$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa File: 462f61ba-5748-496a-8795-61c32daf9775.roa (raw, json) Hash identifier: F9YoxkNQlK5QcoTddyo0x9dXST1gxqAHI8p3hcUiBsU= Subject key identifier: 07:BA:1F:C7:A1:1D:24:5A:5A:C7:FC:F2:57:C2:13:3B:0F:58:C4:F9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 366B0B287A7DA5AA5A8ADF497092929EB9A0F6DD Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa Signing time: Fri 19 Apr 2024 00:00:00 +0000 ROA not before: Fri 19 Apr 2024 00:00:00 +0000 ROA not after: Fri 24 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:6b:0b:28:7a:7d:a5:aa:5a:8a:df:49:70:92:92:9e:b9:a0:f6:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 19 00:00:00 2024 GMT Not After : May 24 23:59:59 2024 GMT Subject: serialNumber=f8352cd74fdad8fb1e4fa3345f56f3fd6536533ee80510ce3bd0e5954467d3a9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:51:be:0a:af:73:80:71:65:4b:3e:8c:b5:74: 29:0c:d7:58:67:24:b8:d0:a8:1c:55:41:44:aa:b7: 14:f9:5f:ed:28:9b:1b:5e:6e:08:4a:ad:52:3c:50: ec:82:f8:96:74:4f:8c:0a:cf:19:d8:54:8d:5d:62: 71:40:21:72:32:ec:0a:e8:1f:c6:dc:60:12:71:4b: 91:45:9a:06:e7:b4:cb:cd:e4:95:61:0f:81:1c:19: 11:08:28:39:60:9b:a4:94:a7:43:ed:c4:c5:fe:bf: 37:d3:a2:56:8e:9b:40:30:6a:10:b7:f7:60:bc:82: 56:ec:25:10:5a:2b:5d:af:bd:8d:c9:d1:ad:70:ba: 10:4a:d4:03:1c:b9:17:ae:6f:f5:e0:8b:0d:31:7c: ee:a5:3c:8d:11:6b:7f:bd:3c:e0:33:c8:2e:7d:00: 80:86:58:4b:4c:79:3b:3f:6f:38:d9:35:83:da:6c: 39:af:a7:cd:5f:83:86:8a:b9:b1:9d:22:7c:ac:bb: e7:4b:2d:a7:a6:48:9e:ee:bc:b5:31:00:58:5a:16: dc:11:53:b9:f0:88:77:b5:1f:4b:17:9d:f8:54:a6: 87:e9:72:5a:97:35:e9:b7:92:3a:2a:e2:cd:01:9b: ef:53:9a:05:15:f3:59:27:22:2c:a9:8c:15:1d:12: ef:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BA:1F:C7:A1:1D:24:5A:5A:C7:FC:F2:57:C2:13:3B:0F:58:C4:F9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/462f61ba-5748-496a-8795-61c32daf9775.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c17::/48 Signature Algorithm: sha256WithRSAEncryption 01:c0:57:ad:55:2a:33:d2:f5:6c:35:8d:aa:57:ba:69:4e:32: 4d:4c:7d:4f:ae:ad:1e:f7:50:18:72:8c:74:dd:9e:cc:02:f7: f4:81:ae:13:0b:49:d8:86:89:f1:ef:b7:e2:d8:66:ec:54:08: 1e:0c:3e:97:d8:63:23:31:d0:fd:20:66:6d:f3:5b:f9:0d:8b: 44:4e:c3:7e:cb:24:5d:ab:ae:38:16:99:70:ef:db:fd:c9:37: 78:77:c6:c0:95:1d:1e:ce:94:87:9a:6c:72:e4:a4:fa:f4:75: f3:8f:d9:ab:75:3a:26:77:35:e7:2e:a3:0d:fd:a6:a9:a3:d0: 1b:7e:a7:0e:ee:03:1d:51:32:d4:98:72:23:35:8e:fb:a3:1a: a6:d8:dd:a6:ee:4d:55:54:ff:75:61:6a:8b:93:02:42:33:6f: e6:a3:81:8f:62:82:ac:d6:15:11:2c:74:0c:a0:01:c8:4a:07: f3:00:fc:09:f5:c1:9f:3e:ae:2e:21:07:42:fb:dd:0e:b1:4f: d6:11:b0:3a:df:83:5d:d5:b2:b2:85:65:7a:b3:09:a8:23:66: 50:23:dd:db:87:18:b5:55:c0:64:ca:08:ea:41:bb:50:3a:1e: 60:47:05:eb:8a:4e:ab:49:45:a3:52:6e:33:fa:49:c3:42:65: 5f:1f:ab:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNmsLKHp9papait9JcJKSnrmg9t0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE5MDAwMDAwWhcNMjQwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODM1MmNkNzRmZGFkOGZiMWU0ZmEzMzQ1ZjU2ZjNmZDY1 MzY1MzNlZTgwNTEwY2UzYmQwZTU5NTQ0NjdkM2E5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEUb4Kr3OAcWVLPoy1dCkM11hnJLjQqBxVQUSqtxT5X+0o mxtebghKrVI8UOyC+JZ0T4wKzxnYVI1dYnFAIXIy7AroH8bcYBJxS5FFmgbntMvN 5JVhD4EcGREIKDlgm6SUp0PtxMX+vzfTolaOm0AwahC392C8glbsJRBaK12vvY3J 0a1wuhBK1AMcuReub/Xgiw0xfO6lPI0Ra3+9POAzyC59AICGWEtMeTs/bzjZNYPa bDmvp81fg4aKubGdInysu+dLLaemSJ7uvLUxAFhaFtwRU7nwiHe1H0sXnfhUpofp clqXNem3kjoq4s0Bm+9TmgUV81knIiypjBUdEu/rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB7ofx6EdJFpax/zyV8ITOw9YxPkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQ2MmY2MWJhLTU3NDgtNDk2YS04Nzk1LTYxYzMyZGFmOTc3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBcwDQYJKoZIhvcNAQELBQADggEBAAHAV61VKjPS9Ww1japXumlO Mk1MfU+urR73UBhyjHTdnswC9/SBrhMLSdiGifHvt+LYZuxUCB4MPpfYYyMx0P0g Zm3zW/kNi0ROw37LJF2rrjgWmXDv2/3JN3h3xsCVHR7OlIeabHLkpPr0dfOP2at1 OiZ3Necuow39pqmj0Bt+pw7uAx1RMtSYciM1jvujGqbY3abuTVVU/3VhaouTAkIz b+ajgY9igqzWFREsdAygAchKB/MA/An1wZ8+ri4hB0L73Q6xT9YRsDrfg13VsrKF ZXqzCagjZlAj3duHGLVVwGTKCOpBu1A6HmBHBeuKTqtJRaNSbjP6ScNCZV8fq7I= -----END CERTIFICATE-----Generated at Fri May 3 03:09:23 2024 by rpki-client on console-ams.rpki-client.org