$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2a4ddb8-c852-4876-b718-a984606f10af.roa File: b2a4ddb8-c852-4876-b718-a984606f10af.roa (raw, json) Hash identifier: 5Taq7qDQBTsIKZBBsW3khBYIksD4gKMXYqUf8XRmJGQ= Subject key identifier: 0B:E9:BF:97:D9:DC:61:FC:2D:51:09:18:65:B2:E7:FF:D2:CE:DF:42 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 687125A97D46E2F4F5F0B13436D485EE25409B0A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2a4ddb8-c852-4876-b718-a984606f10af.roa Signing time: Tue 14 May 2024 00:00:00 +0000 ROA not before: Tue 14 May 2024 00:00:00 +0000 ROA not after: Tue 18 Jun 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:71:25:a9:7d:46:e2:f4:f5:f0:b1:34:36:d4:85:ee:25:40:9b:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:00:00 2024 GMT Not After : Jun 18 23:59:59 2024 GMT Subject: serialNumber=df61bae9c0d4e95c37f4c1a5f5912941f1bfb3fcc2972163a0a15c06fc3313da, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:60:9b:28:39:c4:7f:d1:ff:2e:f9:43:1a:a5: 11:34:67:0c:2b:33:af:8e:07:03:18:13:98:95:18: cb:78:73:7b:8c:c0:87:02:69:7f:ef:28:6e:1c:aa: 62:5c:9c:ac:e2:7a:22:9a:dd:11:a2:28:1b:76:df: 01:35:f4:eb:d5:f9:ee:06:d2:d3:b3:21:9e:a7:90: 92:1d:ca:66:62:9a:c0:a8:c0:b6:75:72:bf:56:26: 00:da:9b:fb:cb:e0:d2:88:bc:b7:f4:fb:5d:93:8e: 94:61:ac:05:72:9f:29:3d:b6:cb:30:e1:95:d5:6e: c5:04:e0:87:de:69:4b:3f:01:5c:e0:63:fd:ce:df: 13:ad:a2:ef:ca:c6:26:83:3b:0f:c1:7e:70:1a:06: b6:f5:a3:62:9e:e8:1e:fa:45:79:ae:17:63:a0:68: e1:69:df:fb:e9:a8:e9:61:5d:5f:a4:c9:9c:35:35: 44:6c:e0:12:c3:79:40:9a:36:1f:06:58:a6:82:7a: 01:1a:99:ca:d7:93:a2:78:95:6f:70:5e:b1:f5:8c: bb:09:c9:2a:67:c1:e0:f6:63:be:d9:6b:29:04:a3: 74:dd:e5:c3:3e:8f:82:43:f6:16:6b:fe:b2:15:c8: b8:f2:02:74:6b:3f:69:49:79:9d:4a:22:00:41:ef: b5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E9:BF:97:D9:DC:61:FC:2D:51:09:18:65:B2:E7:FF:D2:CE:DF:42 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b2a4ddb8-c852-4876-b718-a984606f10af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0c::/48 Signature Algorithm: sha256WithRSAEncryption 63:e0:ef:f4:df:b9:df:9f:dd:91:70:b1:e5:92:4f:4a:5a:be: ab:b0:f6:c6:31:ca:29:85:54:6f:1f:54:3f:3a:31:ef:5e:82: f1:92:51:2d:2f:05:7a:25:f5:9a:44:82:be:41:21:b9:6c:db: b2:e0:e2:e2:82:66:d9:e3:d7:6a:38:1a:f2:2a:bb:57:57:bc: 2e:fc:e8:3a:93:34:e5:d1:5d:3a:13:b5:b2:45:63:97:25:4a: b2:6e:a8:23:32:d0:85:5d:06:9a:28:5f:63:f5:56:8f:3c:15: e5:5c:b0:90:af:a6:13:c4:84:d1:e4:80:0b:e5:fc:7a:82:27: f9:6f:c6:d0:bc:b9:26:cb:52:05:65:e0:3c:7c:14:c3:e2:49: e7:80:b3:17:16:a1:c5:57:a2:64:db:7d:4e:6a:93:29:db:49: d4:71:c4:63:17:6c:41:03:8a:0f:f8:8b:e3:a2:a4:eb:58:1b: 62:b0:cb:17:6e:31:6f:32:f3:9a:40:dc:10:7e:24:3b:b5:2b: 81:77:49:66:a1:27:4d:72:81:05:26:95:15:d1:35:e0:43:75: 80:0c:12:28:69:b7:75:a5:9a:14:d3:75:88:40:88:d9:d3:1e: 86:6f:f7:5c:9c:7b:93:39:d1:3f:c1:18:12:63:9c:7e:63:9f: e6:2e:7f:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaHElqX1G4vT18LE0NtSF7iVAmwowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNTE0MDAwMDAwWhcNMjQwNjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjYxYmFlOWMwZDRlOTVjMzdmNGMxYTVmNTkxMjk0MWYx YmZiM2ZjYzI5NzIxNjNhMGExNWMwNmZjMzMxM2RhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVYJsoOcR/0f8u+UMapRE0ZwwrM6+OBwMYE5iVGMt4c3uM wIcCaX/vKG4cqmJcnKzieiKa3RGiKBt23wE19OvV+e4G0tOzIZ6nkJIdymZimsCo wLZ1cr9WJgDam/vL4NKIvLf0+12TjpRhrAVynyk9tssw4ZXVbsUE4IfeaUs/AVzg Y/3O3xOtou/KxiaDOw/BfnAaBrb1o2Ke6B76RXmuF2OgaOFp3/vpqOlhXV+kyZw1 NURs4BLDeUCaNh8GWKaCegEamcrXk6J4lW9wXrH1jLsJySpnweD2Y77ZaykEo3Td 5cM+j4JD9hZr/rIVyLjyAnRrP2lJeZ1KIgBB77VVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC+m/l9ncYfwtUQkYZbLn/9LO30IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IyYTRkZGI4LWM4NTItNDg3Ni1iNzE4LWE5ODQ2MDZmMTBhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAwwDQYJKoZIhvcNAQELBQADggEBAGPg7/Tfud+f3ZFwseWST0pa vquw9sYxyimFVG8fVD86Me9egvGSUS0vBXol9ZpEgr5BIbls27Lg4uKCZtnj12o4 GvIqu1dXvC786DqTNOXRXToTtbJFY5clSrJuqCMy0IVdBpooX2P1Vo88FeVcsJCv phPEhNHkgAvl/HqCJ/lvxtC8uSbLUgVl4Dx8FMPiSeeAsxcWocVXomTbfU5qkynb SdRxxGMXbEEDig/4i+OipOtYG2KwyxduMW8y85pA3BB+JDu1K4F3SWahJ01ygQUm lRXRNeBDdYAMEihpt3WlmhTTdYhAiNnTHoZv91yce5M50T/BGBJjnH5jn+Yuf+w= -----END CERTIFICATE-----Generated at Sun May 19 00:30:05 2024 by rpki-client on console-ams.rpki-client.org