$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa File: 14518d87-9a80-47da-80c6-efeb62f0643b.roa (raw, json) Hash identifier: h6bzBE49OkcSDVCmBZreQiJmtV6OvKIcmmGATLfAhu4= Subject key identifier: 40:23:05:CD:3A:32:B1:3A:A0:68:D7:B3:E9:0D:18:B2:E7:3F:FB:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3ED5A8B286BC2B71F34DB612B1CC91BE2F8A6BBD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d5:a8:b2:86:bc:2b:71:f3:4d:b6:12:b1:cc:91:be:2f:8a:6b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=07ffb8a01f2c1f964482c1dd4c1bd456db6f9b828c4b8343e6743131b2b049ed, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:0f:a0:f8:10:52:90:39:3e:57:47:5d:7c:a2: 3c:36:21:f6:75:f3:50:50:82:95:20:41:6d:f9:18: db:14:d8:08:e6:f7:d8:b7:b9:4a:0f:9c:5e:aa:bf: c0:78:ae:4b:f3:01:c9:1e:e8:ce:94:a8:79:ec:d6: 1a:3b:3b:61:0a:60:72:1a:ef:52:b9:1f:44:3e:f1: 04:9d:0c:cc:ab:8f:b3:46:4d:b4:59:6a:99:19:15: af:de:1d:46:88:de:68:e6:d2:d9:d7:19:d6:28:ba: 8d:3d:2d:7c:91:84:dc:52:9b:9c:e1:c7:b2:e1:95: 42:cb:71:44:8a:e1:49:76:50:d0:a8:df:97:71:6a: 90:7b:d5:d0:35:3e:ea:fb:4e:ee:33:bc:e4:b3:aa: ad:60:2f:12:4a:e7:7d:3b:fc:6c:3b:ed:33:b9:88: 42:bb:77:4f:e5:0b:b1:f5:03:64:cd:95:95:eb:e6: 6b:96:da:fc:49:7d:8d:76:13:fc:39:f6:ca:4e:c5: 9c:9c:d8:0a:c3:ad:68:de:96:14:71:40:ee:4d:7f: 12:be:73:e6:40:43:d6:64:31:e8:5c:fb:ae:aa:2f: 98:5b:a9:d9:7b:47:44:e6:52:c3:ab:2b:97:a9:db: 2d:ed:44:4b:54:43:a6:58:d9:f5:c9:0c:18:67:83: 98:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:23:05:CD:3A:32:B1:3A:A0:68:D7:B3:E9:0D:18:B2:E7:3F:FB:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption 28:6d:61:de:78:16:8f:b2:0e:ff:29:08:9b:b6:94:d8:b2:85: 68:a8:45:70:09:f7:b5:89:73:b4:67:4b:9f:40:4f:25:1f:cb: 6d:c4:39:77:f0:0f:e3:09:7c:b6:5e:e7:8d:c0:76:f5:91:36: 64:a5:93:5a:01:d3:1c:89:7b:0c:34:15:1e:d5:17:af:29:0e: be:ca:1d:20:77:fa:82:9d:e5:2f:62:0c:e7:3b:f2:ff:a6:06: bb:61:ab:b5:61:f8:16:c5:92:97:25:54:7a:9b:c9:f2:a4:5c: aa:4f:ea:b4:6c:51:a4:76:c2:c9:d0:9d:65:7c:58:4f:16:a9: e9:91:fe:68:b5:f6:86:0d:55:5c:fb:36:77:6d:49:c1:4c:04: 68:74:63:45:34:be:e3:8e:84:e5:c3:f4:96:d6:e6:09:5a:5c: 13:2e:42:e8:51:89:eb:d6:b5:84:4e:03:57:76:7e:8c:7f:90: a2:39:70:24:c6:9b:e9:fc:ce:55:bc:4a:19:77:37:41:ef:90: c6:de:1c:39:82:a7:d3:9b:0d:83:e3:5b:b7:ce:46:72:70:80: 7a:d0:c6:83:b6:dd:d5:af:ea:b4:62:59:a9:d4:ac:c4:55:34: 2e:48:af:8b:a1:fb:2e:a6:43:c2:8d:54:51:f9:43:e7:8a:4a: 44:37:00:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPtWosoa8K3HzTbYSscyRvi+Ka70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2ZmYjhhMDFmMmMxZjk2NDQ4MmMxZGQ0YzFiZDQ1NmRi NmY5YjgyOGM0YjgzNDNlNjc0MzEzMWIyYjA0OWVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8D6D4EFKQOT5XR118ojw2IfZ181BQgpUgQW35GNsU2Ajm 99i3uUoPnF6qv8B4rkvzAcke6M6UqHns1ho7O2EKYHIa71K5H0Q+8QSdDMyrj7NG TbRZapkZFa/eHUaI3mjm0tnXGdYouo09LXyRhNxSm5zhx7LhlULLcUSK4Ul2UNCo 35dxapB71dA1Pur7Tu4zvOSzqq1gLxJK5307/Gw77TO5iEK7d0/lC7H1A2TNlZXr 5muW2vxJfY12E/w59spOxZyc2ArDrWjelhRxQO5NfxK+c+ZAQ9ZkMehc+66qL5hb qdl7R0TmUsOrK5ep2y3tREtUQ6ZY2fXJDBhng5gVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQCMFzToysTqgaNez6Q0Ysuc/+8AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE0NTE4ZDg3LTlhODAtNDdkYS04MGM2LWVmZWI2MmYwNjQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAChtYd54Fo+yDv8pCJu2lNiy hWioRXAJ97WJc7RnS59ATyUfy23EOXfwD+MJfLZe543AdvWRNmSlk1oB0xyJeww0 FR7VF68pDr7KHSB3+oKd5S9iDOc78v+mBrthq7Vh+BbFkpclVHqbyfKkXKpP6rRs UaR2wsnQnWV8WE8WqemR/mi19oYNVVz7NndtScFMBGh0Y0U0vuOOhOXD9JbW5gla XBMuQuhRievWtYROA1d2fox/kKI5cCTGm+n8zlW8Shl3N0HvkMbeHDmCp9ObDYPj W7fORnJwgHrQxoO23dWv6rRiWanUrMRVNC5Ir4uh+y6mQ8KNVFH5Q+eKSkQ3AEc= -----END CERTIFICATE-----Generated at Fri May 3 01:28:11 2024 by rpki-client on console-fra.rpki-client.org