$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/595ebfb9-e548-4d3e-9fa8-016973527359.roa File: 595ebfb9-e548-4d3e-9fa8-016973527359.roa (raw, json) Hash identifier: 3VpIeDhLXn0G7FB2QNqkmpEm/dA/r9Opk9aiazN6+6U= Subject key identifier: A9:5F:DF:25:9D:46:1B:28:80:17:A2:39:21:CA:71:D9:4E:AC:94:00 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5524AD7A50A70CD5F8EED47937690D14D0FDE471 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/595ebfb9-e548-4d3e-9fa8-016973527359.roa Signing time: Fri 14 Jun 2024 00:00:00 +0000 ROA not before: Fri 14 Jun 2024 00:00:00 +0000 ROA not after: Fri 19 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Jun 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:24:ad:7a:50:a7:0c:d5:f8:ee:d4:79:37:69:0d:14:d0:fd:e4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 14 00:00:00 2024 GMT Not After : Jul 19 23:59:59 2024 GMT Subject: serialNumber=74a3b1d73ecaaf14f2d7bef3213649977bb496488ceb2b78dc7b822b7ae34cac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c4:36:04:a7:63:52:51:78:8f:d1:b0:e5:db: 5d:a3:b9:39:d4:82:f1:0d:dd:8a:26:2e:9d:7d:70: 18:cc:a5:45:e6:3d:9d:09:44:c0:e7:6c:78:90:34: 53:27:18:2c:23:2f:3f:36:21:af:5c:d5:53:05:b7: 73:48:4a:fc:ca:df:6d:c2:d4:06:d3:40:1b:f2:6b: 56:72:85:9b:3f:60:8e:e7:25:f0:c3:f4:03:ac:53: a7:db:c4:53:e1:a0:25:94:cd:76:38:9c:7a:b4:e9: 3d:2b:c7:90:55:a4:36:74:c1:5b:f0:75:c2:f6:c9: e2:bd:f9:62:58:a0:68:f4:28:20:f6:25:fa:91:47: 0a:65:13:86:2e:53:13:29:eb:5b:57:46:ac:92:51: 11:d7:aa:4c:49:ec:06:95:bb:bb:5f:49:ee:bd:3a: be:2d:f6:80:9a:78:0c:b3:ab:60:4f:9c:ee:22:4d: 07:64:5c:78:e4:3e:44:56:26:9b:c0:11:15:a5:15: 8c:19:2b:52:db:55:bf:04:e6:c2:09:a2:c8:c0:64: 82:3e:f8:45:d7:c3:19:b1:81:24:36:04:b0:53:3b: 9b:a4:a5:ba:5f:69:57:ca:c2:92:39:02:78:bc:e9: a0:88:60:51:a6:40:33:73:01:77:c0:18:f0:e2:40: dc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5F:DF:25:9D:46:1B:28:80:17:A2:39:21:CA:71:D9:4E:AC:94:00 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/595ebfb9-e548-4d3e-9fa8-016973527359.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8000::/48 Signature Algorithm: sha256WithRSAEncryption 55:b6:4e:8e:2f:cd:24:13:92:8e:30:c0:fd:d8:aa:4e:85:4c: 98:56:c0:4a:3e:0c:fb:37:18:44:1d:f8:3b:eb:64:fc:75:2c: e3:a1:2e:6d:a8:ac:35:a0:e8:6a:4e:db:16:0c:a5:ac:2e:a7: 2a:01:2c:10:a4:a3:b0:17:45:48:86:8d:70:cd:0b:94:2c:0c: b5:db:36:cc:aa:a3:af:d1:df:26:04:b3:5d:ed:de:cd:1d:05: 26:e6:c2:95:6d:e3:5a:9f:3b:48:d0:d4:0e:e2:e5:09:4c:91: 6e:df:23:fb:12:0f:b0:ac:e8:09:1c:9a:02:54:de:52:45:fb: 63:9d:a1:eb:4b:1f:64:62:69:4c:b5:ad:5e:8f:af:fa:1a:31: 41:cf:bf:64:0c:5d:7b:36:d4:31:f1:66:27:1e:a4:c1:68:55: e0:3e:e4:e4:f5:ce:90:35:19:d8:4f:c0:1f:6e:6f:3c:48:a7: 04:43:87:ec:b5:d5:c3:f6:ca:bd:9a:6e:7c:1c:33:6e:a7:93: ec:13:ab:f1:9c:5e:cf:57:6f:15:f4:5f:11:30:3a:cb:3d:60: 43:1b:c0:ae:7d:3e:e6:49:e6:e1:54:23:f0:07:5f:8f:7d:23: 28:fd:dd:c1:3c:04:79:ae:94:7c:91:cd:7a:11:6d:ce:76:fb: 04:a9:74:a5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVSStelCnDNX47tR5N2kNFND95HEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNjE0MDAwMDAwWhcNMjQwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGEzYjFkNzNlY2FhZjE0ZjJkN2JlZjMyMTM2NDk5Nzdi YjQ5NjQ4OGNlYjJiNzhkYzdiODIyYjdhZTM0Y2FjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbxDYEp2NSUXiP0bDl212juTnUgvEN3YomLp19cBjMpUXm PZ0JRMDnbHiQNFMnGCwjLz82Ia9c1VMFt3NISvzK323C1AbTQBvya1ZyhZs/YI7n JfDD9AOsU6fbxFPhoCWUzXY4nHq06T0rx5BVpDZ0wVvwdcL2yeK9+WJYoGj0KCD2 JfqRRwplE4YuUxMp61tXRqySURHXqkxJ7AaVu7tfSe69Or4t9oCaeAyzq2BPnO4i TQdkXHjkPkRWJpvAERWlFYwZK1LbVb8E5sIJosjAZII++EXXwxmxgSQ2BLBTO5uk pbpfaVfKwpI5Ani86aCIYFGmQDNzAXfAGPDiQNwhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqV/fJZ1GGyiAF6I5Icpx2U6slAAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU5NWViZmI5LWU1NDgtNGQzZS05ZmE4LTAxNjk3MzUyNzM1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwgAAwDQYJKoZIhvcNAQELBQADggEBAFW2To4vzSQTko4wwP3Yqk6F TJhWwEo+DPs3GEQd+DvrZPx1LOOhLm2orDWg6GpO2xYMpawupyoBLBCko7AXRUiG jXDNC5QsDLXbNsyqo6/R3yYEs13t3s0dBSbmwpVt41qfO0jQ1A7i5QlMkW7fI/sS D7Cs6AkcmgJU3lJF+2OdoetLH2RiaUy1rV6Pr/oaMUHPv2QMXXs21DHxZicepMFo VeA+5OT1zpA1GdhPwB9ubzxIpwRDh+y11cP2yr2abnwcM26nk+wTq/GcXs9XbxX0 XxEwOss9YEMbwK59PuZJ5uFUI/AHX499Iyj93cE8BHmulHyRzXoRbc52+wSpdKU= -----END CERTIFICATE-----Generated at Sun Jun 16 17:32:32 2024 by rpki-client on console-ams.rpki-client.org