$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa File: ea014712-964e-4c9e-bacc-2630e4e451b2.roa (raw, json) Hash identifier: 4Vu9Hjb6OnZwj9j+ZLG2gcFu1DJw/vonOCdjHoy+xW8= Subject key identifier: 66:57:4F:B1:4E:AD:29:B2:1B:B0:31:A4:E4:BC:B2:0B:31:FC:C5:7E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4361405DE25E5C92B09D7F27CF5F691E649B6F0F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa Signing time: Tue 22 Oct 2024 00:00:00 +0000 ROA not before: Tue 22 Oct 2024 00:00:00 +0000 ROA not after: Tue 26 Nov 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Oct 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:61:40:5d:e2:5e:5c:92:b0:9d:7f:27:cf:5f:69:1e:64:9b:6f:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Oct 22 00:00:00 2024 GMT Not After : Nov 26 23:59:59 2024 GMT Subject: serialNumber=000b0d7bb89d0edea2f3c6bc33c3936ee33dc7ec57381d50edfeb91b36bf5085, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:88:f7:7a:59:cd:60:a6:69:37:75:a4:e6: e2:bf:f5:b3:42:e0:3f:b7:e9:2d:58:99:ea:6b:58: a4:3b:8e:41:45:ea:69:d8:05:5f:40:77:37:38:4e: 3e:5c:d5:d2:66:34:bd:68:94:fc:01:68:07:61:22: bf:5f:1d:5a:35:80:21:1e:b0:d8:e9:04:d4:06:a5: c5:06:2e:c1:55:ba:85:0f:6a:87:d1:3b:b6:d7:bc: 4b:ff:87:bb:d2:99:96:48:9e:86:a4:5e:a5:fa:c9: fc:a8:72:d4:fc:c9:59:b7:60:c1:e8:57:82:90:ca: 32:15:cd:61:cd:b7:c7:bf:c9:08:e8:5a:8b:ea:6a: 86:a6:6c:06:df:a3:c1:17:c7:fc:66:2f:73:56:32: 84:69:fc:c9:c8:ff:e5:30:be:72:26:0d:af:99:3f: 72:1f:b1:c7:73:cb:19:4f:f0:b3:20:7e:e9:af:9b: a4:cc:3e:d1:ab:1f:c1:59:91:9b:06:11:f7:7a:92: 96:10:f8:27:d2:1c:f8:c0:1c:92:9f:01:8b:59:d4: ca:7a:37:f1:c0:08:ed:0a:fa:c1:10:04:9c:9f:fe: f2:a8:8f:0a:32:28:4a:9c:c2:d1:b7:6a:fb:a9:e5: fe:a7:dc:36:fd:05:59:5a:a5:ae:06:1e:a8:6b:55: 04:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:57:4F:B1:4E:AD:29:B2:1B:B0:31:A4:E4:BC:B2:0B:31:FC:C5:7E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ea014712-964e-4c9e-bacc-2630e4e451b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption ad:c9:aa:61:c2:3f:8a:e3:41:bb:14:44:77:9a:b3:0f:f1:27: c0:2c:08:f2:a6:c8:d6:32:7a:18:54:e7:99:77:31:9d:fe:10: 77:d9:80:ea:34:bb:78:8e:9f:b2:6b:18:2b:5d:a8:46:e4:69: 0c:36:c1:45:2b:d5:4f:5f:91:0d:5d:43:49:10:a1:f3:56:cc: 11:26:3f:3d:c0:da:c0:ce:42:10:25:d7:70:1e:1d:63:5c:35: 6b:00:97:49:06:11:a6:53:d2:f4:4d:d9:c1:b9:f4:b4:9f:fa: 0d:a4:94:d5:0b:70:39:a3:f0:2c:d9:c8:88:38:75:93:30:3a: cd:b3:61:ff:2c:56:7d:2c:98:34:5e:ad:a9:91:49:99:f2:76: f8:59:db:b5:35:43:ab:45:c9:90:17:7e:f0:95:14:46:77:cf: 04:4f:83:5e:fb:76:48:cd:bc:b2:f9:3c:af:4c:f3:ac:38:f3: 74:d0:18:cb:32:86:d9:ee:b2:77:d2:b2:5b:7a:b6:67:c1:f2: 93:ad:4f:ec:37:02:e1:c6:03:ef:f2:f9:38:81:de:28:50:38: 38:33:f2:6a:b4:0e:c6:6e:25:f9:55:fe:7d:79:4c:1a:0d:63: d5:13:fd:9a:54:0b:b5:4c:04:5a:bc:c4:57:dd:64:30:0f:c0: 52:67:58:51 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ2FAXeJeXJKwnX8nz19pHmSbbw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQxMDIyMDAwMDAwWhcNMjQxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDBiMGQ3YmI4OWQwZWRlYTJmM2M2YmMzM2MzOTM2ZWUz M2RjN2VjNTczODFkNTBlZGZlYjkxYjM2YmY1MDg1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9C4j3elnNYKZpN3Wk5uK/9bNC4D+36S1YmeprWKQ7jkFF 6mnYBV9Adzc4Tj5c1dJmNL1olPwBaAdhIr9fHVo1gCEesNjpBNQGpcUGLsFVuoUP aofRO7bXvEv/h7vSmZZInoakXqX6yfyoctT8yVm3YMHoV4KQyjIVzWHNt8e/yQjo WovqaoambAbfo8EXx/xmL3NWMoRp/MnI/+UwvnImDa+ZP3IfscdzyxlP8LMgfumv m6TMPtGrH8FZkZsGEfd6kpYQ+CfSHPjAHJKfAYtZ1Mp6N/HACO0K+sEQBJyf/vKo jwoyKEqcwtG3avup5f6n3Db9BVlapa4GHqhrVQRzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZldPsU6tKbIbsDGk5LyyCzH8xX4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VhMDE0NzEyLTk2NGUtNGM5ZS1iYWNjLTI2MzBlNGU0NTFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEArcmqYcI/iuNBuxREd5qzD/En wCwI8qbI1jJ6GFTnmXcxnf4Qd9mA6jS7eI6fsmsYK12oRuRpDDbBRSvVT1+RDV1D SRCh81bMESY/PcDawM5CECXXcB4dY1w1awCXSQYRplPS9E3Zwbn0tJ/6DaSU1Qtw OaPwLNnIiDh1kzA6zbNh/yxWfSyYNF6tqZFJmfJ2+FnbtTVDq0XJkBd+8JUURnfP BE+DXvt2SM28svk8r0zzrDjzdNAYyzKG2e6yd9KyW3q2Z8Hyk61P7DcC4cYD7/L5 OIHeKFA4ODPyarQOxm4l+VX+fXlMGg1j1RP9mlQLtUwEWrzEV91kMA/AUmdYUQ== -----END CERTIFICATE-----Generated at Tue Oct 22 21:14:57 2024 by rpki-client on console-ams.rpki-client.org