$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/09ade3ee-1b3f-4da1-8322-a34d3e7cbd63.roa File: 09ade3ee-1b3f-4da1-8322-a34d3e7cbd63.roa (raw, json) Hash identifier: zsWubrlTlIPbslM6nOBl0ujsHCavuICnhbHwjzlFong= Subject key identifier: 46:28:E4:9A:07:CB:9E:1F:FD:E1:AF:BB:FF:8B:C4:31:BE:50:F7:90 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4637644788B40E89ACD759336DF88D36F3E87CF1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/09ade3ee-1b3f-4da1-8322-a34d3e7cbd63.roa Signing time: Tue 20 Aug 2024 00:00:00 +0000 ROA not before: Tue 20 Aug 2024 00:00:00 +0000 ROA not after: Tue 24 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00e:600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:37:64:47:88:b4:0e:89:ac:d7:59:33:6d:f8:8d:36:f3:e8:7c:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 20 00:00:00 2024 GMT Not After : Sep 24 23:59:59 2024 GMT Subject: serialNumber=5d42dffe6576bcada6fba4a293e61f72d357fab69713293542ff03f8dd3ceb5d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ce:15:7c:27:72:90:0e:fb:b1:0a:ae:b9:c0: f9:60:3b:88:56:cc:25:d1:6f:69:d1:33:0d:14:e7: 34:7d:5a:f2:ba:e1:82:d8:c7:16:a7:22:6b:45:d6: 39:69:33:21:27:ee:a3:d6:2a:36:0b:15:0c:db:88: da:1e:2b:94:88:84:1f:40:3f:87:24:0b:af:ba:ca: 9b:a7:71:53:20:93:1a:a1:5b:d4:1c:6a:8f:02:26: 4b:09:be:fb:92:bf:35:ef:f0:a9:d5:e0:67:68:39: bb:68:92:0e:19:c1:4b:0e:54:97:f8:62:41:1f:14: d7:5e:a4:8c:ff:6c:dc:22:69:eb:0c:25:4c:20:8c: 81:66:d2:a1:2a:13:dd:88:43:27:3c:d9:91:75:ad: f9:52:ce:2c:a3:c0:68:ba:d9:72:e2:63:4a:98:59: a7:ff:fc:90:34:b7:e1:f3:f5:0f:7c:81:ce:65:9f: 0e:6f:5e:26:11:1c:8d:73:21:57:ca:70:9f:4b:80: 3b:5c:db:a4:32:db:1b:bf:96:9b:69:a6:65:d6:45: 91:f0:71:ec:b4:0f:72:04:4b:df:5c:b2:af:35:cd: 6a:f1:55:42:2a:48:18:99:38:9f:4a:f6:b2:46:22: 45:b2:2f:dc:e0:42:a3:01:7a:55:7a:76:d9:e6:83: e6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:28:E4:9A:07:CB:9E:1F:FD:E1:AF:BB:FF:8B:C4:31:BE:50:F7:90 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/09ade3ee-1b3f-4da1-8322-a34d3e7cbd63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00e:600::/40 Signature Algorithm: sha256WithRSAEncryption 8c:b5:59:a7:14:6a:9c:07:e6:1e:68:b8:b1:ed:da:51:4d:32: 1c:ac:81:3e:c7:88:24:fc:72:91:9e:d0:08:88:89:30:21:0e: f9:7e:7c:05:32:7a:7e:29:8e:53:9c:be:a1:2c:84:0c:fd:b2: 97:cb:9b:f0:02:1e:7b:b2:9d:d6:cb:01:87:65:40:f8:f8:68: 38:93:82:fd:88:e0:62:39:26:e1:0e:5c:70:b9:b9:d0:88:57: ef:68:f1:f9:83:ed:74:3a:30:ed:7f:4b:4f:a5:07:3a:c1:c8: 8f:84:2f:57:3c:5c:d5:5e:38:a2:81:43:35:f2:37:a8:87:ec: 47:14:6c:3a:f7:c0:4e:68:87:5f:5e:a6:f7:a4:fb:fc:04:07: e2:3f:a1:a1:05:48:78:8f:81:e9:b8:01:3e:7e:44:4c:2f:5b: 9c:8a:cc:44:93:42:50:48:84:91:77:7d:e3:f8:66:37:db:e4: 48:98:a0:39:09:37:85:f8:9b:0a:25:f7:a4:8d:7d:89:b5:bb: 15:38:f4:93:ff:9b:14:f7:72:e8:f5:37:36:ad:f5:28:55:3b: be:34:c3:2b:21:b4:3e:c9:08:49:d0:a2:56:18:16:0b:16:a9: 41:31:b8:37:e1:10:70:a3:b5:c2:2c:0d:83:3a:b5:77:e5:92: 0e:6b:19:a4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURjdkR4i0Doms11kzbfiNNvPofPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwODIwMDAwMDAwWhcNMjQwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDQyZGZmZTY1NzZiY2FkYTZmYmE0YTI5M2U2MWY3MmQz NTdmYWI2OTcxMzI5MzU0MmZmMDNmOGRkM2NlYjVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7zhV8J3KQDvuxCq65wPlgO4hWzCXRb2nRMw0U5zR9WvK6 4YLYxxanImtF1jlpMyEn7qPWKjYLFQzbiNoeK5SIhB9AP4ckC6+6ypuncVMgkxqh W9Qcao8CJksJvvuSvzXv8KnV4GdoObtokg4ZwUsOVJf4YkEfFNdepIz/bNwiaesM JUwgjIFm0qEqE92IQyc82ZF1rflSziyjwGi62XLiY0qYWaf//JA0t+Hz9Q98gc5l nw5vXiYRHI1zIVfKcJ9LgDtc26Qy2xu/lptppmXWRZHwcey0D3IES99csq81zWrx VUIqSBiZOJ9K9rJGIkWyL9zgQqMBelV6dtnmg+YXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURijkmgfLnh/94a+7/4vEMb5Q95AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA5YWRlM2VlLTFiM2YtNGRhMS04MzIyLWEzNGQzZTdjYmQ2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPAOBjANBgkqhkiG9w0BAQsFAAOCAQEAjLVZpxRqnAfmHmi4se3aUU0y HKyBPseIJPxykZ7QCIiJMCEO+X58BTJ6fimOU5y+oSyEDP2yl8ub8AIee7Kd1ssB h2VA+PhoOJOC/YjgYjkm4Q5ccLm50IhX72jx+YPtdDow7X9LT6UHOsHIj4QvVzxc 1V44ooFDNfI3qIfsRxRsOvfATmiHX16m96T7/AQH4j+hoQVIeI+B6bgBPn5ETC9b nIrMRJNCUEiEkXd94/hmN9vkSJigOQk3hfibCiX3pI19ibW7FTj0k/+bFPdy6PU3 Nq31KFU7vjTDKyG0PskISdCiVhgWCxapQTG4N+EQcKO1wiwNgzq1d+WSDmsZpA== -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:45 2024 by rpki-client on console-ams.rpki-client.org