$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa File: 2b35ab1a-8001-404a-9285-196aa943aa95.roa (raw, json) Hash identifier: HH0FhGrpat4IRroMU7MgOXdh7671K6Lskz+gfnI0DLA= Subject key identifier: 8F:CE:07:D6:73:2D:5E:57:1A:AD:38:85:86:44:33:F2:CD:A2:C0:B5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 301C3758EFE34A0DAA391EBAAF497AB128098086 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:387::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:1c:37:58:ef:e3:4a:0d:aa:39:1e:ba:af:49:7a:b1:28:09:80:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=94ec84f53dc4b383d07d92af95d41bf3a0b45172354d9a653aa813655cfc9590, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:64:c3:c5:74:e6:14:79:36:61:7a:e4:71: 04:8f:3c:78:54:8c:50:5b:ac:11:b3:f7:32:7c:cd: ba:b3:3a:b0:8d:51:78:93:20:47:cd:d6:03:01:c4: 5f:c3:9c:d5:09:14:d8:ce:2d:8a:d7:18:e4:94:98: 74:8a:e4:0e:a5:48:2f:d1:b1:5c:bb:8c:ae:e3:01: 06:44:27:f3:25:3a:ce:c1:5f:11:5a:4b:3e:13:5b: af:d5:61:e7:cb:16:2d:ab:63:89:d0:76:80:37:a0: 8c:57:59:76:e3:9e:7d:03:c7:85:29:f8:82:6e:17: fb:4d:c2:bd:50:58:ff:d7:e6:f9:01:ad:7f:f0:77: 35:f8:43:1c:66:92:99:18:23:e9:84:e8:03:58:90: ae:42:04:76:4c:49:ae:98:8d:7a:61:40:fb:fe:27: 28:9c:eb:0e:cf:ee:9c:e3:e5:c8:14:2d:c6:ac:c2: 86:49:a5:08:ed:23:a5:62:37:3d:99:4a:d7:71:0f: fb:c3:41:a1:60:44:05:a8:03:55:fc:ee:a9:d4:bc: 94:58:a8:d2:53:58:d7:f5:3a:a5:b9:24:bc:fc:c5: be:fb:b5:16:6b:1b:ec:e0:6f:33:73:bf:88:9f:1f: e1:a7:63:cb:7f:1c:8d:fe:b9:7b:ca:80:7c:32:2f: fd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CE:07:D6:73:2D:5E:57:1A:AD:38:85:86:44:33:F2:CD:A2:C0:B5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2b35ab1a-8001-404a-9285-196aa943aa95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:387::/48 Signature Algorithm: sha256WithRSAEncryption 7d:95:03:a5:8d:05:fa:0e:ea:b0:80:3d:71:ac:46:b6:70:6f: 9f:d2:9f:be:c8:c9:d6:25:63:e8:98:ef:17:2f:f9:a1:43:fa: 05:4c:45:05:5b:ee:f9:f9:73:a7:83:26:b2:4f:b0:39:96:b1: 56:20:c6:a0:2b:ce:f9:3c:15:ab:cf:fe:53:68:8f:bb:09:a9: 94:c2:a3:03:c8:97:ac:51:5a:41:e9:df:ba:9d:1e:ae:94:7d: ba:d8:a9:4e:79:54:e6:d9:48:90:c7:31:24:41:3a:4c:ee:d4: 46:fd:1a:97:e3:16:43:43:3a:25:d5:48:9b:87:50:70:8b:44: 69:01:d5:e5:37:27:0a:b1:3d:29:8c:92:3e:41:cd:b3:3a:af: d4:c2:c4:ab:cf:df:ee:69:47:18:a4:53:98:a1:29:04:be:97: 10:21:e7:5b:e3:4b:81:01:4b:05:df:aa:43:1c:f2:c6:ff:10: 49:f0:52:aa:73:85:7b:a2:f3:c7:18:3b:8a:29:da:b2:42:f2: d8:37:36:b5:f5:84:ff:f4:08:f0:77:65:86:93:0c:f3:1b:71: 6d:e7:da:c2:ae:b2:1a:86:c6:1d:c6:4e:55:22:cd:6a:b0:75: 04:97:0e:bf:21:99:a8:15:f4:42:70:ff:60:fb:89:b1:14:38: 68:20:a1:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMBw3WO/jSg2qOR66r0l6sSgJgIYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGVjODRmNTNkYzRiMzgzZDA3ZDkyYWY5NWQ0MWJmM2Ew YjQ1MTcyMzU0ZDlhNjUzYWE4MTM2NTVjZmM5NTkwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz0GTDxXTmFHk2YXrkcQSPPHhUjFBbrBGz9zJ8zbqzOrCN UXiTIEfN1gMBxF/DnNUJFNjOLYrXGOSUmHSK5A6lSC/RsVy7jK7jAQZEJ/MlOs7B XxFaSz4TW6/VYefLFi2rY4nQdoA3oIxXWXbjnn0Dx4Up+IJuF/tNwr1QWP/X5vkB rX/wdzX4QxxmkpkYI+mE6ANYkK5CBHZMSa6YjXphQPv+Jyic6w7P7pzj5cgULcas woZJpQjtI6ViNz2ZStdxD/vDQaFgRAWoA1X87qnUvJRYqNJTWNf1OqW5JLz8xb77 tRZrG+zgbzNzv4ifH+GnY8t/HI3+uXvKgHwyL/0dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj84H1nMtXlcarTiFhkQz8s2iwLUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJiMzVhYjFhLTgwMDEtNDA0YS05Mjg1LTE5NmFhOTQzYWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA4cwDQYJKoZIhvcNAQELBQADggEBAH2VA6WNBfoO6rCAPXGsRrZw b5/Sn77IydYlY+iY7xcv+aFD+gVMRQVb7vn5c6eDJrJPsDmWsVYgxqArzvk8FavP /lNoj7sJqZTCowPIl6xRWkHp37qdHq6UfbrYqU55VObZSJDHMSRBOkzu1Eb9Gpfj FkNDOiXVSJuHUHCLRGkB1eU3JwqxPSmMkj5BzbM6r9TCxKvP3+5pRxikU5ihKQS+ lxAh51vjS4EBSwXfqkMc8sb/EEnwUqpzhXui88cYO4op2rJC8tg3NrX1hP/0CPB3 ZYaTDPMbcW3n2sKushqGxh3GTlUizWqwdQSXDr8hmagV9EJw/2D7ibEUOGggoSE= -----END CERTIFICATE-----Generated at Sat Apr 20 13:42:26 2024 by rpki-client on console-fra.rpki-client.org