$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa File: 9a57e8ce-af4c-4714-890a-a5c12113375e.roa (raw, json) Hash identifier: 7uOHCQJbsJ0UwLMLkL0u0oDg/OTzlYpxdwLwtk49YEg= Subject key identifier: 7C:BA:03:89:8A:1A:D6:17:D7:81:2B:67:16:14:78:1C:F0:2D:C4:09 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 573EAB3DBDAE89BD13E49B31EDE76F874EF0E3F6 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3e:ab:3d:bd:ae:89:bd:13:e4:9b:31:ed:e7:6f:87:4e:f0:e3:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=3f0074f0cde4028975060befcdd78c81952bed783d330230106d03eb0c01a8a2, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:86:71:70:5f:b7:f6:65:cc:be:4a:25:71:88: c7:41:be:6b:6c:d5:a9:5a:5f:4c:42:c5:d2:a2:b8: 56:0e:ee:ca:e6:00:f5:65:7a:72:aa:4e:dd:19:be: 1c:f9:df:12:0a:06:64:a8:ad:e9:0d:fb:23:ca:b0: 06:43:32:2f:3a:bc:a0:e5:47:54:ad:23:93:55:fc: e1:15:af:4c:48:5d:fc:93:dd:9f:02:9d:26:ee:ee: db:33:f2:92:ad:35:a5:2a:ad:e3:92:3d:e4:9d:09: 2b:76:c6:e8:e4:7e:d9:08:fc:6d:48:21:de:89:0e: 03:02:09:79:dd:f0:56:b3:10:de:f4:bd:f8:fc:21: fd:66:4d:ed:f4:8e:9a:ae:2b:11:23:ed:3e:6a:28: 71:68:8c:6a:b2:fe:96:73:19:d6:0c:12:50:5e:5f: b6:ca:13:90:5f:f4:fc:49:e8:a0:72:78:86:91:78: e5:c3:56:b0:d3:6a:bc:5a:40:ae:c4:03:2e:43:b2: c1:8c:72:e9:e5:90:fb:5a:b3:7f:e4:87:4b:8e:b5: 9a:27:d1:42:7b:de:ec:e4:bf:76:90:fc:a4:c1:75: 83:45:60:5a:fb:e2:70:d4:f6:9e:6c:35:34:3d:10: 87:af:52:55:f3:31:d6:de:82:81:1f:a0:2c:81:63: 8d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BA:03:89:8A:1A:D6:17:D7:81:2B:67:16:14:78:1C:F0:2D:C4:09 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9a57e8ce-af4c-4714-890a-a5c12113375e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3006::/48 Signature Algorithm: sha256WithRSAEncryption 2f:00:06:e4:d1:45:e5:e1:d2:9f:09:0a:ce:9d:9b:2d:af:b5: db:0d:66:29:af:e0:7f:b5:74:24:8c:0d:45:b5:5b:d5:aa:d1: 86:73:cb:8f:33:e2:66:49:f6:5b:db:a1:93:1f:9b:68:33:6e: 82:fd:35:4c:da:07:ea:a8:11:20:da:80:7f:c0:19:5c:49:67: 7c:6b:d9:45:5b:42:14:c7:20:c7:77:4e:54:9a:1b:73:92:38: 44:12:9f:22:f7:b6:0c:93:b3:42:76:50:ce:96:5e:e3:42:58: 20:9e:86:0b:6c:ee:07:ee:65:81:d3:9b:04:e9:60:c7:64:5f: 81:96:ed:08:92:a0:54:ee:eb:19:25:64:72:83:64:f6:dd:4a: 26:fa:df:62:14:55:12:e2:ff:5f:b8:b9:1c:1d:59:19:0f:19: 24:4a:28:69:0e:10:1b:2a:80:bc:58:54:90:a1:65:79:e3:37: fa:b2:2b:a6:9d:34:25:5c:45:c6:eb:54:0f:6a:76:fd:b4:fb: 99:a5:0a:c5:e8:16:af:29:ea:77:9d:c0:97:3d:eb:2d:b2:7f: 85:8b:37:97:a1:c2:45:d1:5c:58:e1:90:d5:30:8f:af:95:c6: 51:b0:4a:df:18:fe:eb:8c:c0:ee:7f:d3:31:a9:db:a7:1d:e1: 43:89:8b:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVz6rPb2uib0T5Jsx7edvh07w4/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjAwNzRmMGNkZTQwMjg5NzUwNjBiZWZjZGQ3OGM4MTk1 MmJlZDc4M2QzMzAyMzAxMDZkMDNlYjBjMDFhOGEyMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKhnFwX7f2Zcy+SiVxiMdBvmts1alaX0xCxdKiuFYO7srm APVlenKqTt0Zvhz53xIKBmSorekN+yPKsAZDMi86vKDlR1StI5NV/OEVr0xIXfyT 3Z8CnSbu7tsz8pKtNaUqreOSPeSdCSt2xujkftkI/G1IId6JDgMCCXnd8FazEN70 vfj8If1mTe30jpquKxEj7T5qKHFojGqy/pZzGdYMElBeX7bKE5Bf9PxJ6KByeIaR eOXDVrDTarxaQK7EAy5DssGMcunlkPtas3/kh0uOtZon0UJ73uzkv3aQ/KTBdYNF YFr74nDU9p5sNTQ9EIevUlXzMdbegoEfoCyBY42/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfLoDiYoa1hfXgStnFhR4HPAtxAkwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzlhNTdlOGNlLWFmNGMtNDcxNC04OTBhLWE1YzEyMTEzMzc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAYwDQYJKoZIhvcNAQELBQADggEBAC8ABuTRReXh0p8JCs6dmy2v tdsNZimv4H+1dCSMDUW1W9Wq0YZzy48z4mZJ9lvboZMfm2gzboL9NUzaB+qoESDa gH/AGVxJZ3xr2UVbQhTHIMd3TlSaG3OSOEQSnyL3tgyTs0J2UM6WXuNCWCCehgts 7gfuZYHTmwTpYMdkX4GW7QiSoFTu6xklZHKDZPbdSib632IUVRLi/1+4uRwdWRkP GSRKKGkOEBsqgLxYVJChZXnjN/qyK6adNCVcRcbrVA9qdv20+5mlCsXoFq8p6ned wJc96y2yf4WLN5ehwkXRXFjhkNUwj6+VxlGwSt8Y/uuMwO5/0zGp26cd4UOJizA= -----END CERTIFICATE-----Generated at Thu Apr 18 16:10:43 2024 by rpki-client on console-fra.rpki-client.org