$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa File: 0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa (raw, json) Hash identifier: +WStyZnOclxQaqmqj1iHHl4Fe55ERIcfBc8eDC8Aibg= Subject key identifier: 04:C4:4A:6C:CA:23:BB:F7:52:63:7D:88:DB:DF:1D:07:74:97:28:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1BC1C1CF26234170F64170261CB8BE281FC2960D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00e:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c1:c1:cf:26:23:41:70:f6:41:70:26:1c:b8:be:28:1f:c2:96:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=46a0af99b1556587ec549dd6bcb06a8a0bc14ffad567792a6004db2b971babf6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:56:84:be:54:6f:f7:f4:2f:45:bb:36:b6:99: 14:02:17:b0:de:1e:b9:cc:14:3f:17:b3:9c:d7:8d: 41:6c:74:d6:6b:9e:f2:cd:41:b6:32:d0:66:ee:c7: 15:a7:eb:79:e9:f2:b9:ad:e5:43:ad:e3:10:6c:bd: b0:2f:c3:66:68:20:21:ce:17:91:79:48:57:6c:e0: 51:f3:3c:6e:8d:f7:b5:18:8e:2d:28:bb:43:9c:f1: 0d:ef:f7:8a:1b:7f:9e:3a:8d:33:46:7e:ad:a8:8b: 06:75:21:03:11:f8:6d:1e:b0:df:74:80:fc:aa:30: d0:95:a6:aa:32:53:4c:ba:b5:7e:f9:76:b4:37:60: ea:c4:2f:75:df:2a:9d:bd:c3:90:9e:fe:4e:fb:3c: 79:e6:69:63:c9:7f:11:2b:37:f8:3d:7f:b7:d5:d0: 93:66:24:b7:8d:d8:8a:59:a4:32:94:38:d2:77:15: 74:04:98:3c:61:5f:67:24:4b:00:fb:f0:7b:b6:d4: 58:bf:49:0e:f7:9d:fd:60:de:23:63:a3:85:2b:3e: c1:87:87:56:c8:9d:2b:ab:86:37:cc:43:1f:b8:1a: 4c:cf:e6:58:74:f0:5c:43:ae:cf:6e:8a:b7:b9:c5: d6:db:a1:6e:9d:ce:26:77:24:36:47:a5:d2:7a:b7: 5d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C4:4A:6C:CA:23:BB:F7:52:63:7D:88:DB:DF:1D:07:74:97:28:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0fd601e6-fd05-40c3-987d-d04d1d36ebd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00e:400::/40 Signature Algorithm: sha256WithRSAEncryption 20:3c:ed:11:fb:84:46:ce:21:bf:0c:6b:ba:95:39:48:9a:38: b1:fa:00:39:10:72:33:79:45:93:70:c8:24:19:dc:3c:66:0a: f1:26:b1:e0:32:e7:90:85:27:3e:76:25:5e:0b:35:71:fc:d3: f7:84:32:8d:89:50:21:53:53:56:1d:e1:05:1e:61:e2:ce:ca: 74:f6:8d:35:73:31:b8:19:02:fa:26:b3:dc:2c:50:a1:50:94: 94:23:9f:48:8d:b8:59:41:3e:bf:5e:46:8e:43:d1:4f:e3:3b: 15:ce:b5:16:0e:ca:75:3b:c5:d0:70:df:d1:65:53:95:46:74: f1:d7:19:28:62:b4:5b:18:9b:98:c8:68:3b:69:bc:32:d7:39: 93:1d:14:37:bd:76:e2:cd:55:c2:24:5b:0f:91:e3:d7:1e:54: b0:78:ac:47:77:9b:78:f7:aa:35:dc:13:21:60:58:5e:0f:b2: f4:2a:f1:3a:42:fd:82:b0:8c:f4:cd:cd:75:fc:8c:8c:07:22: df:c5:35:ca:f2:60:68:d7:78:01:89:b3:24:c8:44:6e:b4:bb: 3c:e1:77:0c:76:cc:70:f6:b7:a3:4f:12:77:4b:43:ba:8d:23: eb:f3:29:55:0b:40:7c:13:eb:7f:1d:ac:c9:ed:1c:76:b8:98: a1:63:b7:54 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG8HBzyYjQXD2QXAmHLi+KB/Clg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmEwYWY5OWIxNTU2NTg3ZWM1NDlkZDZiY2IwNmE4YTBi YzE0ZmZhZDU2Nzc5MmE2MDA0ZGIyYjk3MWJhYmY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrVoS+VG/39C9Fuza2mRQCF7DeHrnMFD8Xs5zXjUFsdNZr nvLNQbYy0GbuxxWn63np8rmt5UOt4xBsvbAvw2ZoICHOF5F5SFds4FHzPG6N97UY ji0ou0Oc8Q3v94obf546jTNGfq2oiwZ1IQMR+G0esN90gPyqMNCVpqoyU0y6tX75 drQ3YOrEL3XfKp29w5Ce/k77PHnmaWPJfxErN/g9f7fV0JNmJLeN2IpZpDKUONJ3 FXQEmDxhX2ckSwD78Hu21Fi/SQ73nf1g3iNjo4UrPsGHh1bInSurhjfMQx+4GkzP 5lh08FxDrs9uire5xdbboW6dziZ3JDZHpdJ6t131AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBMRKbMoju/dSY32I298dB3SXKD8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBmZDYwMWU2LWZkMDUtNDBjMy05ODdkLWQwNGQxZDM2ZWJkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPAOBDANBgkqhkiG9w0BAQsFAAOCAQEAIDztEfuERs4hvwxrupU5SJo4 sfoAORByM3lFk3DIJBncPGYK8Sax4DLnkIUnPnYlXgs1cfzT94QyjYlQIVNTVh3h BR5h4s7KdPaNNXMxuBkC+iaz3CxQoVCUlCOfSI24WUE+v15GjkPRT+M7Fc61Fg7K dTvF0HDf0WVTlUZ08dcZKGK0WxibmMhoO2m8Mtc5kx0UN7124s1VwiRbD5Hj1x5U sHisR3ebePeqNdwTIWBYXg+y9CrxOkL9grCM9M3NdfyMjAci38U1yvJgaNd4AYmz JMhEbrS7POF3DHbMcPa3o08Sd0tDuo0j6/MpVQtAfBPrfx2sye0cdriYoWO3VA== -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org