$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: saobr664p3V+Rzi2s48gfamE8mqnGa3MmgAJJ0ytmZA= Subject key identifier: CF:F5:D5:9C:C4:67:AB:D8:92:C0:52:5C:15:B1:39:68:39:B1:CE:D6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 54FD86BE2D67694BD5406C6EEB5563015BDBF19F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:fd:86:be:2d:67:69:4b:d5:40:6c:6e:eb:55:63:01:5b:db:f1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=2c2c6850c491525e80a0805b98ffa55636c2da8569710cf1394218a44f91f2f3, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:dc:40:bd:a9:25:5c:16:2b:98:ba:67:9d:1b: 7d:e7:77:3b:13:74:f3:df:ea:27:17:6e:b0:1e:e1: ee:5b:90:68:84:14:b1:67:ea:fb:21:bd:e7:42:27: eb:90:37:6d:d7:91:5d:ed:c5:5c:f1:58:85:c8:70: 47:a2:fe:8e:ff:85:ff:7b:f5:cf:12:bb:c7:6b:d2: bb:39:b6:47:1b:8a:5a:62:33:10:ae:49:a7:0c:d6: 1b:88:2f:d9:15:7a:ed:38:03:95:99:3e:67:40:6b: 30:bb:d1:76:cc:a7:24:9a:cd:cf:49:9d:5f:61:67: d8:0b:c4:ad:44:23:95:09:e6:c1:87:d3:5e:82:3a: 18:a0:28:2d:e8:27:b7:f1:54:88:78:af:c7:a9:d2: 46:1d:13:02:fd:95:3b:8e:38:20:38:d1:a9:0d:5b: f9:3a:ca:ff:d8:a6:4c:65:88:0d:5f:a4:5b:fb:28: c1:cd:64:3b:f8:aa:c8:bf:98:8c:06:ff:d8:d1:d0: 76:49:03:54:cb:6e:2b:8c:22:94:bb:86:39:b1:ec: f3:f8:81:f0:96:81:91:45:77:2a:5f:ba:4c:54:cd: 70:b5:35:f9:64:3d:d9:af:c0:6a:a6:99:bf:5e:6a: f8:c8:f3:81:1a:74:ff:4c:77:9e:45:45:2d:e6:98: a4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F5:D5:9C:C4:67:AB:D8:92:C0:52:5C:15:B1:39:68:39:B1:CE:D6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 3d:1d:ac:4b:9b:e7:6e:52:68:cb:7d:ee:f5:d9:10:9a:e8:8c: da:03:29:5e:33:27:00:35:6a:3a:e9:f8:ef:78:16:6e:f2:ed: ad:2a:8a:a2:26:c1:66:26:3f:ea:3f:10:fc:61:e4:ef:c6:e2: da:7a:d6:ec:78:01:2a:8e:f6:46:d3:e8:36:11:6d:42:0e:fa: 69:d6:9d:f3:37:13:c1:96:7d:51:f1:39:8e:4b:88:0e:3a:17: 16:90:d6:9c:ea:26:73:ac:d6:3e:38:36:98:04:55:bf:01:74: 54:d6:bf:e2:8e:72:71:7f:5d:ea:b6:50:e7:94:1b:77:9f:76: bb:47:8c:d7:c2:81:99:94:f6:d1:15:ad:48:00:72:fc:c3:0a: 30:6f:28:80:6b:97:6a:3f:f1:6f:94:d7:6c:69:e9:54:18:8a: 4f:60:8c:9e:43:e5:b1:3a:13:1b:42:a1:a0:bf:c0:b1:f5:f2: dc:82:55:dd:57:9b:db:16:bf:12:ff:62:65:32:8a:71:31:4e: 47:b4:f6:50:22:8d:9c:36:96:ea:ac:76:9c:e3:9d:f8:f8:63: 3b:82:ba:55:3a:4f:10:9d:a0:1e:c8:83:8d:74:89:a0:36:4c: a5:b6:c4:89:d5:c5:31:5b:41:85:01:2d:21:01:88:78:ec:f5: 0b:bd:fb:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVP2Gvi1naUvVQGxu61VjAVvb8Z8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzJjNjg1MGM0OTE1MjVlODBhMDgwNWI5OGZmYTU1NjM2 YzJkYTg1Njk3MTBjZjEzOTQyMThhNDRmOTFmMmYzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf3EC9qSVcFiuYumedG33ndzsTdPPf6icXbrAe4e5bkGiE FLFn6vshvedCJ+uQN23XkV3txVzxWIXIcEei/o7/hf979c8Su8dr0rs5tkcbilpi MxCuSacM1huIL9kVeu04A5WZPmdAazC70XbMpySazc9JnV9hZ9gLxK1EI5UJ5sGH 016COhigKC3oJ7fxVIh4r8ep0kYdEwL9lTuOOCA40akNW/k6yv/YpkxliA1fpFv7 KMHNZDv4qsi/mIwG/9jR0HZJA1TLbiuMIpS7hjmx7PP4gfCWgZFFdypfukxUzXC1 NflkPdmvwGqmmb9eavjI84EadP9Md55FRS3mmKTBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz/XVnMRnq9iSwFJcFbE5aDmxztYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAD0drEub525SaMt97vXZEJro jNoDKV4zJwA1ajrp+O94Fm7y7a0qiqImwWYmP+o/EPxh5O/G4tp61ux4ASqO9kbT 6DYRbUIO+mnWnfM3E8GWfVHxOY5LiA46FxaQ1pzqJnOs1j44NpgEVb8BdFTWv+KO cnF/Xeq2UOeUG3efdrtHjNfCgZmU9tEVrUgAcvzDCjBvKIBrl2o/8W+U12xp6VQY ik9gjJ5D5bE6ExtCoaC/wLH18tyCVd1Xm9sWvxL/YmUyinExTke09lAijZw2luqs dpzjnfj4YzuCulU6TxCdoB7Ig410iaA2TKW2xInVxTFbQYUBLSEBiHjs9Qu9+24= -----END CERTIFICATE-----Generated at Thu May 9 15:20:31 2024 by rpki-client on console-fra.rpki-client.org