$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa File: 3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa (raw, json) Hash identifier: TDhyykwfw1+M5v1mAC7PjkMXBqhllCdKwhTayO3DViY= Subject key identifier: B7:58:13:DA:6B:5A:D7:D9:B6:8A:39:A1:EA:C8:6A:38:04:AF:90:71 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E9A233FC6EBE195216734C729B045F435229062 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa Signing time: Wed 05 Jun 2024 00:00:00 +0000 ROA not before: Wed 05 Jun 2024 00:00:00 +0000 ROA not after: Wed 10 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f002::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Jun 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:9a:23:3f:c6:eb:e1:95:21:67:34:c7:29:b0:45:f4:35:22:90:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 5 00:00:00 2024 GMT Not After : Jul 10 23:59:59 2024 GMT Subject: serialNumber=f875d8244b712ca1eff3d5b43605f7a6de5f8f4ae729ad42bd70f17b8e01cc99, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:27:99:8c:80:da:82:48:50:0f:5d:bb:d8: c2:f1:1a:40:1d:c4:9e:59:46:73:ca:ce:f1:bc:b4: 87:7b:57:47:ae:3a:ad:4f:d9:e9:ab:3a:5b:c7:6a: bc:1d:78:51:a8:3e:5d:12:ae:c5:bb:90:86:82:73: 6c:d5:8f:b7:c0:26:45:12:ac:80:16:a5:26:2c:65: d7:14:59:84:3a:04:f5:a6:14:bc:95:5a:08:32:9d: 11:fe:aa:f2:b3:b1:21:ac:91:78:92:a7:98:2d:4e: 3b:4e:71:82:65:72:ad:ac:d9:f7:0c:18:08:ea:07: 45:f5:4b:88:89:d5:1b:5d:ff:b9:29:e6:4d:3a:26: d5:2c:2e:0a:64:1a:dc:11:f8:2f:21:d2:54:81:50: d1:31:b5:18:d8:f4:68:8d:8d:87:c9:de:20:fa:77: f9:99:62:70:09:ce:c7:cd:f4:ef:e2:03:4b:fe:88: 85:18:59:22:6c:2f:e1:db:e5:58:b8:57:e1:ae:85: 3f:12:b3:8b:f0:89:37:1d:8c:45:c7:21:23:7a:90: af:dd:4a:b0:19:14:3a:d1:8c:bb:5f:53:b4:e2:f8: c4:00:d3:d6:f4:4d:6a:8c:bb:19:67:56:ad:7c:ce: 98:e8:22:90:a0:e7:ce:0e:5c:ed:02:f9:82:1c:85: 45:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:58:13:DA:6B:5A:D7:D9:B6:8A:39:A1:EA:C8:6A:38:04:AF:90:71 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f002::/39 Signature Algorithm: sha256WithRSAEncryption 1a:ba:9a:68:4b:c2:84:43:5e:c5:b5:46:d5:e7:44:3c:07:ad: 4a:ab:fa:96:1e:8e:f0:1a:4e:0b:26:97:e1:0a:3c:4b:3e:9b: a1:bd:4e:1e:4e:1b:00:dc:31:07:8a:59:a9:8b:2e:7d:5a:97: ba:71:fa:48:7a:81:3d:dd:26:81:14:53:cb:a5:67:75:b2:42: 55:1b:a0:98:44:b2:3b:a8:ac:8c:68:6d:19:4f:71:82:67:85: c5:fe:e7:e5:ca:88:d1:e7:ba:77:f7:97:82:de:e0:88:5c:b4: 47:74:89:73:7e:f5:83:14:05:ff:56:34:09:f8:94:23:b9:ca: 82:6f:b9:ce:93:8d:4d:45:c9:5d:58:b0:91:9d:11:61:da:f7: 96:e9:16:95:fd:d9:b3:42:14:d5:b2:ec:b2:13:31:fa:83:1a: 17:47:ca:a4:c7:1d:d4:0b:40:68:04:0b:03:94:78:4b:d9:f4: 7e:09:40:bd:e2:c4:c7:e5:93:5c:11:00:11:bf:68:cd:c0:a6: 88:42:5a:f8:e4:33:27:52:cb:f6:7d:ed:ce:ed:e4:3a:c3:ee: 7e:89:21:74:20:f7:4f:56:ff:2b:3e:fa:6d:ac:ff:a8:28:b7: 89:b3:82:7a:21:d3:a9:41:0b:c5:d1:67:ea:43:88:10:ab:33: 4f:3a:43:28 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfpojP8br4ZUhZzTHKbBF9DUikGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNjA1MDAwMDAwWhcNMjQwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODc1ZDgyNDRiNzEyY2ExZWZmM2Q1YjQzNjA1ZjdhNmRl NWY4ZjRhZTcyOWFkNDJiZDcwZjE3YjhlMDFjYzk5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJTyeZjIDagkhQD1272MLxGkAdxJ5ZRnPKzvG8tId7V0eu Oq1P2emrOlvHarwdeFGoPl0SrsW7kIaCc2zVj7fAJkUSrIAWpSYsZdcUWYQ6BPWm FLyVWggynRH+qvKzsSGskXiSp5gtTjtOcYJlcq2s2fcMGAjqB0X1S4iJ1Rtd/7kp 5k06JtUsLgpkGtwR+C8h0lSBUNExtRjY9GiNjYfJ3iD6d/mZYnAJzsfN9O/iA0v+ iIUYWSJsL+Hb5Vi4V+GuhT8Ss4vwiTcdjEXHISN6kK/dSrAZFDrRjLtfU7Ti+MQA 09b0TWqMuxlnVq18zpjoIpCg584OXO0C+YIchUV5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt1gT2mta19m2ijmh6shqOASvkHEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNhYzg1Y2Y1LWIyNDgtNDE2Yi1hYjMwLTVhNDMwZjNmYTQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPACADANBgkqhkiG9w0BAQsFAAOCAQEAGrqaaEvChENexbVG1edEPAet Sqv6lh6O8BpOCyaX4Qo8Sz6bob1OHk4bANwxB4pZqYsufVqXunH6SHqBPd0mgRRT y6VndbJCVRugmESyO6isjGhtGU9xgmeFxf7n5cqI0ee6d/eXgt7giFy0R3SJc371 gxQF/1Y0CfiUI7nKgm+5zpONTUXJXViwkZ0RYdr3lukWlf3Zs0IU1bLsshMx+oMa F0fKpMcd1AtAaAQLA5R4S9n0fglAveLEx+WTXBEAEb9ozcCmiEJa+OQzJ1LL9n3t zu3kOsPufokhdCD3T1b/Kz76baz/qCi3ibOCeiHTqUELxdFn6kOIEKszTzpDKA== -----END CERTIFICATE-----Generated at Sun Jun 16 16:37:51 2024 by rpki-client on console-fra.rpki-client.org