$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa File: 904b7769-7341-422c-a272-18b5267fe2db.roa (raw, json) Hash identifier: PF6y/2Ax3CaOs4UZ/kPDWDy0y48PnLYsa5hhc4JX520= Subject key identifier: CF:32:60:31:56:D3:F5:6F:D8:CB:1A:73:37:8F:3E:E4:82:87:5A:82 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1B802B498BB88778BC2635B791E731BA0F873323 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:80:2b:49:8b:b8:87:78:bc:26:35:b7:91:e7:31:ba:0f:87:33:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=59425206f43e561347abefc2fd3b0a136ea816bad71c3213d14afee4162af141, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:21:f2:f4:31:09:dd:88:08:dc:be:ab:f9:fe: 82:84:52:98:2c:97:8a:d5:89:35:05:be:8f:a6:95: c0:f5:d0:18:33:cf:c9:f3:fa:a0:b3:a3:3a:bf:67: 31:5c:b0:2e:38:38:1a:66:48:f7:2e:3c:cb:4c:2e: 27:a8:d9:e0:b6:fc:49:6b:7a:b9:43:40:d8:c8:a2: 71:5e:e6:d1:5a:87:06:da:23:9f:5e:8b:a5:22:89: 34:85:a1:51:30:02:56:f7:43:52:80:58:62:d9:5f: 9a:0d:f8:5e:fb:37:c3:cd:af:5a:46:f9:e1:fb:1c: 4f:d8:c6:90:4b:09:d8:06:0b:7b:7a:e5:f4:2f:97: 32:1a:f1:9a:08:8c:1a:52:58:1f:8f:20:51:e9:47: 15:7c:0f:68:39:b4:24:1e:30:67:5b:91:d3:c0:bd: 76:31:22:17:e3:1d:83:4b:63:84:51:5e:25:b7:a2: 28:3d:11:5d:9c:d3:16:47:0c:fd:20:27:1c:65:a4: 2a:a1:5d:c2:79:58:65:7c:6f:ff:45:2b:bd:e0:9d: 5f:71:9e:23:81:db:79:7a:2c:ea:a5:3e:ae:28:f3: 79:3c:a1:04:db:b8:5f:b6:2a:0c:18:2f:b7:11:58: c0:3d:f2:da:c4:0b:9e:cd:59:68:4b:47:cc:d8:2c: a4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:32:60:31:56:D3:F5:6F:D8:CB:1A:73:37:8F:3E:E4:82:87:5A:82 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/904b7769-7341-422c-a272-18b5267fe2db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:a100::/40 Signature Algorithm: sha256WithRSAEncryption 7a:f4:f9:6d:15:36:d1:5d:39:44:26:a1:b7:1b:9b:bf:03:7b: 8c:6f:6d:60:09:32:fc:02:f4:58:65:c6:c5:36:59:7f:fa:6c: 7e:ed:be:a9:4f:46:5b:e6:c5:0c:95:07:d3:aa:07:78:a9:b2: cb:f8:c7:16:19:e9:4e:c4:16:cf:92:91:d6:e5:da:fb:23:b6: 1b:f0:0f:5e:f9:22:f1:e4:0a:73:e3:3d:f2:ec:41:cd:72:e6: 8c:d8:3e:6a:af:98:74:b4:48:85:42:a2:56:a5:e5:d2:be:b8: da:e5:e0:8f:97:14:0c:51:cc:1b:af:b4:ce:76:27:93:bc:96: c7:71:01:c4:b5:1a:48:76:1b:34:d9:0a:2f:8b:0d:90:cc:11: 72:9e:bc:57:4a:bf:b5:16:92:53:c9:fa:c6:91:b9:fe:64:3e: 45:7b:43:69:a1:79:2f:ba:0e:db:d6:0f:3d:a8:eb:de:99:18: 46:49:b5:dd:88:e8:bb:5a:eb:3b:55:48:b1:19:39:d0:13:e8: 94:85:4f:36:8c:c9:e4:24:ce:6b:05:85:a3:c6:fb:33:0f:02: 4a:73:6f:27:0f:c6:f2:0f:c0:79:7c:7d:d1:c6:cc:45:4e:c5: 31:87:99:8b:0c:85:81:e3:54:a3:29:2b:25:78:cc:c3:12:f4: 27:a0:8d:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG4ArSYu4h3i8JjW3kecxug+HMyMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTQyNTIwNmY0M2U1NjEzNDdhYmVmYzJmZDNiMGExMzZl YTgxNmJhZDcxYzMyMTNkMTRhZmVlNDE2MmFmMTQxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyIfL0MQndiAjcvqv5/oKEUpgsl4rViTUFvo+mlcD10Bgz z8nz+qCzozq/ZzFcsC44OBpmSPcuPMtMLieo2eC2/ElrerlDQNjIonFe5tFahwba I59ei6UiiTSFoVEwAlb3Q1KAWGLZX5oN+F77N8PNr1pG+eH7HE/YxpBLCdgGC3t6 5fQvlzIa8ZoIjBpSWB+PIFHpRxV8D2g5tCQeMGdbkdPAvXYxIhfjHYNLY4RRXiW3 oig9EV2c0xZHDP0gJxxlpCqhXcJ5WGV8b/9FK73gnV9xniOB23l6LOqlPq4o83k8 oQTbuF+2KgwYL7cRWMA98trEC57NWWhLR8zYLKRbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzzJgMVbT9W/YyxpzN48+5IKHWoIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkwNGI3NzY5LTczNDEtNDIyYy1hMjcyLTE4YjUyNjdmZTJkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAoTANBgkqhkiG9w0BAQsFAAOCAQEAevT5bRU20V05RCahtxubvwN7 jG9tYAky/AL0WGXGxTZZf/psfu2+qU9GW+bFDJUH06oHeKmyy/jHFhnpTsQWz5KR 1uXa+yO2G/APXvki8eQKc+M98uxBzXLmjNg+aq+YdLRIhUKiVqXl0r642uXgj5cU DFHMG6+0znYnk7yWx3EBxLUaSHYbNNkKL4sNkMwRcp68V0q/tRaSU8n6xpG5/mQ+ RXtDaaF5L7oO29YPPajr3pkYRkm13Yjou1rrO1VIsRk50BPolIVPNozJ5CTOawWF o8b7Mw8CSnNvJw/G8g/AeXx90cbMRU7FMYeZiwyFgeNUoykrJXjMwxL0J6CNCA== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:59 2024 by rpki-client on console-ams.rpki-client.org