$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa File: 02e8e3cf-8157-4c2c-8460-90cdfb690289.roa (raw, json) Hash identifier: 2/Gsy7pgFRwZGMjhZUUPbtlf43z4wzTOZS5IPfTBShc= Subject key identifier: 54:E7:D2:5F:A2:C8:2B:8A:B4:29:BC:42:77:B6:D2:55:AB:4F:C6:7F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B8BA4B8F278E0A9F918D1FAC06F16D95A97AF2E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:8b:a4:b8:f2:78:e0:a9:f9:18:d1:fa:c0:6f:16:d9:5a:97:af:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=07145957a674bf84656cdfbc10b4d13693d65dfd42fd14da2ba53880fdd85159, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:09:7f:15:8b:df:f5:46:87:ab:84:03:12: 1a:35:a5:48:54:4d:4f:ce:b8:1f:34:e9:21:d3:48: a0:8c:f7:e6:35:e6:9e:96:f8:df:d0:00:4e:68:70: a1:87:d5:cb:b0:1c:86:5e:ea:13:46:4a:85:e6:b6: 19:37:e3:de:5a:1b:e9:83:72:1e:30:c7:b6:25:5f: 4c:72:bb:0d:55:1f:d7:5b:df:dd:7c:eb:05:fd:21: 32:2f:86:94:ef:3a:e6:7a:b7:5a:a7:26:ed:9c:5e: ff:e2:88:c0:56:6d:db:17:77:82:e9:ae:77:ab:7f: aa:37:9f:88:92:bd:01:3b:f0:d1:2c:39:a1:3d:b8: 2e:4b:2d:63:bf:08:f8:36:c5:76:a9:15:c7:5e:f8: 5a:9b:78:85:cc:7b:50:3d:f3:e1:0b:af:b0:80:a1: b3:80:7f:19:aa:b4:a1:b0:5d:56:f0:09:ef:b2:d7: 44:43:26:ca:07:ba:40:dd:98:d5:15:00:4a:5b:5c: b2:fe:37:33:ca:29:7c:eb:d5:e3:1d:3a:f5:49:e1: f4:21:a3:a1:2c:73:d9:78:d6:2a:97:5a:ca:6b:0f: 45:33:61:12:e6:d9:20:6e:24:5c:87:71:a2:64:a5: d7:57:cf:52:54:8b:b8:da:f5:b1:ee:a5:e0:8b:f1: ae:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E7:D2:5F:A2:C8:2B:8A:B4:29:BC:42:77:B6:D2:55:AB:4F:C6:7F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02e8e3cf-8157-4c2c-8460-90cdfb690289.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000::/28 Signature Algorithm: sha256WithRSAEncryption 82:01:3d:29:8c:bb:3b:45:b9:e4:a2:0e:0f:e8:72:ff:cb:27: ce:2b:a2:33:4a:a3:d1:a7:b4:51:b8:50:5c:0a:bf:d9:67:16: e1:32:88:67:96:9a:8f:5f:f5:59:92:15:b1:c0:fb:a6:2d:2c: 37:e7:a0:32:2f:d6:37:41:38:db:21:92:45:29:0d:b8:03:6c: fc:f8:61:d5:31:24:1b:25:0a:9e:92:d7:8c:80:42:ef:81:fe: bb:15:d2:77:8b:7b:c1:01:70:c1:56:06:7f:90:84:d8:b7:d1: 7e:92:aa:0b:47:84:e6:5a:09:18:85:f8:bf:8e:41:57:93:10: e3:3e:11:d5:8a:ad:ae:d6:74:09:ff:56:e3:12:50:88:01:e2: 69:d3:23:71:57:6e:2a:dc:ab:98:2d:d0:87:50:ce:5b:49:7b: 55:58:30:fd:b2:7d:38:09:dd:a2:36:a4:9e:e2:60:b1:a3:fa: c0:e3:f7:0a:b3:62:c7:f6:b2:2b:58:14:7c:a3:70:60:2e:c8: 8e:62:2d:99:86:6c:fa:53:a1:69:dc:1a:02:21:8d:da:64:03: 8b:0f:76:38:93:1c:ee:f2:c3:ed:9f:3e:7b:6d:62:dc:3e:3b: 6b:06:a5:f7:f0:36:9f:06:f6:59:96:48:e0:56:ef:9d:98:c5: 02:7b:cd:99 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUW4ukuPJ44Kn5GNH6wG8W2VqXry4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzE0NTk1N2E2NzRiZjg0NjU2Y2RmYmMxMGI0ZDEzNjkz ZDY1ZGZkNDJmZDE0ZGEyYmE1Mzg4MGZkZDg1MTU5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqGAl/FYvf9UaHq4QDEho1pUhUTU/OuB806SHTSKCM9+Y1 5p6W+N/QAE5ocKGH1cuwHIZe6hNGSoXmthk3495aG+mDch4wx7YlX0xyuw1VH9db 39186wX9ITIvhpTvOuZ6t1qnJu2cXv/iiMBWbdsXd4Lprnerf6o3n4iSvQE78NEs OaE9uC5LLWO/CPg2xXapFcde+FqbeIXMe1A98+ELr7CAobOAfxmqtKGwXVbwCe+y 10RDJsoHukDdmNUVAEpbXLL+NzPKKXzr1eMdOvVJ4fQho6Esc9l41iqXWsprD0Uz YRLm2SBuJFyHcaJkpddXz1JUi7ja9bHupeCL8a7VAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUVOfSX6LIK4q0KbxCd7bSVatPxn8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyZThlM2NmLTgxNTctNGMyYy04NDYwLTkwY2RmYjY5MDI4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAJAAMA0GCSqGSIb3DQEBCwUAA4IBAQCCAT0pjLs7Rbnkog4P6HL/yyfO K6IzSqPRp7RRuFBcCr/ZZxbhMohnlpqPX/VZkhWxwPumLSw356AyL9Y3QTjbIZJF KQ24A2z8+GHVMSQbJQqekteMgELvgf67FdJ3i3vBAXDBVgZ/kITYt9F+kqoLR4Tm WgkYhfi/jkFXkxDjPhHViq2u1nQJ/1bjElCIAeJp0yNxV24q3KuYLdCHUM5bSXtV WDD9sn04Cd2iNqSe4mCxo/rA4/cKs2LH9rIrWBR8o3BgLsiOYi2Zhmz6U6Fp3BoC IY3aZAOLD3Y4kxzu8sPtnz57bWLcPjtrBqX38DafBvZZlkjgVu+dmMUCe82Z -----END CERTIFICATE-----Generated at Fri Apr 19 17:12:03 2024 by rpki-client on console-fra.rpki-client.org