$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: VnHGNgmFakfzazCRvcRuNLGg6yaOwHjuePUejfMXNWo= Subject key identifier: 61:18:D7:2A:A8:70:A0:4A:85:C8:4D:AB:A7:78:B3:86:7E:26:6B:2A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4BC167F7FCFF2E466688C4FE83A7890A6BB7F377 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Tue 14 May 2024 00:00:00 +0000 ROA not before: Tue 14 May 2024 00:00:00 +0000 ROA not after: Tue 18 Jun 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c1:67:f7:fc:ff:2e:46:66:88:c4:fe:83:a7:89:0a:6b:b7:f3:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:00:00 2024 GMT Not After : Jun 18 23:59:59 2024 GMT Subject: serialNumber=ad382bb6fd9ea538bc379d797d1834468b8c34903d20e41fc7731a512c93c624, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:ba:bb:b5:10:a8:37:6e:a5:84:df:98:40: 56:63:ee:2b:ba:59:ac:b9:a4:59:12:76:7b:5b:61: b6:99:04:d1:ef:e9:ed:14:ea:e7:6c:9d:cb:69:98: 96:b3:10:ba:50:15:f7:38:3d:dd:30:b6:ad:9e:e6: f1:fa:50:a0:22:32:5f:9b:09:7a:6f:af:75:27:f9: 56:b9:15:f8:89:06:c3:fc:ef:09:22:02:24:c7:c0: 1d:e4:4e:dd:78:4d:21:84:50:d0:d5:21:44:12:e7: c0:8c:05:85:f8:9e:fc:6a:25:a1:ed:7f:70:0c:18: da:46:28:29:ee:c5:ba:b4:ad:0a:cf:10:d3:ac:c9: 10:62:b2:d6:17:4b:cb:48:34:e9:a1:89:ed:1d:fb: 34:55:09:bd:84:7b:cc:b9:3c:5c:b6:bf:ec:08:a3: 0f:b2:8d:9f:7c:66:c6:b0:16:93:6f:d9:18:16:75: a6:8c:71:8b:98:e1:b5:30:d5:66:f5:c5:f0:90:7f: 90:f6:61:56:2f:f8:51:35:f1:e3:d8:22:f4:7e:bf: 66:e2:42:d5:77:ae:7e:c1:22:ac:90:0c:be:01:75: 04:96:6e:ca:e2:bd:19:03:58:8d:c5:47:22:6c:15: 97:b5:63:55:7c:b5:94:61:de:93:e6:01:51:55:87: f5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:18:D7:2A:A8:70:A0:4A:85:C8:4D:AB:A7:78:B3:86:7E:26:6B:2A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 5c:b0:ef:b7:62:99:65:cf:a5:30:90:17:60:02:dd:74:a4:7d: 28:07:38:49:6d:62:8f:6c:71:d3:20:47:d2:e9:20:6e:89:39: 6c:f3:f5:fb:f2:93:21:b6:db:a9:6f:8f:82:29:c6:d8:22:f5: 2a:30:5e:c3:bc:53:04:2b:9b:39:1e:76:cd:9b:b4:f4:ef:1f: 4c:b4:d5:47:1d:3c:9e:06:8b:64:6e:2a:cb:76:42:05:c9:9d: 80:6e:1a:32:8e:1d:c2:0f:55:ed:b4:c9:62:f1:2c:21:42:13: 62:63:3c:d8:68:60:69:1e:2e:6a:41:7e:01:51:36:58:e7:ea: 13:0d:29:60:ce:1f:66:81:ff:b8:f7:27:d1:4f:54:63:9c:bb: 5a:5f:c6:cc:f0:a7:aa:b2:1e:02:5f:ec:54:71:c8:3d:c4:31: e9:67:14:01:aa:7c:3f:d5:81:f7:43:81:ff:86:e0:3c:f1:8c: aa:d6:0d:0c:8e:9f:65:ee:8f:65:cb:ab:7c:a6:d2:35:67:cb: 0c:e6:21:d0:26:76:64:16:de:6f:e4:5f:ad:2c:a9:94:1c:ca: 56:f7:57:1a:2a:47:e0:5a:38:87:16:1e:1f:91:ef:52:5c:cb: 62:98:60:10:9a:bb:20:8d:7e:f4:94:75:7a:48:0f:a9:41:88: 45:ee:97:67 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS8Fn9/z/LkZmiMT+g6eJCmu383cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNTE0MDAwMDAwWhcNMjQwNjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDM4MmJiNmZkOWVhNTM4YmMzNzlkNzk3ZDE4MzQ0Njhi OGMzNDkwM2QyMGU0MWZjNzczMWE1MTJjOTNjNjI0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC52Lq7tRCoN26lhN+YQFZj7iu6Way5pFkSdntbYbaZBNHv 6e0U6udsnctpmJazELpQFfc4Pd0wtq2e5vH6UKAiMl+bCXpvr3Un+Va5FfiJBsP8 7wkiAiTHwB3kTt14TSGEUNDVIUQS58CMBYX4nvxqJaHtf3AMGNpGKCnuxbq0rQrP ENOsyRBistYXS8tINOmhie0d+zRVCb2Ee8y5PFy2v+wIow+yjZ98ZsawFpNv2RgW daaMcYuY4bUw1Wb1xfCQf5D2YVYv+FE18ePYIvR+v2biQtV3rn7BIqyQDL4BdQSW bsrivRkDWI3FRyJsFZe1Y1V8tZRh3pPmAVFVh/VDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYRjXKqhwoEqFyE2rp3izhn4mayowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAFyw77dimWXPpTCQF2AC3XSk fSgHOEltYo9scdMgR9LpIG6JOWzz9fvykyG226lvj4Ipxtgi9SowXsO8UwQrmzke ds2btPTvH0y01UcdPJ4Gi2RuKst2QgXJnYBuGjKOHcIPVe20yWLxLCFCE2JjPNho YGkeLmpBfgFRNljn6hMNKWDOH2aB/7j3J9FPVGOcu1pfxszwp6qyHgJf7FRxyD3E MelnFAGqfD/VgfdDgf+G4DzxjKrWDQyOn2Xuj2XLq3ym0jVnywzmIdAmdmQW3m/k X60sqZQcylb3VxoqR+BaOIcWHh+R71Jcy2KYYBCauyCNfvSUdXpID6lBiEXul2c= -----END CERTIFICATE-----Generated at Sun May 26 02:55:10 2024 by rpki-client on console-fra.rpki-client.org