$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa File: 0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa (raw, json) Hash identifier: OonpgO7twAVWCErJpp+sWevsf2hVaF/H63MtVKCelW4= Subject key identifier: 12:6E:C9:43:68:66:A2:BC:79:8D:2E:1B:08:0F:2C:CB:8B:17:8A:FE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7BFD90F6C48204DB3313CE18A532792C00CB503F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa Signing time: Sat 09 Nov 2024 00:00:00 +0000 ROA not before: Sat 09 Nov 2024 00:00:00 +0000 ROA not after: Sat 14 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00e:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:fd:90:f6:c4:82:04:db:33:13:ce:18:a5:32:79:2c:00:cb:50:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 9 00:00:00 2024 GMT Not After : Dec 14 23:59:59 2024 GMT Subject: serialNumber=dc78be36029aee797f83f835f88c65e9b457c5a11ae1fc63de16dba61ff55e08, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:be:2c:9d:ee:6e:8d:1e:52:3b:6c:8a:17:c6: d9:64:4b:96:fd:3e:ad:3b:32:72:8b:9a:db:4e:27: cf:ca:93:29:1c:c4:ef:f0:99:38:01:0a:82:31:21: 18:8b:c5:63:58:c0:0a:98:d1:07:23:83:bf:75:01: 12:c8:19:f9:ce:41:14:e1:60:87:db:79:23:b4:fd: 73:df:c5:7b:e8:c5:ab:06:da:2c:fd:45:19:9b:f2: b3:9f:bf:95:78:f8:3d:b1:d7:83:8e:36:b5:dd:47: 63:82:bc:b4:90:b9:93:e0:4a:1e:fa:c3:ba:75:e1: 06:6e:07:79:83:62:cf:f4:c2:f6:8f:b8:96:dc:19: 2a:f7:45:90:08:8b:39:05:f9:a9:b1:5c:9b:6b:ef: a0:21:9e:08:b9:9c:1b:96:4c:d5:f3:7f:7a:97:db: 14:c7:28:97:ae:39:03:52:7d:3d:e0:1b:be:a2:8a: 01:ef:f9:30:3a:5e:e1:0d:4b:97:ac:7f:90:6a:b1: ff:7c:22:e2:29:8f:64:af:30:cd:c0:3a:7a:11:04: 73:6b:36:6e:aa:74:7a:7d:20:3d:01:40:1e:20:b5: b1:fc:17:84:67:a7:96:f6:99:22:65:28:d4:72:c7: 0c:47:7a:cd:eb:49:ba:8b:66:77:f9:83:e1:18:19: ee:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:6E:C9:43:68:66:A2:BC:79:8D:2E:1B:08:0F:2C:CB:8B:17:8A:FE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00e:400::/40 Signature Algorithm: sha256WithRSAEncryption 00:1f:c6:f0:06:5c:e3:99:7c:08:02:ad:2b:ca:e7:3f:80:42: 40:37:26:bb:c2:f3:4b:7f:df:7c:18:04:4f:d2:61:99:42:6a: 66:33:de:23:03:a2:12:ec:49:22:bd:f3:00:0e:4b:0d:62:7e: 31:5a:df:2f:9f:8c:0a:e9:8c:d1:d7:c9:ea:a0:0f:03:5c:50: 2e:e1:90:ce:14:a9:6d:81:85:40:13:03:48:40:e1:a8:a5:d4: d4:48:cc:0e:da:49:ee:d7:27:32:82:13:67:33:03:5e:1d:fd: 17:93:db:3a:79:f2:1c:73:b8:24:26:a8:4d:53:a7:8c:02:f9: 2b:78:a5:99:94:ac:0c:76:a9:5a:23:2b:2f:7f:a7:2f:c6:1b: 64:67:17:b0:14:fa:14:0e:b8:5c:46:54:f1:25:c5:09:f2:7a: 7f:d7:9b:f7:77:d7:bd:e3:1e:37:5c:df:ba:31:b2:34:27:91: 8a:34:52:8d:dc:38:33:d0:9e:a2:2f:22:d7:42:1e:d3:49:e8: bb:cc:37:00:6b:61:48:8b:fa:0a:a6:9f:dd:4e:4a:26:28:19: b7:22:51:f7:0d:8d:b8:96:39:fa:fe:57:86:9a:a4:3d:14:66: a5:9e:55:e1:55:d1:ec:ba:da:10:c0:58:22:c2:41:fa:61:66: 70:cf:2a:4e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUe/2Q9sSCBNszE84YpTJ5LADLUD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA5MDAwMDAwWhcNMjQxMjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzc4YmUzNjAyOWFlZTc5N2Y4M2Y4MzVmODhjNjVlOWI0 NTdjNWExMWFlMWZjNjNkZTE2ZGJhNjFmZjU1ZTA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2viyd7m6NHlI7bIoXxtlkS5b9Pq07MnKLmttOJ8/Kkykc xO/wmTgBCoIxIRiLxWNYwAqY0Qcjg791ARLIGfnOQRThYIfbeSO0/XPfxXvoxasG 2iz9RRmb8rOfv5V4+D2x14OONrXdR2OCvLSQuZPgSh76w7p14QZuB3mDYs/0wvaP uJbcGSr3RZAIizkF+amxXJtr76Ahngi5nBuWTNXzf3qX2xTHKJeuOQNSfT3gG76i igHv+TA6XuENS5esf5Bqsf98IuIpj2SvMM3AOnoRBHNrNm6qdHp9ID0BQB4gtbH8 F4Rnp5b2mSJlKNRyxwxHes3rSbqLZnf5g+EYGe6rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEm7JQ2hmorx5jS4bCA8sy4sXiv4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBmZDYwMWU2LWZkMDUtNDBjMy05ODdkLWQwNGQxZDM2ZWJkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPAOBDANBgkqhkiG9w0BAQsFAAOCAQEAAB/G8AZc45l8CAKtK8rnP4BC QDcmu8LzS3/ffBgET9JhmUJqZjPeIwOiEuxJIr3zAA5LDWJ+MVrfL5+MCumM0dfJ 6qAPA1xQLuGQzhSpbYGFQBMDSEDhqKXU1EjMDtpJ7tcnMoITZzMDXh39F5PbOnny HHO4JCaoTVOnjAL5K3ilmZSsDHapWiMrL3+nL8YbZGcXsBT6FA64XEZU8SXFCfJ6 f9eb93fXveMeN1zfujGyNCeRijRSjdw4M9Ceoi8i10Ie00nou8w3AGthSIv6Cqaf 3U5KJigZtyJR9w2NuJY5+v5XhpqkPRRmpZ5V4VXR7LraEMBYIsJB+mFmcM8qTg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org