$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa File: 86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa (raw, json) Hash identifier: 7R7H93khBXFyot02SLPngh89atTzqNL1tABNJvzjOtg= Subject key identifier: 01:4F:EA:03:5D:BE:CC:A1:78:C9:7F:27:99:A8:5B:65:77:22:F9:EF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 41A9CF7D0152DDA8C04A764693CC57712947EE52 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a9:cf:7d:01:52:dd:a8:c0:4a:76:46:93:cc:57:71:29:47:ee:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=0fed8ca58d4a047d551380e3219b0cf3949b2fefc291585c6013cd1e489d55f7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a5:88:9e:21:ad:c6:d3:57:b3:e9:84:29:7a: cb:87:2a:f8:a9:f1:a4:98:c6:3d:49:2f:7c:cd:b0: 50:51:08:da:56:79:96:9e:e5:fb:3e:1e:fe:a0:06: eb:70:1d:1a:03:0b:30:e3:61:6c:3b:c0:2a:68:ee: 3b:70:d3:aa:13:d5:d8:a7:d4:6d:2e:a0:93:53:d8: 91:81:ea:5c:13:4c:a4:eb:c4:b0:ad:55:16:50:68: a0:47:d0:a5:0d:28:2b:ed:af:07:88:c8:bb:d4:44: 3a:9f:e0:e3:ab:f8:10:83:81:18:8b:cc:5e:c3:9f: a0:e0:06:cd:8e:d1:28:08:b8:57:2b:31:23:bb:ec: ee:20:72:39:98:d5:74:0d:70:fb:1f:9e:e5:56:9b: b0:b2:10:10:b0:64:6c:25:b4:b1:7a:78:84:34:3a: 67:a6:ab:ca:98:60:0b:7d:06:52:a3:43:d8:91:fe: 48:cd:f3:52:01:e6:dd:c3:59:9c:68:1e:d2:ab:2c: f8:15:60:43:49:40:1f:e8:3f:0f:9e:4a:40:08:92: 9d:36:b8:bd:22:c4:a2:e8:67:cc:80:d8:8e:60:68: 37:1f:18:8e:8f:02:75:72:61:b3:bb:19:b1:88:b8: 70:4f:a0:98:57:13:d9:3f:84:f8:77:8c:2d:80:a7: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:4F:EA:03:5D:BE:CC:A1:78:C9:7F:27:99:A8:5B:65:77:22:F9:EF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/86b03fee-2a6f-4c44-bcbd-7e59bccf1590.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c20::/48 Signature Algorithm: sha256WithRSAEncryption 89:88:05:e7:f9:e6:4a:6b:a1:6d:c4:44:f0:37:cb:d6:c2:7a: bc:68:55:7b:64:36:46:22:8e:ae:34:0c:f2:3d:8c:04:47:31: ba:bc:54:d5:0d:6b:01:a1:5f:85:9f:b2:5d:82:6b:bb:a9:bb: 09:68:5e:1d:43:2a:03:3c:89:d2:0b:e0:28:63:17:fb:6c:e2: 7b:23:a3:f6:eb:ce:fc:90:5a:2e:6d:f6:1b:fb:aa:18:55:aa: 02:e6:48:09:28:fe:b7:20:be:2b:a6:f6:7c:fd:a8:7c:8a:85: 17:a0:47:7f:70:87:81:9d:30:00:e5:20:a1:f2:8c:29:a6:17: 55:be:a2:e7:e0:35:c4:eb:33:d5:a4:b3:f4:8e:a6:0e:c2:b7: c9:41:70:00:4b:43:10:ff:f0:17:e9:1f:e4:d5:04:63:99:7f: 34:09:6f:b1:01:cd:f7:bb:91:86:39:c9:a8:de:78:e7:98:1f: 64:42:ec:7b:a4:0a:5b:bf:13:30:f1:98:93:17:a7:15:44:f7: 91:68:fd:46:7e:cb:e5:da:81:59:6b:66:7d:d3:74:98:bc:7d: 93:1d:6a:9d:0f:e2:c1:4f:e2:1b:e2:ab:2c:de:54:4c:d0:94: 8a:80:38:82:76:e6:d2:f4:2f:99:9e:b4:94:04:f9:f8:c8:e6: 05:24:74:67 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQanPfQFS3ajASnZGk8xXcSlH7lIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmVkOGNhNThkNGEwNDdkNTUxMzgwZTMyMTliMGNmMzk0 OWIyZmVmYzI5MTU4NWM2MDEzY2QxZTQ4OWQ1NWY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6pYieIa3G01ez6YQpesuHKvip8aSYxj1JL3zNsFBRCNpW eZae5fs+Hv6gButwHRoDCzDjYWw7wCpo7jtw06oT1din1G0uoJNT2JGB6lwTTKTr xLCtVRZQaKBH0KUNKCvtrweIyLvURDqf4OOr+BCDgRiLzF7Dn6DgBs2O0SgIuFcr MSO77O4gcjmY1XQNcPsfnuVWm7CyEBCwZGwltLF6eIQ0Omemq8qYYAt9BlKjQ9iR /kjN81IB5t3DWZxoHtKrLPgVYENJQB/oPw+eSkAIkp02uL0ixKLoZ8yA2I5gaDcf GI6PAnVyYbO7GbGIuHBPoJhXE9k/hPh3jC2Ap71PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAU/qA12+zKF4yX8nmahbZXci+e8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzg2YjAzZmVlLTJhNmYtNGM0NC1iY2JkLTdlNTliY2NmMTU5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADCAwDQYJKoZIhvcNAQELBQADggEBAImIBef55kproW3ERPA3y9bC erxoVXtkNkYijq40DPI9jARHMbq8VNUNawGhX4Wfsl2Ca7upuwloXh1DKgM8idIL 4ChjF/ts4nsjo/brzvyQWi5t9hv7qhhVqgLmSAko/rcgvium9nz9qHyKhRegR39w h4GdMADlIKHyjCmmF1W+oufgNcTrM9Wks/SOpg7Ct8lBcABLQxD/8BfpH+TVBGOZ fzQJb7EBzfe7kYY5yajeeOeYH2RC7HukClu/EzDxmJMXpxVE95Fo/UZ+y+XagVlr Zn3TdJi8fZMdap0P4sFP4hviqyzeVEzQlIqAOIJ25tL0L5metJQE+fjI5gUkdGc= -----END CERTIFICATE-----Generated at Mon Nov 25 19:48:09 2024 by rpki-client on console-fra.rpki-client.org