$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: E999vs+x4ra3zARUP+Ja3kQ5MpZBLrAa+6yqwpVXbwk= Subject key identifier: F9:8E:08:35:FD:B8:CE:BD:14:D6:A9:34:B0:CE:0E:13:8D:0F:83:CC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 23F081342882DB56F89BCF2AD929AEE8F2C18A87 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:f0:81:34:28:82:db:56:f8:9b:cf:2a:d9:29:ae:e8:f2:c1:8a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=40e145b57ab12772d65e9d30fc981f71f66596d41c180a57813ba43a5d612383, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9e:dd:9d:cc:2b:82:5b:5c:66:22:81:c5:f4: 97:ab:4d:5b:c9:fd:e0:20:8b:cb:8e:00:2a:07:e3: 78:98:40:2b:33:e0:99:a1:1f:2b:fe:68:a7:35:e2: 06:48:cb:6c:ba:15:ed:72:28:9c:c6:0b:94:de:b6: 4d:74:6c:96:43:54:a0:6e:c3:45:f1:fa:de:39:e5: 08:f1:d0:10:f1:16:c9:91:1f:a4:0c:97:8e:28:a4: 25:6c:fb:64:1d:0f:eb:5e:8a:09:04:1f:24:0e:a2: c5:ef:55:b1:3a:9f:ee:ad:0e:61:d5:07:5d:03:7e: 22:77:24:78:db:13:d7:fe:7b:fc:bd:e4:28:5f:a5: a8:84:a0:95:63:70:ea:cf:4e:95:59:12:de:2d:c9: 97:8b:f2:ca:e1:e3:d6:ce:63:7f:8b:4c:e3:d3:fb: be:9b:ea:e7:b4:c3:33:ae:df:a7:a9:1d:ee:33:f0: 31:79:a8:1e:9b:6e:9f:aa:82:b6:49:2f:11:e7:a2: 53:e7:cf:d7:60:91:21:ab:cb:a7:6c:11:2d:05:7d: 23:fe:c7:c2:7f:77:41:65:30:7a:f3:e6:ae:03:88: 6f:e0:d5:d1:75:24:10:dc:a8:80:f0:fd:01:c4:5c: 15:06:88:37:ff:b6:f6:67:78:c7:10:ca:85:86:75: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8E:08:35:FD:B8:CE:BD:14:D6:A9:34:B0:CE:0E:13:8D:0F:83:CC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 45:45:cb:07:d6:e2:94:cf:25:a7:dc:35:e8:aa:de:e8:26:54: 88:42:34:38:85:a5:71:dd:60:cc:32:fd:1e:15:e5:02:8c:17: 24:2c:cc:f3:3c:38:85:b5:b5:39:23:6d:87:8d:50:f6:30:77: 35:f1:b1:00:a7:8e:e8:e4:c7:4a:c7:65:dc:7e:76:80:24:94: a8:dc:0a:f2:80:89:91:45:c0:9c:6f:70:0d:7d:e4:57:23:90: 1b:71:72:cb:d0:77:a9:3a:02:e6:91:22:9c:a9:0c:61:31:ea: d0:f8:95:69:07:cc:b0:eb:7b:6b:c1:ca:b6:59:49:0d:b0:1f: 3e:67:25:ec:2a:12:d7:67:ee:08:b8:1d:be:02:1f:c5:d8:4b: eb:a5:7e:53:dc:ae:6f:ff:fb:8c:f7:26:51:ac:77:02:45:12: 24:b9:aa:00:45:53:40:33:47:5f:f2:fa:ec:ae:9f:2e:db:eb: 37:14:3c:0c:45:fb:92:ef:05:61:e2:21:93:fd:2f:9c:1a:91: 90:8f:bb:dc:70:d6:dd:b8:a1:62:d4:0e:cb:e8:9e:a4:b9:db: 78:90:97:17:d1:f0:bb:c3:9a:35:3b:ff:92:a7:98:36:1f:c9: c2:38:52:4b:75:d8:af:bd:b2:13:3c:0b:10:3e:e3:58:b2:ed: 18:a2:61:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI/CBNCiC21b4m88q2Smu6PLBiocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGUxNDViNTdhYjEyNzcyZDY1ZTlkMzBmYzk4MWY3MWY2 NjU5NmQ0MWMxODBhNTc4MTNiYTQzYTVkNjEyMzgzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKnt2dzCuCW1xmIoHF9JerTVvJ/eAgi8uOACoH43iYQCsz 4JmhHyv+aKc14gZIy2y6Fe1yKJzGC5Tetk10bJZDVKBuw0Xx+t455Qjx0BDxFsmR H6QMl44opCVs+2QdD+teigkEHyQOosXvVbE6n+6tDmHVB10DfiJ3JHjbE9f+e/y9 5ChfpaiEoJVjcOrPTpVZEt4tyZeL8srh49bOY3+LTOPT+76b6ue0wzOu36epHe4z 8DF5qB6bbp+qgrZJLxHnolPnz9dgkSGry6dsES0FfSP+x8J/d0FlMHrz5q4DiG/g 1dF1JBDcqIDw/QHEXBUGiDf/tvZneMcQyoWGdV6fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+Y4INf24zr0U1qk0sM4OE40Pg8wwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAEVFywfW4pTPJafcNeiq3ugm VIhCNDiFpXHdYMwy/R4V5QKMFyQszPM8OIW1tTkjbYeNUPYwdzXxsQCnjujkx0rH Zdx+doAklKjcCvKAiZFFwJxvcA195FcjkBtxcsvQd6k6AuaRIpypDGEx6tD4lWkH zLDre2vByrZZSQ2wHz5nJewqEtdn7gi4Hb4CH8XYS+ulflPcrm//+4z3JlGsdwJF EiS5qgBFU0AzR1/y+uyuny7b6zcUPAxF+5LvBWHiIZP9L5wakZCPu9xw1t24oWLU DsvonqS523iQlxfR8LvDmjU7/5KnmDYfycI4Ukt12K+9shM8CxA+41iy7RiiYfA= -----END CERTIFICATE-----Generated at Thu May 9 07:40:59 2024 by rpki-client on console-fra.rpki-client.org