$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/d72aece7-0571-461e-98fc-70c3c3f16982.roa File: d72aece7-0571-461e-98fc-70c3c3f16982.roa (raw, json) Hash identifier: N+IvCzGnBVLqmTAGalfvbZVXoiIHX4KI68taIs9PT4Q= Subject key identifier: 7F:3A:E8:6A:4B:18:C4:AB:71:A5:2D:10:0D:DB:DA:B1:AD:53:79:11 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 5A07683D963624FD7ABBA10176041B5CE4094559 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/d72aece7-0571-461e-98fc-70c3c3f16982.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2620:107:3000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:07:68:3d:96:36:24:fd:7a:bb:a1:01:76:04:1b:5c:e4:09:45:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=d12860dfe011d55343dd2c081faaebc89b75c70d86b7a532ac375d6cd07ca82a, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bb:0e:50:e7:7c:26:03:49:df:f5:fa:a3:a3: dd:d9:73:5e:a7:3f:bc:e9:97:05:3a:c9:21:a7:81: 2d:57:ca:8c:f9:42:1c:fb:54:50:4e:4e:b1:b9:d9: 35:e0:d7:9d:2a:4d:66:46:d6:66:f5:3a:b6:d8:5f: 38:a5:98:17:3a:c7:12:41:17:46:b7:ce:be:a2:eb: 96:57:d2:5b:9f:92:ea:4a:be:8b:0a:66:b1:a4:1d: e6:ee:18:c1:c1:53:fc:b7:71:cd:31:f1:cc:5a:f2: 59:be:58:9e:5e:bc:09:41:38:6a:ab:d1:95:66:0c: 72:78:30:d0:ee:22:c7:25:15:1c:82:26:70:22:88: fc:ca:bc:94:77:a0:d1:d7:99:26:71:fa:6c:5b:12: 3e:eb:27:66:8a:b6:69:13:42:81:db:75:a4:68:f2: d6:df:0e:6b:98:40:9a:1b:76:a0:a1:51:1b:f1:ef: 0e:36:db:f9:f4:45:f5:57:09:a5:2d:87:27:ca:4c: 8e:46:98:e5:9a:4f:cd:d0:00:52:2c:b1:ed:c0:40: 6b:d4:26:06:f8:01:0e:ee:91:63:bb:90:a1:e2:6e: 94:4a:df:d9:e5:07:72:45:89:ea:03:a8:3b:94:6b: 93:40:08:ec:92:f3:15:d4:d6:05:db:26:d2:e0:16: ab:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:3A:E8:6A:4B:18:C4:AB:71:A5:2D:10:0D:DB:DA:B1:AD:53:79:11 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/d72aece7-0571-461e-98fc-70c3c3f16982.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 8d:45:2c:eb:39:15:5d:7c:ee:f3:66:5a:78:fd:74:c6:90:fc: 48:38:86:50:c4:ad:24:7e:23:5c:bd:ca:b7:8c:32:62:eb:67: 29:fe:21:f2:34:01:ca:d0:7b:0a:c8:2f:30:2a:e3:b8:bb:97: 08:ba:37:bc:26:48:40:90:af:9b:e2:1a:71:f5:c1:82:2b:08: ad:ee:a0:c7:1d:2d:39:b2:ae:68:b1:c1:e7:6b:0f:cf:3f:34: d1:ba:78:b0:0c:5a:c3:99:c2:1b:8c:6c:c7:d6:47:57:28:ff: 2f:ae:56:b2:90:fa:f3:3d:de:79:d0:26:b6:c0:e4:4f:26:9d: b2:cd:7d:38:87:73:a5:9e:4c:3c:2e:b2:8d:ea:cd:0d:a2:25: f2:78:c6:1b:dc:29:d2:2f:3e:53:cc:8e:f8:cd:5a:ea:39:9e: 55:b6:a6:df:93:7e:1b:b3:5a:52:dc:05:71:ee:3c:47:35:a9: ae:cd:a6:5f:8e:a2:11:7e:35:ad:c2:96:da:61:9c:8a:8f:78: 10:f9:9f:70:95:d8:6c:a3:e0:52:20:1c:45:8c:18:e0:31:c3: 02:31:22:ea:e9:dd:85:88:e4:93:3c:ec:ef:6b:48:b5:36:f0: d6:a7:fd:5e:24:30:a0:7d:45:2a:66:52:8a:f0:8e:c7:ec:a6: 2b:21:a8:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWgdoPZY2JP16u6EBdgQbXOQJRVkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTI4NjBkZmUwMTFkNTUzNDNkZDJjMDgxZmFhZWJjODli NzVjNzBkODZiN2E1MzJhYzM3NWQ2Y2QwN2NhODJhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUuw5Q53wmA0nf9fqjo93Zc16nP7zplwU6ySGngS1Xyoz5 Qhz7VFBOTrG52TXg150qTWZG1mb1OrbYXzilmBc6xxJBF0a3zr6i65ZX0lufkupK vosKZrGkHebuGMHBU/y3cc0x8cxa8lm+WJ5evAlBOGqr0ZVmDHJ4MNDuIsclFRyC JnAiiPzKvJR3oNHXmSZx+mxbEj7rJ2aKtmkTQoHbdaRo8tbfDmuYQJobdqChURvx 7w422/n0RfVXCaUthyfKTI5GmOWaT83QAFIsse3AQGvUJgb4AQ7ukWO7kKHibpRK 39nlB3JFieoDqDuUa5NACOyS8xXU1gXbJtLgFqs1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfzroaksYxKtxpS0QDdvasa1TeREwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2Q3MmFlY2U3LTA1NzEtNDYxZS05OGZjLTcwYzNjM2YxNjk4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAI1FLOs5FV187vNmWnj9dMaQ /Eg4hlDErSR+I1y9yreMMmLrZyn+IfI0AcrQewrILzAq47i7lwi6N7wmSECQr5vi GnH1wYIrCK3uoMcdLTmyrmixwedrD88/NNG6eLAMWsOZwhuMbMfWR1co/y+uVrKQ +vM93nnQJrbA5E8mnbLNfTiHc6WeTDwuso3qzQ2iJfJ4xhvcKdIvPlPMjvjNWuo5 nlW2pt+TfhuzWlLcBXHuPEc1qa7Npl+OohF+Na3CltphnIqPeBD5n3CV2Gyj4FIg HEWMGOAxwwIxIurp3YWI5JM87O9rSLU28Nan/V4kMKB9RSpmUorwjsfspishqDM= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:10 2024 by rpki-client on console-fra.rpki-client.org