$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa File: 7024778f-df37-4401-8278-42efb73eb5f9.roa (raw, json) Hash identifier: zoqcVM9weCcLtlMGG1fLYwUKuWj2UrNxenM0A5fnPu4= Subject key identifier: 45:77:4B:78:9B:F0:EB:6C:39:CB:47:69:43:57:F9:3F:B1:16:AA:FF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 621E91CFE2CD8DFE2DA1446A7760187E97E0EACE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa Signing time: Fri 19 Apr 2024 00:00:00 +0000 ROA not before: Fri 19 Apr 2024 00:00:00 +0000 ROA not after: Fri 24 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:1e:91:cf:e2:cd:8d:fe:2d:a1:44:6a:77:60:18:7e:97:e0:ea:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 19 00:00:00 2024 GMT Not After : May 24 23:59:59 2024 GMT Subject: serialNumber=17e09a7baa727a1be9cc8188ccd50d31061c5bc4629a034d46a5fd066901a91d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f4:98:65:b8:e4:7f:98:f5:1c:8a:cb:d2:17: 3d:b3:54:f5:86:94:14:e5:53:7a:21:4c:bf:a9:55: 1c:cf:a1:44:95:db:3f:ff:05:cd:a7:f7:f7:4c:14: 67:d8:f9:c6:b8:03:01:cc:c4:11:cc:bb:71:12:50: e5:79:1e:7c:74:93:e3:8a:54:fe:09:46:d5:b9:07: 5e:75:b9:29:f4:0c:58:66:07:e8:6c:4a:4b:c3:ee: 14:91:8e:2c:d4:43:ab:83:ab:ec:82:01:fc:d8:3c: 79:9d:12:6c:04:2b:88:fe:91:ab:90:d7:83:99:b5: 30:4d:33:ec:f2:20:6a:aa:cc:86:90:85:e2:93:3c: 3c:13:72:22:cb:70:6f:71:ae:5a:d3:39:ad:e9:cb: 7e:ff:c6:be:d6:d2:ba:65:22:0e:aa:1e:d5:f5:25: 88:d7:7c:00:db:2a:18:db:21:00:2e:81:dd:5d:52: a3:d6:7c:4e:59:46:8a:5b:a6:b5:2f:e7:da:e1:bf: 83:ca:ea:fd:cd:e2:0a:7f:5b:31:4d:9b:22:28:1a: c6:62:1d:98:5a:cb:70:89:99:68:94:f9:35:62:ab: 9d:67:12:fa:86:0d:51:cb:34:37:48:3e:a3:a3:2a: b2:98:f6:8f:94:70:eb:c7:31:a0:36:5e:0b:65:2e: c4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:77:4B:78:9B:F0:EB:6C:39:CB:47:69:43:57:F9:3F:B1:16:AA:FF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7024778f-df37-4401-8278-42efb73eb5f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 68:30:e9:12:3c:83:c8:50:bc:70:37:66:9e:32:33:bf:64:4d: 5b:ca:15:4d:7e:1a:21:cd:ca:f9:ee:81:53:97:dd:31:75:16: dc:11:dc:84:98:29:9c:58:12:d5:f3:c8:c6:e6:76:c6:16:19: e2:f9:02:68:a7:a7:58:0a:11:1e:bc:fe:da:e2:9b:2e:db:a7: f7:79:0b:17:a7:79:a2:7a:8c:75:b0:16:aa:fb:3a:3e:c4:31: 59:91:1b:e4:80:fc:6e:eb:a0:03:13:ec:3a:ce:6a:2c:19:f9: 35:da:d1:d4:49:6c:46:00:96:2f:ad:ac:a1:7d:bd:e0:9b:df: 53:13:f1:a0:ae:bd:ab:db:7f:39:a3:bb:a9:74:ce:f9:9a:19: 24:31:cf:eb:51:ac:4d:48:d0:4c:a7:b2:40:49:d1:10:d2:7e: 94:a7:ec:94:dd:2f:bc:f7:ac:e0:df:dc:9a:64:9f:00:75:30: 9a:c6:09:56:86:cf:9c:9f:6a:03:a2:fd:ef:f0:71:d6:45:89: 85:89:0e:03:c9:93:aa:f7:b6:ae:38:ef:1f:0c:b1:14:4d:ea: fd:12:32:d4:db:92:cf:e4:da:f9:08:15:86:ba:0a:65:cf:11: 97:91:59:1c:52:bd:dd:30:89:01:86:cd:8b:80:33:5b:94:f3: b6:29:f5:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYh6Rz+LNjf4toURqd2AYfpfg6s4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE5MDAwMDAwWhcNMjQwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2UwOWE3YmFhNzI3YTFiZTljYzgxODhjY2Q1MGQzMTA2 MWM1YmM0NjI5YTAzNGQ0NmE1ZmQwNjY5MDFhOTFkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU9JhluOR/mPUcisvSFz2zVPWGlBTlU3ohTL+pVRzPoUSV 2z//Bc2n9/dMFGfY+ca4AwHMxBHMu3ESUOV5Hnx0k+OKVP4JRtW5B151uSn0DFhm B+hsSkvD7hSRjizUQ6uDq+yCAfzYPHmdEmwEK4j+kauQ14OZtTBNM+zyIGqqzIaQ heKTPDwTciLLcG9xrlrTOa3py37/xr7W0rplIg6qHtX1JYjXfADbKhjbIQAugd1d UqPWfE5ZRopbprUv59rhv4PK6v3N4gp/WzFNmyIoGsZiHZhay3CJmWiU+TViq51n EvqGDVHLNDdIPqOjKrKY9o+UcOvHMaA2XgtlLsTXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURXdLeJvw62w5y0dpQ1f5P7EWqv8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzcwMjQ3NzhmLWRmMzctNDQwMS04Mjc4LTQyZWZiNzNlYjVmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAMwDQYJKoZIhvcNAQELBQADggEBAGgw6RI8g8hQvHA3Zp4yM79k TVvKFU1+GiHNyvnugVOX3TF1FtwR3ISYKZxYEtXzyMbmdsYWGeL5Aminp1gKER68 /trimy7bp/d5CxeneaJ6jHWwFqr7Oj7EMVmRG+SA/G7roAMT7DrOaiwZ+TXa0dRJ bEYAli+trKF9veCb31MT8aCuvavbfzmju6l0zvmaGSQxz+tRrE1I0EynskBJ0RDS fpSn7JTdL7z3rODf3JpknwB1MJrGCVaGz5yfagOi/e/wcdZFiYWJDgPJk6r3tq44 7x8MsRRN6v0SMtTbks/k2vkIFYa6CmXPEZeRWRxSvd0wiQGGzYuAM1uU87Yp9UI= -----END CERTIFICATE-----Generated at Thu May 2 14:33:14 2024 by rpki-client on console-fra.rpki-client.org