$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/a9bb901a-d78e-4bc0-bcc6-e4f964a9aba9.roa File: a9bb901a-d78e-4bc0-bcc6-e4f964a9aba9.roa (raw, json) Hash identifier: RhsFVijgVFXXS5ZYIY0HbQ9t9gRMdVLWDoFkBcl/BGk= Subject key identifier: 3F:B4:D5:33:66:EA:8A:E0:5E:76:34:F3:14:98:64:19:07:90:54:DA Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 6CC8C89D947B3E4E13877F3EC26263403596658D Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/a9bb901a-d78e-4bc0-bcc6-e4f964a9aba9.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2620:108:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c8:c8:9d:94:7b:3e:4e:13:87:7f:3e:c2:62:63:40:35:96:65:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=f793a0ce934fca5465a28e5ca39cac7932674a43014198bd7e4e37aced8fce39, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ca:84:cf:ce:7f:2f:af:10:c7:37:1e:89:a1: 27:cf:a5:e2:db:e5:a0:fb:ca:ea:cf:6e:27:60:9d: 2a:f7:5a:2e:b0:a6:ba:64:26:92:80:5c:e3:48:44: 31:07:5c:42:0f:b6:6a:09:2d:cb:b1:49:fd:c0:ca: fa:b4:b7:45:be:8d:94:ab:b5:dc:2b:68:53:df:78: 99:b5:ab:d5:0f:31:ba:b1:6a:a3:bb:c5:83:c7:bd: fe:c5:2b:05:a9:33:34:52:66:e4:d8:33:57:41:ad: e9:ff:82:2d:30:ae:ef:fc:82:3b:b8:ad:82:0d:ca: 18:2e:72:97:9c:88:fa:3c:38:9d:21:ee:9b:9a:3f: 6e:d7:3b:c7:0b:5b:54:f0:25:ea:71:a5:21:ab:c7: 0b:ba:33:d4:3f:7c:3e:cc:9c:5f:17:63:5d:f5:ae: c6:16:76:be:37:f8:c2:21:4a:06:64:b9:2b:9d:b7: b0:61:88:d0:54:96:27:19:64:bc:bf:6b:e8:b4:e7: b3:e3:89:46:20:70:e3:fe:56:96:0b:00:21:95:83: 77:3d:6b:e4:dd:b7:24:f1:3d:5f:d6:3e:1b:15:a9: ed:ce:ad:af:9a:a1:ff:ac:c9:48:9f:ad:a7:80:d1: d7:e2:e9:d9:6c:e1:fd:ac:e6:44:f7:61:e5:bf:ad: f7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B4:D5:33:66:EA:8A:E0:5E:76:34:F3:14:98:64:19:07:90:54:DA X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/a9bb901a-d78e-4bc0-bcc6-e4f964a9aba9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:7000::/44 Signature Algorithm: sha256WithRSAEncryption 43:15:e5:69:e3:bd:5c:d4:c5:f9:00:22:d6:c2:42:0b:51:b3: 2c:ce:8d:28:a2:62:7d:25:38:bf:f8:7b:e1:3f:87:54:59:f7: 6e:17:30:38:2d:5e:48:67:c2:c1:88:16:e9:25:e5:19:87:f4: 63:b7:3c:29:22:ee:14:6a:2b:8c:c4:b6:95:90:a2:06:c5:4f: 6e:d6:58:fc:c3:b2:a6:ca:f6:6c:d9:80:76:3d:91:88:4e:61: 3f:19:fb:81:20:e6:a4:bb:57:4b:7b:da:5e:4f:08:7c:98:4e: fa:a8:2e:43:95:3e:00:c0:cc:1b:fc:be:fe:8f:ee:5a:c2:f9: 1e:22:81:0c:f0:85:08:4f:94:c7:29:18:c7:6e:e4:04:fc:98: 28:3b:2d:e2:fa:d0:ac:10:fb:b0:e6:13:fd:b7:2a:1a:6e:7b: 18:2a:6b:da:a0:32:46:36:af:c5:d2:ae:7e:4b:05:e8:22:94: 1f:26:a6:76:4c:1f:b5:ab:af:d5:dd:4a:c9:1c:86:d7:2c:97: 1d:00:f0:fe:1c:e3:71:09:3d:38:bc:f9:a1:64:4e:cd:52:83: f5:2e:95:59:81:d5:13:23:6c:dc:4e:ee:02:4d:a1:31:42:ce: da:1f:11:27:38:bd:df:91:9a:7c:e3:0c:38:0f:d2:3a:ee:ba: ab:94:fc:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbMjInZR7Pk4Th38+wmJjQDWWZY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzkzYTBjZTkzNGZjYTU0NjVhMjhlNWNhMzljYWM3OTMy Njc0YTQzMDE0MTk4YmQ3ZTRlMzdhY2VkOGZjZTM5MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJyoTPzn8vrxDHNx6JoSfPpeLb5aD7yurPbidgnSr3Wi6w prpkJpKAXONIRDEHXEIPtmoJLcuxSf3Ayvq0t0W+jZSrtdwraFPfeJm1q9UPMbqx aqO7xYPHvf7FKwWpMzRSZuTYM1dBren/gi0wru/8gju4rYINyhgucpeciPo8OJ0h 7puaP27XO8cLW1TwJepxpSGrxwu6M9Q/fD7MnF8XY131rsYWdr43+MIhSgZkuSud t7BhiNBUlicZZLy/a+i057PjiUYgcOP+VpYLACGVg3c9a+TdtyTxPV/WPhsVqe3O ra+aof+syUifraeA0dfi6dls4f2s5kT3YeW/rfedAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP7TVM2bqiuBedjTzFJhkGQeQVNowHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2E5YmI5MDFhLWQ3OGUtNGJjMC1iY2M2LWU0Zjk2NGE5YWJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEIcAAwDQYJKoZIhvcNAQELBQADggEBAEMV5WnjvVzUxfkAItbCQgtR syzOjSiiYn0lOL/4e+E/h1RZ924XMDgtXkhnwsGIFukl5RmH9GO3PCki7hRqK4zE tpWQogbFT27WWPzDsqbK9mzZgHY9kYhOYT8Z+4Eg5qS7V0t72l5PCHyYTvqoLkOV PgDAzBv8vv6P7lrC+R4igQzwhQhPlMcpGMdu5AT8mCg7LeL60KwQ+7DmE/23Khpu exgqa9qgMkY2r8XSrn5LBegilB8mpnZMH7Wrr9XdSskchtcslx0A8P4c43EJPTi8 +aFkTs1Sg/UulVmB1RMjbNxO7gJNoTFCztofESc4vd+RmnzjDDgP0jruuquU/K0= -----END CERTIFICATE-----Generated at Wed May 8 18:13:50 2024 by rpki-client on console-fra.rpki-client.org