$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: GfeKL08N2gHKpHqnespCqmziS5zKwSX3MH8BRI5ihUU= Subject key identifier: 76:56:19:E5:52:3C:F6:89:F9:B4:B9:20:06:12:07:FA:22:DD:EF:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2581CE2792C37785F961F9C8907B10F63C662404 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Mon 03 Jun 2024 00:00:00 +0000 ROA not before: Mon 03 Jun 2024 00:00:00 +0000 ROA not after: Mon 08 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Jun 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:81:ce:27:92:c3:77:85:f9:61:f9:c8:90:7b:10:f6:3c:66:24:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 3 00:00:00 2024 GMT Not After : Jul 8 23:59:59 2024 GMT Subject: serialNumber=cedcdf673d4aac101508e28a9afb15de5b9c22e91f99fd0d1157387523f5560f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9b:a2:ee:92:63:4a:80:7d:e5:83:fa:fd:10: ce:8b:87:58:ff:0e:72:2f:f0:0f:f5:53:bc:70:d0: 41:e0:51:03:69:00:08:6d:c2:07:bc:a7:dc:af:52: b5:40:97:89:73:fb:db:d1:b1:fc:9b:bc:cf:f1:4a: c4:e6:e7:9b:31:4f:7a:e9:9c:37:a5:58:c9:72:9b: 42:5e:38:19:4c:b1:72:d7:4a:2f:b7:5e:c5:7c:de: a7:4f:50:d0:76:6d:94:41:66:d0:57:4f:5c:92:80: c2:0e:1a:73:d5:41:7a:01:fe:49:94:bd:30:48:11: 14:a8:cf:62:30:37:00:2e:e8:57:49:1c:6c:af:be: 64:19:fb:fb:5d:95:c2:f4:f2:20:9d:04:2d:13:24: 60:d8:28:76:48:48:37:67:e8:56:87:18:fd:85:ce: 1d:a2:b5:f2:aa:18:ec:f8:6b:f8:0d:c9:2d:dd:2b: 80:bc:95:73:d9:1f:c2:38:8e:98:84:8d:bc:46:96: 1f:07:4d:80:d2:3c:a4:44:35:5f:68:b1:1d:5d:82: b7:30:ee:4a:15:4b:93:9e:78:14:e9:47:aa:04:3f: f5:eb:4a:91:8b:2e:14:c2:63:ab:21:82:84:ba:9c: 80:60:3d:64:b6:e8:7c:07:37:57:03:ad:20:34:65: 97:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:56:19:E5:52:3C:F6:89:F9:B4:B9:20:06:12:07:FA:22:DD:EF:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 34:fc:c9:4e:2d:b1:83:ba:0c:c5:dd:33:b5:ff:2f:8e:b1:2d: 3a:78:e8:ef:1a:3b:79:49:13:c3:13:54:e7:fe:b8:a7:2c:4e: 2c:76:10:d7:59:fb:01:05:f4:97:7f:55:11:06:01:3d:e0:04: 17:3d:80:2c:9e:cf:f4:22:5f:2f:83:90:a6:df:31:5a:14:38: 39:94:68:c5:08:f7:ad:36:b8:39:d7:c3:dd:34:50:c0:d3:3e: 9f:84:af:02:64:26:6d:a6:cd:a8:93:96:d1:75:45:0f:65:1c: b0:ff:f1:64:a4:62:29:35:64:3b:aa:c4:c9:ab:a3:5b:47:83: cd:f4:b5:c2:f4:5e:8a:49:78:49:43:97:fd:f4:34:11:9b:cb: f9:9b:78:0c:11:d5:b4:af:fd:99:80:d5:3f:1d:2d:b3:21:71: a8:9a:d4:06:74:b4:5d:55:6c:72:f4:52:a6:4e:0c:bb:99:9c: 59:22:11:01:51:c6:0b:34:26:71:4f:bc:4b:b0:39:b8:1d:33: 75:cf:ac:96:e6:57:0d:1c:29:28:62:7d:a7:94:26:f0:b5:9f: 56:16:23:72:c0:2d:59:c6:c3:7e:46:99:d9:b8:c0:72:ea:0f: d0:c9:5e:aa:17:02:b6:27:52:e7:7a:48:cc:84:ea:de:8d:de: 73:3a:9f:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJYHOJ5LDd4X5YfnIkHsQ9jxmJAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNjAzMDAwMDAwWhcNMjQwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWRjZGY2NzNkNGFhYzEwMTUwOGUyOGE5YWZiMTVkZTVi OWMyMmU5MWY5OWZkMGQxMTU3Mzg3NTIzZjU1NjBmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQm6LukmNKgH3lg/r9EM6Lh1j/DnIv8A/1U7xw0EHgUQNp AAhtwge8p9yvUrVAl4lz+9vRsfybvM/xSsTm55sxT3rpnDelWMlym0JeOBlMsXLX Si+3XsV83qdPUNB2bZRBZtBXT1ySgMIOGnPVQXoB/kmUvTBIERSoz2IwNwAu6FdJ HGyvvmQZ+/tdlcL08iCdBC0TJGDYKHZISDdn6FaHGP2Fzh2itfKqGOz4a/gNyS3d K4C8lXPZH8I4jpiEjbxGlh8HTYDSPKRENV9osR1dgrcw7koVS5OeeBTpR6oEP/Xr SpGLLhTCY6shgoS6nIBgPWS26HwHN1cDrSA0ZZctAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdlYZ5VI89on5tLkgBhIH+iLd7wMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBADT8yU4tsYO6DMXdM7X/L46x LTp46O8aO3lJE8MTVOf+uKcsTix2ENdZ+wEF9Jd/VREGAT3gBBc9gCyez/QiXy+D kKbfMVoUODmUaMUI9602uDnXw900UMDTPp+ErwJkJm2mzaiTltF1RQ9lHLD/8WSk Yik1ZDuqxMmro1tHg830tcL0XopJeElDl/30NBGby/mbeAwR1bSv/ZmA1T8dLbMh caia1AZ0tF1VbHL0UqZODLuZnFkiEQFRxgs0JnFPvEuwObgdM3XPrJbmVw0cKShi faeUJvC1n1YWI3LALVnGw35Gmdm4wHLqD9DJXqoXArYnUud6SMyE6t6N3nM6nxk= -----END CERTIFICATE-----Generated at Sun Jun 16 16:37:51 2024 by rpki-client on console-fra.rpki-client.org