$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa File: 3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa (raw, json) Hash identifier: uiZI5nQKhiU6BoFsOVihJXSNBnbyIE59672KvDzW15Q= Subject key identifier: 29:A4:1E:76:D6:FD:5E:D4:87:AF:CA:9E:58:CC:21:49:1A:E0:CA:82 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6BE3F8A7E7BEF94CAAAB78A54516D8A6CA2ACD07 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa Signing time: Tue 14 May 2024 00:00:00 +0000 ROA not before: Tue 14 May 2024 00:00:00 +0000 ROA not after: Tue 18 Jun 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e3:f8:a7:e7:be:f9:4c:aa:ab:78:a5:45:16:d8:a6:ca:2a:cd:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:00:00 2024 GMT Not After : Jun 18 23:59:59 2024 GMT Subject: serialNumber=9c3d6daba29711c2c9d7d839626b8c156ce2d2288d25194844f181914fcc851f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:07:42:e7:e8:db:98:ec:63:92:86:c3:c7:2f: 37:b7:d9:ad:95:23:69:c1:f9:8e:7f:00:a7:ab:c9: 9c:2f:38:39:f9:4a:5e:0e:6f:9c:20:42:55:be:88: 26:b0:e2:52:b1:78:aa:52:2a:71:7f:c3:ab:79:e0: af:9a:5c:45:c8:ca:d2:8f:44:98:fd:ed:c5:87:3e: d8:23:68:04:df:3a:08:cd:ca:7c:94:15:59:f1:84: 33:ce:c4:e1:30:5d:e8:bd:cd:3e:64:c5:95:28:2f: 28:14:fd:95:59:4e:77:e4:f6:63:c7:6f:7b:73:fe: 21:77:78:6a:fe:b0:8a:fa:50:3e:b7:30:39:b8:7d: 37:b0:fa:79:61:79:37:86:0c:34:43:ec:64:a6:2d: c6:e9:f8:27:b2:f6:f0:6b:11:fd:4f:2b:80:e8:1f: f0:f7:ef:7d:95:c4:79:b8:24:6e:cd:30:f6:18:bb: 6a:9d:4c:dc:74:7f:9c:25:e6:2a:5e:26:40:4c:67: 13:4a:6f:ef:4b:34:eb:ea:75:df:83:62:5d:b0:dd: f2:81:db:d3:bd:dc:c6:45:22:9f:50:6c:90:e3:08: 6d:f3:0b:6a:8e:6a:7a:3c:39:0a:4b:a8:87:f4:02: 35:95:6e:de:1d:e2:5b:23:51:17:fb:56:3f:76:0c: 2d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A4:1E:76:D6:FD:5E:D4:87:AF:CA:9E:58:CC:21:49:1A:E0:CA:82 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64d::/48 Signature Algorithm: sha256WithRSAEncryption 09:58:41:c2:be:22:5c:d5:d3:f4:fb:3a:7a:3a:6a:a1:fb:63: e9:f0:fd:18:a1:70:b5:61:42:d9:e3:26:92:e4:01:a1:e9:fb: e5:eb:f7:37:9f:fd:3c:d5:35:39:ba:28:50:0f:77:3c:59:0c: bc:f5:c2:fc:b5:77:0c:b2:6f:63:41:af:56:2a:5d:03:8d:ff: 57:dd:04:81:19:3d:78:e7:bd:84:ed:2f:b4:6f:cd:47:5c:cb: a9:83:a8:24:fe:5e:d2:87:c0:83:af:d0:34:7c:22:bb:95:12: 2a:58:03:61:4f:0a:f8:f0:49:d7:5a:ea:40:97:49:50:29:23: aa:98:20:8b:9d:02:7b:ea:f7:8f:c9:8d:48:76:3c:3c:ce:32: 0e:9c:3b:ef:33:ea:de:18:3d:bd:2e:08:4c:2f:2f:ea:13:b2: 58:3c:74:d4:f7:67:79:9a:89:ba:23:c3:f0:18:71:0f:ec:be: 7c:08:92:08:e5:c8:f1:92:f4:47:d8:ee:61:42:94:67:b4:bf: b7:a9:cf:a9:f6:d4:5e:37:dc:08:15:7e:2f:99:a7:d1:b9:e9: b6:2f:3c:91:41:43:a4:95:58:90:85:d2:b7:8c:fc:81:34:ad: 03:9f:f4:95:25:ac:af:e4:19:fb:a7:bc:25:27:cf:5b:10:ae: 20:cb:54:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUa+P4p+e++Uyqq3ilRRbYpsoqzQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNTE0MDAwMDAwWhcNMjQwNjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzNkNmRhYmEyOTcxMWMyYzlkN2Q4Mzk2MjZiOGMxNTZj ZTJkMjI4OGQyNTE5NDg0NGYxODE5MTRmY2M4NTFmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHB0Ln6NuY7GOShsPHLze32a2VI2nB+Y5/AKeryZwvODn5 Sl4Ob5wgQlW+iCaw4lKxeKpSKnF/w6t54K+aXEXIytKPRJj97cWHPtgjaATfOgjN ynyUFVnxhDPOxOEwXei9zT5kxZUoLygU/ZVZTnfk9mPHb3tz/iF3eGr+sIr6UD63 MDm4fTew+nlheTeGDDRD7GSmLcbp+Cey9vBrEf1PK4DoH/D3732VxHm4JG7NMPYY u2qdTNx0f5wl5ipeJkBMZxNKb+9LNOvqdd+DYl2w3fKB29O93MZFIp9QbJDjCG3z C2qOano8OQpLqIf0AjWVbt4d4lsjURf7Vj92DC33AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKaQedtb9XtSHr8qeWMwhSRrgyoIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZjRjN2IyLWE2YTMtNDJmYi05ZjgwLWI3ZjVmZmM2NjM5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABk0wDQYJKoZIhvcNAQELBQADggEBAAlYQcK+IlzV0/T7Ono6aqH7 Y+nw/RihcLVhQtnjJpLkAaHp++Xr9zef/TzVNTm6KFAPdzxZDLz1wvy1dwyyb2NB r1YqXQON/1fdBIEZPXjnvYTtL7RvzUdcy6mDqCT+XtKHwIOv0DR8IruVEipYA2FP CvjwSdda6kCXSVApI6qYIIudAnvq94/JjUh2PDzOMg6cO+8z6t4YPb0uCEwvL+oT slg8dNT3Z3maibojw/AYcQ/svnwIkgjlyPGS9EfY7mFClGe0v7epz6n21F433AgV fi+Zp9G56bYvPJFBQ6SVWJCF0reM/IE0rQOf9JUlrK/kGfunvCUnz1sQriDLVJs= -----END CERTIFICATE-----Generated at Sun May 19 02:58:32 2024 by rpki-client on console-ams.rpki-client.org