$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: YvG4ITsRdGZJOFtty2DfxZ9vxuk+dPPAdFX1fDxCeeY= Subject key identifier: 2C:87:F9:38:14:F2:3A:47:6C:83:74:17:C0:E8:D2:45:03:A2:A7:75 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 739FA3FB700ED0D7790E48CB6C9189BA9195D881 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9f:a3:fb:70:0e:d0:d7:79:0e:48:cb:6c:91:89:ba:91:95:d8:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=2d9d76189bdaee8e2b0f2db714959c331b19109c1689799f8165ff26d710073e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:cd:4e:91:58:15:47:2c:53:e8:39:32:be: e2:bd:a2:76:eb:49:31:cd:36:cd:d2:47:d5:dd:0f: fc:2c:4b:d8:59:ee:97:b9:d1:85:d6:b2:b2:c8:59: 9b:15:b1:08:73:fa:ae:89:c2:cf:ad:f3:4c:c7:df: ff:25:f2:68:2a:ef:0b:0e:7b:39:68:45:be:90:3e: 51:b0:e4:43:d7:61:46:5b:7d:e7:c7:56:38:1d:cb: d2:6c:a9:87:ed:69:15:75:5f:66:db:6f:53:42:48: 91:58:b3:dc:01:81:55:7a:2a:b9:eb:74:7c:fb:cd: ce:cf:cf:aa:87:7e:43:88:b9:a5:38:01:33:47:d3: 63:5c:92:0b:d5:e2:a9:3e:fa:63:78:de:1a:39:bd: 94:b4:35:26:22:46:1f:35:a8:c0:2b:01:6c:19:96: 21:dd:8e:28:91:cb:f2:13:d1:68:e6:d9:8e:4d:60: 9f:77:57:59:c7:a0:ef:ec:36:7b:90:94:97:43:e3: 8b:53:90:f3:73:3d:35:70:64:e0:c6:b4:52:a8:67: bd:c2:2c:31:bf:c9:a7:cd:b7:83:3f:d0:66:9f:24: 26:27:38:0f:45:a0:9e:6d:36:b8:cf:96:cc:70:ba: c5:30:cf:07:4c:21:4c:db:d7:f8:2d:e5:a5:6b:16: f9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:87:F9:38:14:F2:3A:47:6C:83:74:17:C0:E8:D2:45:03:A2:A7:75 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 57:d2:b4:2d:61:fb:24:ba:e9:a5:f4:2d:e8:01:59:9e:38:27: 94:a2:68:0b:75:ad:9d:3a:22:6c:3f:f2:10:90:7b:2b:a3:cd: a1:13:b7:8b:28:09:92:ff:2e:73:62:c6:16:1b:65:a6:c7:2c: e9:0a:09:4d:7d:c1:55:18:e2:b9:e3:03:32:ac:f1:8c:b8:ff: 4f:c8:d6:e6:1d:d1:6a:6d:1f:84:f2:d2:25:18:88:ac:9e:22: 16:3e:d9:46:5b:f9:32:12:72:f1:30:61:bb:7b:17:7d:3c:22: d0:fa:f1:86:16:d1:d4:c0:3f:60:68:82:12:8b:4a:c8:e8:6d: 53:5f:1a:be:62:f0:fb:2d:f1:53:ad:b0:8e:e8:cb:29:7b:fe: 33:f3:44:a4:b5:6a:78:b3:01:f1:72:ef:d7:55:41:90:a3:a5: ce:8d:8a:8e:10:b3:d8:25:80:75:d3:52:c0:f0:0d:39:84:2c: 05:cb:f0:48:b1:fd:eb:39:83:5d:6e:49:82:f3:5b:46:61:bd: c5:e1:90:c8:fb:ec:81:b9:63:47:bf:58:39:74:86:40:d1:c5: 39:95:b5:82:ec:1e:68:75:19:1c:5f:75:4e:3c:e8:8b:d0:a3: 94:d6:56:59:73:01:6b:20:f2:ec:d0:4e:f1:20:10:eb:69:81: 68:bc:8f:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUc5+j+3AO0Nd5DkjLbJGJupGV2IEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDlkNzYxODliZGFlZThlMmIwZjJkYjcxNDk1OWMzMzFi MTkxMDljMTY4OTc5OWY4MTY1ZmYyNmQ3MTAwNzNlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7qM1OkVgVRyxT6DkyvuK9onbrSTHNNs3SR9XdD/wsS9hZ 7pe50YXWsrLIWZsVsQhz+q6Jws+t80zH3/8l8mgq7wsOezloRb6QPlGw5EPXYUZb fefHVjgdy9JsqYftaRV1X2bbb1NCSJFYs9wBgVV6KrnrdHz7zc7Pz6qHfkOIuaU4 ATNH02NckgvV4qk++mN43ho5vZS0NSYiRh81qMArAWwZliHdjiiRy/IT0Wjm2Y5N YJ93V1nHoO/sNnuQlJdD44tTkPNzPTVwZODGtFKoZ73CLDG/yafNt4M/0GafJCYn OA9FoJ5tNrjPlsxwusUwzwdMIUzb1/gt5aVrFvlJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULIf5OBTyOkdsg3QXwOjSRQOip3UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAFfStC1h+yS66aX0LegBWZ44 J5SiaAt1rZ06Imw/8hCQeyujzaETt4soCZL/LnNixhYbZabHLOkKCU19wVUY4rnj AzKs8Yy4/0/I1uYd0WptH4Ty0iUYiKyeIhY+2UZb+TIScvEwYbt7F308ItD68YYW 0dTAP2BoghKLSsjobVNfGr5i8Pst8VOtsI7oyyl7/jPzRKS1anizAfFy79dVQZCj pc6Nio4Qs9glgHXTUsDwDTmELAXL8Eix/es5g11uSYLzW0ZhvcXhkMj77IG5Y0e/ WDl0hkDRxTmVtYLsHmh1GRxfdU486IvQo5TWVllzAWsg8uzQTvEgEOtpgWi8j2o= -----END CERTIFICATE-----Generated at Fri Nov 22 11:46:07 2024 by rpki-client on console-ams.rpki-client.org