$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa File: 0ec55b55-70d8-4c9a-a949-98332400c54c.roa (raw, json) Hash identifier: xOfrYrtWcuK/ooWxcxmYqp1+1ogI4Ef2yr2+JbWi3YU= Subject key identifier: 7D:91:36:B8:3B:8A:8F:1E:A0:FB:49:7F:B2:41:5A:F7:55:4C:27:65 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 27721518BFEF76F4FE0B9AE208E2F64CF98AA2A4 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:72:15:18:bf:ef:76:f4:fe:0b:9a:e2:08:e2:f6:4c:f9:8a:a2:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=44c1e0f361424aecb4cc8dfca981383aacd786e7b4a86b357d9713236937aa5a, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b6:55:c0:23:6b:47:2a:2e:8e:b9:d6:18:99: 07:3d:e0:3c:30:fe:cd:b4:2c:ad:eb:81:46:55:8c: 8b:49:ad:ce:0e:f2:d3:c2:bf:6f:9b:d2:ed:ea:33: c3:c8:a2:6f:57:b8:03:ef:83:bb:35:f8:62:97:3c: 3f:28:54:89:fb:a8:fb:8d:e2:e2:33:7b:1a:da:79: fc:5e:a6:04:99:75:ca:64:1b:52:82:47:e3:96:fc: 51:d1:33:a9:6c:4d:9c:b1:e4:27:4a:7c:56:4a:82: 87:db:d6:f1:00:fe:07:a1:fd:a5:a7:02:64:cf:43: 68:3e:71:e3:83:0e:ce:42:a5:97:f5:b3:bd:7b:8b: 46:a9:2e:74:1f:40:98:bf:19:f2:33:16:16:37:ad: ee:1a:db:aa:9f:da:5d:18:6b:f7:95:d9:79:d6:b4: 66:43:21:8a:ef:44:f7:83:50:fc:5b:e0:e4:3d:19: 53:57:2a:b1:d5:fb:54:d7:88:f7:2d:d3:37:8b:a7: b5:16:0a:e1:61:44:17:1d:3d:91:5b:28:73:e6:56: cb:aa:50:85:9b:4a:3d:8e:86:36:49:a9:ff:bb:3d: 37:11:01:57:9f:55:62:6f:67:fe:db:32:19:06:fe: 13:33:b2:dd:80:33:a8:cd:1d:cc:ac:61:01:3d:66: 45:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:91:36:B8:3B:8A:8F:1E:A0:FB:49:7F:B2:41:5A:F7:55:4C:27:65 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/48 Signature Algorithm: sha256WithRSAEncryption 56:73:6d:8c:bc:0e:6e:89:d3:ed:3b:d4:0c:a1:a3:09:40:16: 05:e5:ab:64:08:02:48:57:0e:cf:8a:ff:18:4e:8e:c8:0e:2a: 1d:ca:8b:a9:03:1f:8e:29:13:c7:03:45:c1:4f:98:e3:4c:03: e3:8b:21:2c:fd:2b:a7:30:1a:51:6a:f2:84:39:2d:59:bb:4a: 64:d6:78:ed:db:e2:b1:29:72:fa:1a:c5:d5:ca:ad:c4:bf:2b: 77:d5:dc:78:af:b2:7a:b4:21:5f:30:fb:13:13:29:9f:0e:b5: d6:62:5d:69:48:fe:db:32:0e:88:62:f1:9c:98:e1:99:b4:34: 03:8e:e6:65:ba:d6:56:f1:ef:f3:69:e9:36:7b:4b:09:cf:f6: 13:3c:0b:96:30:f0:1b:79:35:29:e5:1d:39:48:22:24:82:90: 89:6a:1e:1b:23:ae:a8:aa:56:5b:a5:91:01:d2:97:66:4f:0b: 38:e9:68:28:31:ba:7e:e2:9c:21:57:69:bd:6c:b6:b3:da:b9: ea:13:1a:1b:a3:8f:16:10:89:d2:91:c8:34:38:5e:91:95:97: 59:04:d7:b3:5f:e3:19:89:66:6b:5f:65:0d:d5:89:08:7c:f4: 34:d6:26:5e:60:da:4f:3e:be:4a:7c:bd:60:82:f8:10:73:37: 11:48:e9:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ3IVGL/vdvT+C5riCOL2TPmKoqQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGMxZTBmMzYxNDI0YWVjYjRjYzhkZmNhOTgxMzgzYWFj ZDc4NmU3YjRhODZiMzU3ZDk3MTMyMzY5MzdhYTVhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYtlXAI2tHKi6OudYYmQc94Dww/s20LK3rgUZVjItJrc4O 8tPCv2+b0u3qM8PIom9XuAPvg7s1+GKXPD8oVIn7qPuN4uIzexraefxepgSZdcpk G1KCR+OW/FHRM6lsTZyx5CdKfFZKgofb1vEA/geh/aWnAmTPQ2g+ceODDs5CpZf1 s717i0apLnQfQJi/GfIzFhY3re4a26qf2l0Ya/eV2XnWtGZDIYrvRPeDUPxb4OQ9 GVNXKrHV+1TXiPct0zeLp7UWCuFhRBcdPZFbKHPmVsuqUIWbSj2OhjZJqf+7PTcR AVefVWJvZ/7bMhkG/hMzst2AM6jNHcysYQE9ZkWLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfZE2uDuKjx6g+0l/skFa91VMJ2UwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzBlYzU1YjU1LTcwZDgtNGM5YS1hOTQ5LTk4MzMyNDAwYzU0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAFZzbYy8Dm6J0+071AyhowlA FgXlq2QIAkhXDs+K/xhOjsgOKh3Ki6kDH44pE8cDRcFPmONMA+OLISz9K6cwGlFq 8oQ5LVm7SmTWeO3b4rEpcvoaxdXKrcS/K3fV3Hivsnq0IV8w+xMTKZ8OtdZiXWlI /tsyDohi8ZyY4Zm0NAOO5mW61lbx7/Np6TZ7SwnP9hM8C5Yw8Bt5NSnlHTlIIiSC kIlqHhsjrqiqVlulkQHSl2ZPCzjpaCgxun7inCFXab1strPaueoTGhujjxYQidKR yDQ4XpGVl1kE17Nf4xmJZmtfZQ3ViQh89DTWJl5g2k8+vkp8vWCC+BBzNxFI6XM= -----END CERTIFICATE-----Generated at Thu May 2 17:17:53 2024 by rpki-client on console-ams.rpki-client.org