$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/54078f76-da74-47d8-b8f2-1e0969f9955a.roa File: 54078f76-da74-47d8-b8f2-1e0969f9955a.roa (raw, json) Hash identifier: tAZl34rB/AqFH7NJcB5SagXcSFe6f3aDS5DsMJqfVzw= Subject key identifier: 43:79:77:E9:8A:88:09:96:CF:3E:53:F1:42:45:78:CC:19:4B:B1:E6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 23FC5A3E125B2C46A42A1596C0FD8C98531B8954 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/54078f76-da74-47d8-b8f2-1e0969f9955a.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:fc:5a:3e:12:5b:2c:46:a4:2a:15:96:c0:fd:8c:98:53:1b:89:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=0e75ea3290d7c755a50217382a7ea9a416f182088503a815ab69fda2e236a866, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f0:0c:9c:5a:fd:f6:b1:64:8a:ca:4a:3b:32: 10:2f:aa:f2:23:45:f4:d4:1e:33:95:2b:40:07:9b: ad:39:93:89:e8:dc:43:c3:35:fa:86:8a:34:5d:6c: a4:8d:9d:6f:57:c6:56:b5:ce:a1:28:66:54:40:23: af:0d:61:ef:0d:d3:b7:8b:76:9a:66:4c:e4:80:bc: 9d:38:92:63:cd:56:a1:e3:59:b4:ac:d0:11:ba:ac: 63:87:6d:e3:28:57:10:45:c3:d2:d9:f0:dd:63:59: 4e:33:70:b6:3a:a2:5b:e5:f2:56:83:6f:17:24:55: 17:91:88:19:51:46:8f:3f:3c:8d:a1:ce:2e:02:96: a9:6e:b1:e2:a7:fd:31:ba:45:50:41:03:76:24:4a: 0c:2c:3d:0f:f6:36:b0:1c:05:11:65:eb:83:fc:bc: cd:cf:f7:29:17:9b:d2:6f:4e:e1:ba:e2:dd:3d:18: 53:6d:5f:f9:88:36:4a:21:f2:17:59:56:48:22:e9: 14:f9:04:32:e4:8e:03:01:f0:cd:66:95:38:c5:f6: 06:bb:9c:84:7c:35:aa:8d:72:8c:f7:9e:50:9b:23: b9:c6:0b:d1:1c:20:97:1c:a0:c9:f7:ea:57:45:fb: 8e:69:4a:05:d6:e5:ba:ce:c4:3c:32:d3:f1:ed:b6: f5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:79:77:E9:8A:88:09:96:CF:3E:53:F1:42:45:78:CC:19:4B:B1:E6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/54078f76-da74-47d8-b8f2-1e0969f9955a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 16:a6:c3:86:49:59:a5:ce:c4:60:90:9c:ba:f4:72:34:78:f4: 52:e5:c5:5f:f4:ad:3b:b7:22:ee:39:5a:2a:21:be:07:07:78: e5:c0:b9:13:06:18:c4:cf:b0:5b:2f:d3:b8:eb:39:25:7a:a4: 50:02:80:cc:92:d7:f7:9b:1c:76:3b:3c:47:7e:2a:a3:bf:59: fe:67:5f:33:57:15:83:75:76:c0:c1:4b:0e:eb:c7:35:55:8b: 21:5c:3b:dd:68:76:df:5d:ff:a8:2e:5f:a2:a3:c8:87:51:f8: de:c5:21:52:86:c4:73:52:a3:4b:52:fc:b2:5c:c5:a6:b1:14: 34:81:e4:a8:38:cf:5f:7c:80:1a:e4:e5:ee:8d:32:e1:03:08: 32:c0:28:30:12:86:0a:8f:08:48:83:13:cd:d9:c2:75:69:e3: 58:42:bd:e9:20:6a:16:2c:ca:b7:26:d0:29:02:67:96:6f:3f: 02:76:0d:6d:81:2b:cb:eb:bc:81:ca:31:d8:5b:f0:2e:a3:df: df:73:c4:c8:33:ec:ce:8e:0b:05:f0:f3:8b:e6:82:e0:8b:91: 2d:7b:57:04:20:0a:d6:33:8d:0c:b5:c8:0d:28:40:05:b1:75: 5a:d3:c6:90:01:ad:7f:6d:5b:3a:5b:4f:fe:58:4b:23:4e:09: 33:de:c1:c3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUI/xaPhJbLEakKhWWwP2MmFMbiVQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTc1ZWEzMjkwZDdjNzU1YTUwMjE3MzgyYTdlYTlhNDE2 ZjE4MjA4ODUwM2E4MTVhYjY5ZmRhMmUyMzZhODY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN8AycWv32sWSKyko7MhAvqvIjRfTUHjOVK0AHm605k4no 3EPDNfqGijRdbKSNnW9Xxla1zqEoZlRAI68NYe8N07eLdppmTOSAvJ04kmPNVqHj WbSs0BG6rGOHbeMoVxBFw9LZ8N1jWU4zcLY6olvl8laDbxckVReRiBlRRo8/PI2h zi4ClqluseKn/TG6RVBBA3YkSgwsPQ/2NrAcBRFl64P8vM3P9ykXm9JvTuG64t09 GFNtX/mINkoh8hdZVkgi6RT5BDLkjgMB8M1mlTjF9ga7nIR8NaqNcoz3nlCbI7nG C9EcIJccoMn36ldF+45pSgXW5brOxDwy0/HttvWlAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUQ3l36YqICZbPPlPxQkV4zBlLseYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU0MDc4Zjc2LWRhNzQtNDdkOC1iOGYyLTFlMDk2OWY5OTU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQAWpsOGSVmlzsRgkJy69HI0ePRS 5cVf9K07tyLuOVoqIb4HB3jlwLkTBhjEz7BbL9O46zkleqRQAoDMktf3mxx2OzxH fiqjv1n+Z18zVxWDdXbAwUsO68c1VYshXDvdaHbfXf+oLl+io8iHUfjexSFShsRz UqNLUvyyXMWmsRQ0geSoOM9ffIAa5OXujTLhAwgywCgwEoYKjwhIgxPN2cJ1aeNY Qr3pIGoWLMq3JtApAmeWbz8Cdg1tgSvL67yByjHYW/Auo9/fc8TIM+zOjgsF8POL 5oLgi5Ete1cEIArWM40MtcgNKEAFsXVa08aQAa1/bVs6W0/+WEsjTgkz3sHD -----END CERTIFICATE-----Generated at Fri Apr 26 00:36:12 2024 by rpki-client on console-ams.rpki-client.org