$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa File: 3500b8ef-7be2-4b73-a003-e1ded8f81352.roa (raw, json) Hash identifier: vSoGZ52TgY8d5Wgha1S/wCInFg9abamNBt7XnFRwKEc= Subject key identifier: D0:5B:CB:ED:BB:9F:62:17:7B:57:65:99:3A:67:05:E4:CD:27:85:D3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4736E6F01733C53839D169E7A79F03BC51A146B2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:2110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:36:e6:f0:17:33:c5:38:39:d1:69:e7:a7:9f:03:bc:51:a1:46:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=078c51c4c0c656b873d365567df6606877eb67d1cb44cc68a18981ae0827f5fc, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:48:83:65:33:e7:c6:5c:dc:20:73:b9:90:29: 2f:9c:22:3b:cb:02:6d:6f:b0:49:be:c7:cd:64:83: 97:20:38:36:9f:52:37:9e:0f:95:85:b0:cb:eb:25: 9c:5f:f3:04:4d:38:6c:61:93:0c:85:df:d9:10:30: 7a:05:c0:8b:d3:e7:1a:bc:3b:75:6d:c7:94:95:6b: d5:c8:c7:38:a5:ce:ee:99:fe:ad:17:e9:6a:b8:67: 28:c0:9d:e3:07:38:84:5d:00:bb:0e:57:d6:fd:1e: 8d:a9:9f:ac:de:f2:ec:52:74:56:85:b9:88:6f:88: b5:4e:cf:1b:6a:63:e4:ab:72:d0:6b:0c:e1:d5:fa: 5a:fc:4d:73:c2:ac:e9:63:25:59:9a:64:80:0a:a8: a6:19:72:fc:b2:d6:43:ec:9b:a9:98:d3:d3:44:63: 5c:a2:a7:66:ff:8e:72:d4:7c:e4:74:16:17:e0:d1: 6d:e1:91:a5:f9:1d:e1:2d:3f:42:2c:3b:11:43:67: fe:5d:0e:b0:c7:fd:84:c0:c6:68:bc:b4:56:3b:c4: d4:2f:ab:c7:54:69:af:d2:5e:ae:7b:d4:2e:52:47: c0:fe:b6:6b:a1:5f:fe:ee:7a:f9:9b:8c:e1:66:55: 18:92:51:3d:b0:b7:16:48:b8:c9:68:fd:55:01:8f: af:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:5B:CB:ED:BB:9F:62:17:7B:57:65:99:3A:67:05:E4:CD:27:85:D3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:2110::/44 Signature Algorithm: sha256WithRSAEncryption 87:03:89:ad:06:dc:d7:3a:96:52:a5:63:0f:3a:68:03:31:f2: 97:06:e4:29:bd:9c:81:ab:cc:38:eb:2d:97:0e:b2:6c:df:01: 24:1f:6f:48:b1:c1:d6:ed:ba:12:6d:75:d2:3c:56:19:dd:62: 70:2b:b6:34:0f:0c:26:9b:a4:26:d5:3d:e9:5d:ea:44:a9:34: 41:4b:d9:a5:18:7f:10:4e:d7:43:e9:ca:dd:25:7e:90:87:8a: ca:05:b5:0f:9c:62:c4:ef:f5:76:23:f7:88:40:ca:1f:7b:3a: 4f:f8:0e:eb:1a:30:af:87:34:3c:18:07:e7:09:c5:af:d5:e9: ee:50:62:e8:b1:5d:cd:53:2e:0c:df:82:7f:b5:20:95:56:8a: ac:22:11:9f:ee:ff:7f:7b:90:df:15:41:d6:6c:dd:d5:02:38: 38:7f:67:f4:7a:da:aa:61:95:53:33:59:67:ee:d3:38:41:fd: 56:e7:99:d9:c2:3d:15:46:27:71:4c:0e:3f:92:ac:75:f5:40: 82:8d:d5:b6:1a:79:ec:f0:a0:e4:af:c6:cc:98:0a:5b:42:d7: e2:dc:2b:e5:41:b6:ad:b8:f8:e0:dd:21:7c:72:32:35:e1:0c: eb:e8:dc:17:33:76:f8:ec:1c:9d:f8:f0:fb:96:fe:d3:70:eb: c6:8a:b0:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURzbm8BczxTg50Wnnp58DvFGhRrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzhjNTFjNGMwYzY1NmI4NzNkMzY1NTY3ZGY2NjA2ODc3 ZWI2N2QxY2I0NGNjNjhhMTg5ODFhZTA4MjdmNWZjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXSINlM+fGXNwgc7mQKS+cIjvLAm1vsEm+x81kg5cgODaf UjeeD5WFsMvrJZxf8wRNOGxhkwyF39kQMHoFwIvT5xq8O3Vtx5SVa9XIxzilzu6Z /q0X6Wq4ZyjAneMHOIRdALsOV9b9Ho2pn6ze8uxSdFaFuYhviLVOzxtqY+SrctBr DOHV+lr8TXPCrOljJVmaZIAKqKYZcvyy1kPsm6mY09NEY1yip2b/jnLUfOR0Fhfg 0W3hkaX5HeEtP0IsOxFDZ/5dDrDH/YTAxmi8tFY7xNQvq8dUaa/SXq571C5SR8D+ tmuhX/7uevmbjOFmVRiSUT2wtxZIuMlo/VUBj69dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0FvL7bufYhd7V2WZOmcF5M0nhdMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1MDBiOGVmLTdiZTItNGI3My1hMDAzLWUxZGVkOGY4MTM1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzAIRAwDQYJKoZIhvcNAQELBQADggEBAIcDia0G3Nc6llKlYw86aAMx 8pcG5Cm9nIGrzDjrLZcOsmzfASQfb0ixwdbtuhJtddI8VhndYnArtjQPDCabpCbV Peld6kSpNEFL2aUYfxBO10Ppyt0lfpCHisoFtQ+cYsTv9XYj94hAyh97Ok/4Dusa MK+HNDwYB+cJxa/V6e5QYuixXc1TLgzfgn+1IJVWiqwiEZ/u/397kN8VQdZs3dUC ODh/Z/R62qphlVMzWWfu0zhB/VbnmdnCPRVGJ3FMDj+SrHX1QIKN1bYaeezwoOSv xsyYCltC1+LcK+VBtq24+ODdIXxyMjXhDOvo3BczdvjsHJ348PuW/tNw68aKsLM= -----END CERTIFICATE-----Generated at Thu May 9 15:08:43 2024 by rpki-client on console-ams.rpki-client.org