$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7f5f6a84-ec81-41ba-b72a-9537376d41fb.roa File: 7f5f6a84-ec81-41ba-b72a-9537376d41fb.roa (raw, json) Hash identifier: SSRoTB/5QgizV7J7s8K4djBBte/mDaiZxxuTWzBktGk= Subject key identifier: 9F:89:2C:CF:39:A5:89:C8:7B:63:E4:C3:B2:15:EB:81:E4:71:96:E6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2787D0A259276B3ACA3528A82F9187B68DEE071B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7f5f6a84-ec81-41ba-b72a-9537376d41fb.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:f00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:87:d0:a2:59:27:6b:3a:ca:35:28:a8:2f:91:87:b6:8d:ee:07:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=4e75aff1ee38583cf87afeb73cf726fcb03f0ef6234b54ee53f292d3edd8b7c8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5a:79:8b:0d:a2:18:e6:6d:76:ae:b9:ea:aa: 8a:56:55:ad:5a:41:67:47:5d:9d:38:ef:16:76:c3: ff:9d:8c:ed:49:4a:64:ec:06:2a:fd:2a:a3:41:a6: 16:f0:9b:7e:4c:e4:63:4f:3a:68:b3:8f:5c:4d:24: 80:ae:c4:5d:7f:e3:b3:4c:52:be:cd:18:f8:13:d5: 97:41:65:4d:35:0c:11:9d:aa:28:b1:f6:53:9c:77: 3f:bd:f2:47:8a:96:ff:84:87:5c:66:61:2a:30:f7: e3:25:ed:29:52:74:26:f5:d1:47:a8:e2:29:66:b0: 68:f4:d7:c8:db:a5:3d:db:46:86:2f:66:d3:2a:9d: cc:d3:6b:58:d0:77:70:4f:3d:c2:17:21:f6:33:3e: b0:21:88:aa:a6:d9:56:3a:2b:fa:43:a5:1c:b6:02: ca:11:e7:0a:15:33:9a:37:e9:b7:e3:84:1c:94:96: 9a:80:71:b6:19:e3:07:b3:0a:25:cd:cd:d3:53:71: ac:f5:9e:d4:b9:a0:26:65:66:15:d2:d3:58:a9:63: 99:78:58:7f:e4:a8:d3:bb:f2:67:69:e6:2a:a2:44: e2:4a:25:82:c6:3b:83:e4:08:2f:a4:d1:52:91:b0: cb:eb:f4:bb:6e:42:c6:7d:15:95:d5:00:a6:aa:c0: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:89:2C:CF:39:A5:89:C8:7B:63:E4:C3:B2:15:EB:81:E4:71:96:E6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7f5f6a84-ec81-41ba-b72a-9537376d41fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f00b::/48 Signature Algorithm: sha256WithRSAEncryption 48:7e:f2:77:2f:6f:ed:3c:04:9f:ba:b3:37:4c:25:0b:18:0b: ad:3d:47:e9:0b:fa:44:57:f9:3e:2b:a4:69:b8:87:04:ae:f3: 21:36:69:f8:be:c4:d6:6f:32:e5:28:3a:7d:4e:3c:ae:cf:8b: 4d:6f:c4:bb:4b:c6:2e:93:4c:0e:ed:e2:29:28:c4:84:60:23: ec:f2:1c:8f:2d:5c:43:fa:80:a3:dd:45:87:91:af:fd:2e:6d: e4:4e:e3:4e:d1:0d:86:08:1d:6b:70:b2:27:f2:2a:c7:81:4f: ef:b7:d3:85:f6:14:48:a1:6d:ae:7f:8b:34:f1:1e:5d:1f:69: 03:06:ee:c7:a1:e1:fc:0b:a0:43:57:9b:ac:21:cc:a0:2f:ab: d9:53:a6:87:a4:dc:d3:ea:21:08:7b:77:12:b8:92:bc:5e:2e: b8:9d:6c:0f:a2:47:c1:8c:3b:ee:10:28:67:7c:1f:3d:9e:d3: 80:37:5f:d7:cd:ff:41:a4:e0:38:12:c3:71:be:f0:53:99:66: 84:5a:8e:af:a3:a7:8e:92:a8:52:e7:59:2c:30:1a:2b:98:d7: f5:ea:21:a3:61:33:bb:0d:8b:3a:32:b7:9f:de:7b:1c:ac:bf: ed:0f:18:15:a8:6f:aa:7e:d5:b9:e0:46:2c:7f:ca:ff:30:fa: 6f:9a:3a:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ4fQolknazrKNSioL5GHto3uBxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE3MDAwMDAwWhcNMjQwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTc1YWZmMWVlMzg1ODNjZjg3YWZlYjczY2Y3MjZmY2Iw M2YwZWY2MjM0YjU0ZWU1M2YyOTJkM2VkZDhiN2M4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeWnmLDaIY5m12rrnqqopWVa1aQWdHXZ047xZ2w/+djO1J SmTsBir9KqNBphbwm35M5GNPOmizj1xNJICuxF1/47NMUr7NGPgT1ZdBZU01DBGd qiix9lOcdz+98keKlv+Eh1xmYSow9+Ml7SlSdCb10Ueo4ilmsGj018jbpT3bRoYv ZtMqnczTa1jQd3BPPcIXIfYzPrAhiKqm2VY6K/pDpRy2AsoR5woVM5o36bfjhByU lpqAcbYZ4wezCiXNzdNTcaz1ntS5oCZlZhXS01ipY5l4WH/kqNO78mdp5iqiROJK JYLGO4PkCC+k0VKRsMvr9LtuQsZ9FZXVAKaqwLVzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUn4kszzmlich7Y+TDshXrgeRxluYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzdmNWY2YTg0LWVjODEtNDFiYS1iNzJhLTk1MzczNzZkNDFmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8AswDQYJKoZIhvcNAQELBQADggEBAEh+8ncvb+08BJ+6szdMJQsY C609R+kL+kRX+T4rpGm4hwSu8yE2afi+xNZvMuUoOn1OPK7Pi01vxLtLxi6TTA7t 4ikoxIRgI+zyHI8tXEP6gKPdRYeRr/0ubeRO407RDYYIHWtwsifyKseBT++304X2 FEihba5/izTxHl0faQMG7seh4fwLoENXm6whzKAvq9lTpoek3NPqIQh7dxK4krxe LridbA+iR8GMO+4QKGd8Hz2e04A3X9fN/0Gk4DgSw3G+8FOZZoRajq+jp46SqFLn WSwwGiuY1/XqIaNhM7sNizoyt5/eexysv+0PGBWob6p+1bngRix/yv8w+m+aOvQ= -----END CERTIFICATE-----Generated at Thu May 2 10:17:46 2024 by rpki-client on console-ams.rpki-client.org