$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: xRtYqb+bzUTo8zq6IWyvXSy9TouHoCDOZJBvaq3SLGU= Subject key identifier: BF:55:9A:BE:3D:82:93:68:F7:DB:6F:CD:B1:50:32:03:3A:07:36:70 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 28E7D55D353841B4E10D501DF9114775231D6F44 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e7:d5:5d:35:38:41:b4:e1:0d:50:1d:f9:11:47:75:23:1d:6f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=273e234b507f08d32aaed299c414bf617c383ec60cd7cd9aa2ca83d9464c0272, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e9:63:16:44:89:f8:4d:27:58:03:37:08:07: b1:20:51:c7:b2:fd:da:c2:44:a7:fc:65:59:6d:99: c6:d0:7d:05:bf:2d:0d:48:8a:1f:ab:bd:27:7c:ea: 27:17:b3:20:8e:72:64:4c:f1:e4:61:e9:19:da:ac: fb:74:1b:38:05:7b:0b:97:1e:7b:0a:54:03:55:69: 5b:4a:56:22:18:90:2c:83:0b:8f:91:16:07:da:92: 46:e6:91:1f:44:8c:09:16:76:09:21:84:41:a1:e9: 8e:f2:a1:78:50:c9:ac:12:ce:ca:9f:e4:34:4a:91: a3:d1:01:51:e7:27:1b:7c:74:d2:8c:b5:96:d3:c6: b4:62:b6:49:72:b0:5f:69:eb:7c:1e:38:77:e9:9f: 2c:7e:84:18:96:fa:66:2d:f9:fe:3f:6b:f3:9a:74: ea:41:00:df:07:0f:c7:63:f9:3e:13:68:88:d9:8b: 1a:f3:9c:d6:a7:6e:7b:9b:1c:29:a9:ec:d7:fb:8a: 80:5d:4e:4a:ec:cd:6f:5f:40:30:4d:62:a5:15:e2: cd:06:20:6d:57:bf:be:7f:fc:eb:1d:b5:10:ce:47: 26:da:97:fc:8a:70:f7:e2:fb:76:c9:cb:67:9e:38: 37:6d:c6:d3:59:21:8a:29:6a:5d:c6:f9:23:d4:3e: 97:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:55:9A:BE:3D:82:93:68:F7:DB:6F:CD:B1:50:32:03:3A:07:36:70 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 77:a2:9b:fe:b8:b8:fa:a7:ad:6a:81:ff:c7:95:7b:26:52:ce: 38:8e:86:4d:ac:3c:0e:3a:33:2e:6b:7a:73:17:e9:64:1a:8f: d8:36:34:8d:18:bf:d3:77:48:d8:45:9d:4f:84:fe:03:d5:54: be:e4:a8:64:a5:68:91:8e:eb:b0:28:66:a6:cd:38:ce:f9:76: 8d:22:f2:7b:7e:28:1a:9f:6f:58:a1:9b:6a:ed:72:17:eb:ab: 04:06:d6:e7:05:fb:71:a3:e0:fd:57:09:40:b3:14:5b:c0:1d: e4:b4:4a:6a:d7:28:bc:1b:16:e3:d6:f3:9d:46:fe:91:46:67: 1a:b6:f2:0c:c0:1a:80:3f:80:0d:0e:c8:e0:c5:d9:6a:a1:bc: b1:0c:d3:85:71:7e:96:80:e7:3f:b4:f4:eb:94:0d:9f:9d:b8: 58:7e:c5:be:cb:62:5e:62:bb:68:10:60:56:34:6f:88:b8:bf: 32:0d:a1:b3:bd:4c:18:8e:dc:57:10:80:55:64:d8:cf:9f:10: be:f8:0a:94:e1:65:ec:45:f3:7a:af:5d:3b:78:c9:a4:4a:96: 34:3d:91:7d:04:fe:a4:72:6b:41:6b:6a:df:ee:3c:31:14:e8: f0:68:5b:8e:4c:a9:a2:e0:10:d6:73:2e:86:cf:89:e7:50:a6: 9a:b4:dc:34 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUKOfVXTU4QbThDVAd+RFHdSMdb0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzNlMjM0YjUwN2YwOGQzMmFhZWQyOTljNDE0YmY2MTdj MzgzZWM2MGNkN2NkOWFhMmNhODNkOTQ2NGMwMjcyMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi6WMWRIn4TSdYAzcIB7EgUcey/drCRKf8ZVltmcbQfQW/ LQ1Iih+rvSd86icXsyCOcmRM8eRh6RnarPt0GzgFewuXHnsKVANVaVtKViIYkCyD C4+RFgfakkbmkR9EjAkWdgkhhEGh6Y7yoXhQyawSzsqf5DRKkaPRAVHnJxt8dNKM tZbTxrRitklysF9p63weOHfpnyx+hBiW+mYt+f4/a/OadOpBAN8HD8dj+T4TaIjZ ixrznNanbnubHCmp7Nf7ioBdTkrszW9fQDBNYqUV4s0GIG1Xv75//OsdtRDORyba l/yKcPfi+3bJy2eeODdtxtNZIYopal3G+SPUPpfhAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUv1Wavj2Ck2j322/NsVAyAzoHNnAwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQB3opv+uLj6p61qgf/HlXsmUs44 joZNrDwOOjMua3pzF+lkGo/YNjSNGL/Td0jYRZ1PhP4D1VS+5KhkpWiRjuuwKGam zTjO+XaNIvJ7figan29YoZtq7XIX66sEBtbnBftxo+D9VwlAsxRbwB3ktEpq1yi8 Gxbj1vOdRv6RRmcatvIMwBqAP4ANDsjgxdlqobyxDNOFcX6WgOc/tPTrlA2fnbhY fsW+y2JeYrtoEGBWNG+IuL8yDaGzvUwYjtxXEIBVZNjPnxC++AqU4WXsRfN6r107 eMmkSpY0PZF9BP6kcmtBa2rf7jwxFOjwaFuOTKmi4BDWcy6Gz4nnUKaatNw0 -----END CERTIFICATE-----Generated at Mon May 20 00:45:44 2024 by rpki-client on console-ams.rpki-client.org