$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa File: 8f960b0d-c291-490f-aff5-abe964221bd2.roa (raw, json) Hash identifier: 4vGJh0tcrDTRas3z9VGPRhWk3ueQBg0MDBtUWy5t9hc= Subject key identifier: 09:D6:A4:63:32:0B:AA:C1:4E:14:EA:E4:A6:79:74:1D:92:09:E8:65 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 03073B8E28D2038AE46283EDACADDCE0252DCFE4 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa Signing time: Sat 30 Mar 2024 00:00:00 +0000 ROA not before: Sat 30 Mar 2024 00:00:00 +0000 ROA not after: Sat 04 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:07:3b:8e:28:d2:03:8a:e4:62:83:ed:ac:ad:dc:e0:25:2d:cf:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Mar 30 00:00:00 2024 GMT Not After : May 4 23:59:59 2024 GMT Subject: serialNumber=9a1773befeaee6be38c9b474bcec8f0d8b70c7a7ca37fc41881833f1eecfe932, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:ec:b4:f6:61:1d:c1:7c:27:a7:53:26:75: c3:fc:20:4f:bc:1a:7d:c9:16:74:c5:44:9c:1e:fa: d8:a4:18:67:20:98:b1:89:83:ec:b5:31:a1:b0:a1: b7:c4:c8:44:61:21:61:b7:1d:e9:9e:4a:6c:1b:b2: ee:bd:ea:ce:62:dd:f5:fe:3f:47:21:d9:39:41:4b: bf:51:20:e6:64:02:e5:6a:a2:13:44:57:66:f1:a8: 04:32:0a:c9:48:28:37:e6:df:6c:e0:b0:fb:7a:44: c4:a2:af:b4:e8:44:33:a4:21:51:62:4e:26:51:ff: 3e:2f:bf:a0:40:bd:58:9b:05:b4:24:48:93:74:5d: ad:a0:b6:6c:2d:7e:01:9f:aa:1f:49:58:60:85:8e: 2b:e7:85:f1:14:34:53:26:21:08:6b:8e:ab:fb:11: 0a:d4:36:8f:4e:26:4f:a8:cc:d8:9e:43:08:43:b1: c6:5c:e3:c7:44:40:b9:e4:92:4d:58:d3:92:b5:e6: c5:d0:39:d5:c6:1b:9a:a0:e2:2c:a9:4c:55:f6:1e: f4:a5:4b:5a:8f:0c:87:32:5d:3a:e9:63:bb:58:6e: ac:76:c1:a2:bd:d5:e6:38:0c:7d:e1:d4:b7:c3:45: 51:a1:1e:f6:eb:58:95:02:ae:77:83:1a:10:df:05: bb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D6:A4:63:32:0B:AA:C1:4E:14:EA:E4:A6:79:74:1D:92:09:E8:65 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:7000::/44 Signature Algorithm: sha256WithRSAEncryption 5a:40:bb:a2:02:4b:88:23:2d:9c:8a:e3:7d:62:1e:46:fd:eb: 9c:c2:11:75:6f:37:cb:f1:4e:cb:e5:5b:4d:b0:1d:a0:fc:54: a9:60:03:ac:9c:16:5e:7b:b3:f8:96:e8:85:14:aa:74:19:d4: 71:8e:b9:2a:74:c8:a3:65:06:e9:0c:08:02:fb:cd:9d:f5:89: 36:ac:bb:7d:03:ee:3c:c8:2b:14:0e:d9:5d:df:39:32:df:48: 63:9a:43:c8:ac:64:c3:61:49:65:94:3a:65:88:34:4b:a6:f0: 6d:73:8e:44:dc:7e:a4:97:e7:c8:f5:1d:04:7e:14:42:da:1c: c8:8d:51:50:ba:0d:6c:b1:5f:40:49:c1:07:81:1f:8c:6e:09: 08:8a:15:7e:8e:75:e2:92:6a:a1:43:4b:34:a4:e5:ee:d3:f4: 93:18:77:83:6f:6e:0f:eb:f9:28:f9:1f:d6:85:90:1c:f2:2c: a9:d2:3d:74:99:40:34:79:c5:e2:76:42:c6:24:1d:bc:54:6c: 35:33:22:fc:0b:b0:e7:9b:83:27:78:f0:92:90:5d:2f:4c:2a: 78:f3:d9:a5:21:3c:af:cd:5a:ec:fd:76:4b:64:cf:81:05:54: cd:62:2a:6a:ef:2c:c7:01:9a:32:b4:fc:be:bc:c5:3b:cb:ae: 3c:ab:e7:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAwc7jijSA4rkYoPtrK3c4CUtz+QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjQwMzMwMDAwMDAwWhcNMjQwNTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTE3NzNiZWZlYWVlNmJlMzhjOWI0NzRiY2VjOGYwZDhi NzBjN2E3Y2EzN2ZjNDE4ODE4MzNmMWVlY2ZlOTMyMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChruy09mEdwXwnp1MmdcP8IE+8Gn3JFnTFRJwe+tikGGcg mLGJg+y1MaGwobfEyERhIWG3HemeSmwbsu696s5i3fX+P0ch2TlBS79RIOZkAuVq ohNEV2bxqAQyCslIKDfm32zgsPt6RMSir7ToRDOkIVFiTiZR/z4vv6BAvVibBbQk SJN0Xa2gtmwtfgGfqh9JWGCFjivnhfEUNFMmIQhrjqv7EQrUNo9OJk+ozNieQwhD scZc48dEQLnkkk1Y05K15sXQOdXGG5qg4iypTFX2HvSlS1qPDIcyXTrpY7tYbqx2 waK91eY4DH3h1LfDRVGhHvbrWJUCrneDGhDfBbsHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCdakYzILqsFOFOrkpnl0HZIJ6GUwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhmOTYwYjBkLWMyOTEtNDkwZi1hZmY1LWFiZTk2NDIyMWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEIcAAwDQYJKoZIhvcNAQELBQADggEBAFpAu6ICS4gjLZyK431iHkb9 65zCEXVvN8vxTsvlW02wHaD8VKlgA6ycFl57s/iW6IUUqnQZ1HGOuSp0yKNlBukM CAL7zZ31iTasu30D7jzIKxQO2V3fOTLfSGOaQ8isZMNhSWWUOmWINEum8G1zjkTc fqSX58j1HQR+FELaHMiNUVC6DWyxX0BJwQeBH4xuCQiKFX6OdeKSaqFDSzSk5e7T 9JMYd4Nvbg/r+Sj5H9aFkBzyLKnSPXSZQDR5xeJ2QsYkHbxUbDUzIvwLsOebgyd4 8JKQXS9MKnjz2aUhPK/NWuz9dktkz4EFVM1iKmrvLMcBmjK0/L68xTvLrjyr52Y= -----END CERTIFICATE-----Generated at Thu Apr 18 00:21:01 2024 by rpki-client on console-ams.rpki-client.org