:64:78:78:e5:8e:fd:45:2d: 77:70:e4:a5:44:b7:31:5b:48:6d:e0:6e:dd:64:a0: 5f:b1:63:13:f5:71:05:ad:c9:e2:0a:20:73:01:45: 0a:81:72:fd:2b:4f:c4:e3:a5:c5:1a:36:f6:6a:c4: ea:a9:3b:59:53:ad:96:cd:ff:a1:08:ea:00:70:27: b4:73:8f:0c:41:55:0b:19:1c:8e:34:4b:81:8c:8f: a0:ff:d9:09:46:dd:e0:33:e1:3a:bc:60:0c:b3:b0: 7d:88:fb:30:45:81:f4:f3:6c:7d:cb:87:95:c9:0d: 38:bc:71:45:57:91:11:09:98:18:b3:7b:bc:a9:75: 0b:bf:fa:6b:7a:56:0e:c3:93:e1:e5:ec:0e:63:34: 54:db:79:a0:da:e6:44:ba:8d:86:d1:ad:e1:f5:0b: 7c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DF:CB:CE:B9:EE:08:30:D0:F9:9D:A0:8E:ED:22:4D:90:16:54:86 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2aafbd4a-cb01-428a-971e-229fbc6dbbdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f01f::/48 Signature Algorithm: sha256WithRSAEncryption 28:0f:84:0d:08:a7:43:d1:1c:32:ff:87:35:d3:d7:db:1f:a9: 91:b9:c1:cd:39:68:b0:d3:40:01:c3:bb:7a:91:e9:c0:13:bf: 48:9d:25:78:49:5a:4e:10:22:7f:ef:0c:7b:01:68:ed:29:a5: 3d:e3:81:9a:cc:82:fd:57:f4:4e:33:55:07:29:2e:54:99:94: 3b:35:88:38:e6:5d:bf:35:85:4b:4f:9c:21:9d:8d:6c:28:90: 0c:8a:1c:00:22:07:9e:3a:7f:3d:2c:66:3a:8b:20:db:a7:81: 63:e7:d4:2a:70:43:15:92:c0:60:75:e7:cd:11:38:ee:12:ca: d7:62:49:96:bb:e3:ad:3a:78:af:e9:58:4e:49:f4:1e:3e:34: c4:b8:df:c8:fb:f5:ba:d7:56:82:bc:b7:ff:63:dc:b3:05:bd: 64:e4:cd:11:a4:1d:1d:4e:93:e4:46:06:bf:31:22:3b:00:f5: 0f:da:8e:51:93:38:e6:38:f4:12:54:34:dc:04:96:b8:ce:60: 75:c7:44:b6:ab:ab:ff:e1:47:9b:b5:cb:7b:8c:a1:a6:3d:26: 2e:51:03:db:f6:d5:27:4f:08:66:db:87:de:d5:ab:a8:0f:91: 7a:47:84:4a:92:80:f1:18:32:bd:62:df:d8:b5:ac:a4:f5:a6: 8d:84:85:4b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG/XG1nb36zpGf/o+72naeprVMa4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE5MDAwMDAwWhcNMjQwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTUzMGFjOTc3NDE0YjE4NmU4ZTZhNmVjNTExZTI2M2Y4 Nzc0YThhZTYzZDVkOGI2NzUxZDViOWQyNWJiYWUwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEfK9/Q59q3a0920/MHLCxkK2LeGS7Nrl7nVf+tF71HbKj hysXhOQUHpT//39lYywg2bt+vE76Qv8rmzU/2dbBbTzjAjeogluLlL+iJhPtjBOM N5ZTH0cy2uU935TcE+VkeHjljv1FLXdw5KVEtzFbSG3gbt1koF+xYxP1cQWtyeIK IHMBRQqBcv0rT8TjpcUaNvZqxOqpO1lTrZbN/6EI6gBwJ7RzjwxBVQsZHI40S4GM j6D/2QlG3eAz4Tq8YAyzsH2I+zBFgfTzbH3Lh5XJDTi8cUVXkREJmBize7ypdQu/ +mt6Vg7Dk+Hl7A5jNFTbeaDa5kS6jYbRreH1C3znAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbt/LzrnuCDDQ+Z2gju0iTZAWVIYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJhYWZiZDRhLWNiMDEtNDI4YS05NzFlLTIyOWZiYzZkYmJkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8B8wDQYJKoZIhvcNAQELBQADggEBACgPhA0Ip0PRHDL/hzXT19sf qZG5wc05aLDTQAHDu3qR6cATv0idJXhJWk4QIn/vDHsBaO0ppT3jgZrMgv1X9E4z VQcpLlSZlDs1iDjmXb81hUtPnCGdjWwokAyKHAAiB546fz0sZjqLINungWPn1Cpw QxWSwGB1580ROO4SytdiSZa74606eK/pWE5J9B4+NMS438j79brXVoK8t/9j3LMF vWTkzRGkHR1Ok+RGBr8xIjsA9Q/ajlGTOOY49BJUNNwElrjOYHXHRLarq//hR5u1 y3uMoaY9Ji5RA9v21SdPCGbbh97Vq6gPkXpHhEqSgPEYMr1i39i1rKT1po2EhUs= -----END CERTIFICATE-----Generated at Thu May 9 07:40:57 2024 by rpki-client on console-fra.rpki-client.org