$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa File: 60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa (raw, json) Hash identifier: vcVNrWPxxMZmUEJ8MApnEYfI9F31bXiI1BjpeP6wuPo= Subject key identifier: B6:DF:B2:26:C1:0C:0F:46:B2:DD:77:ED:20:BD:AD:AA:95:55:0C:AC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0DC6E215DE179C8665E2E88AC3C232DAB356CCE9 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa Signing time: Tue 14 May 2024 00:00:00 +0000 ROA not before: Tue 14 May 2024 00:00:00 +0000 ROA not after: Tue 18 Jun 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c6:e2:15:de:17:9c:86:65:e2:e8:8a:c3:c2:32:da:b3:56:cc:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:00:00 2024 GMT Not After : Jun 18 23:59:59 2024 GMT Subject: serialNumber=3928e977074ec64f3ce8a55045c2ea4ab063f2dbd84b223c7b1dc3448be8667f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:83:94:cc:f7:38:ed:c7:a3:ee:86:fd:13: 22:7f:89:41:94:29:37:cc:a2:6f:2b:6c:f0:99:2b: 5f:97:7c:86:93:c8:d1:2f:21:df:19:c3:c4:e7:15: c1:85:bc:a3:10:34:db:4b:e7:ca:93:c7:cf:a3:c9: 89:c8:66:2d:4b:c9:02:55:50:0f:30:88:53:eb:13: 66:7f:05:e3:71:52:fe:12:fa:c1:51:f1:d7:e5:12: e1:b0:a0:1f:5a:30:42:ee:ad:d2:6c:93:be:5a:de: 8a:77:c8:c3:91:00:2a:80:b1:5b:ca:a9:a9:d4:57: 7a:39:56:c7:62:29:bc:5b:0e:5b:7f:64:38:93:cf: 31:e6:03:9f:74:ba:40:9c:8e:7e:97:24:43:59:4f: e0:b0:28:17:da:c4:d8:10:7a:e6:4d:b6:84:d2:a6: 67:c4:43:20:35:e1:1a:fc:69:c5:0a:31:7b:4d:52: 74:ef:e5:0a:45:ff:08:5d:20:81:a4:46:73:80:45: 2e:68:7c:f1:6b:06:ae:53:ad:d2:e2:89:38:20:7e: a2:22:4a:5a:b5:3b:45:75:fa:ee:85:3b:c3:44:89: ba:bf:91:d8:7b:5b:60:83:e9:a7:be:1b:72:aa:7c: 04:e6:a2:34:ad:db:61:7b:c2:8e:f5:ca:e6:7a:30: d8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DF:B2:26:C1:0C:0F:46:B2:DD:77:ED:20:BD:AD:AA:95:55:0C:AC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/60f92b89-d001-48c5-9a79-ac7a1a17f5c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 95:64:bd:ac:33:11:f4:ea:12:92:ae:23:46:a6:b6:d0:06:31: 35:5b:db:69:83:28:ef:4c:11:92:49:de:f3:8e:57:da:e8:f4: b9:db:8f:71:c3:2c:85:32:24:bb:28:03:b3:0d:07:7c:8e:13: 0a:09:57:fc:a3:0a:28:f4:e9:4f:4c:ff:6a:31:a3:94:37:83: fa:da:c8:98:d9:d9:38:4f:d4:61:f8:0a:57:d3:c3:dd:74:f5: b7:3b:c2:41:78:8a:9d:93:55:bf:9d:1b:5d:7e:9b:2a:19:7d: df:29:c9:f5:1e:b6:67:3d:1a:71:0d:a5:d7:cd:3e:5c:90:00: d9:8b:af:0c:14:fe:10:45:35:a2:4e:cb:e4:2b:7b:b0:ab:55: 01:b8:3f:95:f1:92:9d:0c:fb:1e:c9:c8:4c:94:8e:eb:0a:e2: 6e:a1:ca:22:4f:16:26:5c:c3:7e:d2:05:31:b1:3e:5c:19:d3: 00:70:37:39:c3:08:7c:f5:ba:24:7b:37:22:5c:2c:fb:f0:e8: 89:43:cb:ea:65:36:86:c0:8e:e7:e0:e4:75:b9:fc:74:5f:5f: 2e:71:b7:22:9e:fe:fa:f9:36:98:2b:1d:ce:93:a5:a0:f2:94: e2:12:b9:ee:29:94:ab:f1:e0:ee:dc:b0:2d:8a:c4:73:1e:a5: e6:ea:1e:41 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDcbiFd4XnIZl4uiKw8Iy2rNWzOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNTE0MDAwMDAwWhcNMjQwNjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTI4ZTk3NzA3NGVjNjRmM2NlOGE1NTA0NWMyZWE0YWIw NjNmMmRiZDg0YjIyM2M3YjFkYzM0NDhiZTg2NjdmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSJ4OUzPc47cej7ob9EyJ/iUGUKTfMom8rbPCZK1+XfIaT yNEvId8Zw8TnFcGFvKMQNNtL58qTx8+jyYnIZi1LyQJVUA8wiFPrE2Z/BeNxUv4S +sFR8dflEuGwoB9aMELurdJsk75a3op3yMORACqAsVvKqanUV3o5VsdiKbxbDlt/ ZDiTzzHmA590ukCcjn6XJENZT+CwKBfaxNgQeuZNtoTSpmfEQyA14Rr8acUKMXtN UnTv5QpF/whdIIGkRnOARS5ofPFrBq5TrdLiiTggfqIiSlq1O0V1+u6FO8NEibq/ kdh7W2CD6ae+G3KqfATmojSt22F7wo71yuZ6MNi5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtt+yJsEMD0ay3XftIL2tqpVVDKwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzYwZjkyYjg5LWQwMDEtNDhjNS05YTc5LWFjN2ExYTE3ZjVjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAJVkvawzEfTqEpKuI0amttAG MTVb22mDKO9MEZJJ3vOOV9ro9Lnbj3HDLIUyJLsoA7MNB3yOEwoJV/yjCij06U9M /2oxo5Q3g/rayJjZ2ThP1GH4ClfTw9109bc7wkF4ip2TVb+dG11+myoZfd8pyfUe tmc9GnENpdfNPlyQANmLrwwU/hBFNaJOy+Qre7CrVQG4P5Xxkp0M+x7JyEyUjusK 4m6hyiJPFiZcw37SBTGxPlwZ0wBwNznDCHz1uiR7NyJcLPvw6IlDy+plNobAjufg 5HW5/HRfXy5xtyKe/vr5NpgrHc6TpaDylOISue4plKvx4O7csC2KxHMepebqHkE= -----END CERTIFICATE-----Generated at Sun May 26 08:04:51 2024 by rpki-client on console-fra.rpki-client.org