$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: gMjeCKgHp7fdyo1dhHrrBdr3lOSQEO6l8BgIg6InF8w= Subject key identifier: 38:B1:91:6A:22:1E:12:78:B9:8C:E9:E1:08:71:64:12:18:18:90:8F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F6A540D88C2ABB99CDDFF33E0081F00325EEB0A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6a:54:0d:88:c2:ab:b9:9c:dd:ff:33:e0:08:1f:00:32:5e:eb:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=30cc07e67922f26d470ab4c5fdf9d23a6fb1dfb07b17d85464e2ac035f9ada5b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:56:e0:59:40:b9:54:47:52:3a:2a:23:5c:0d: c5:2b:88:13:c4:6f:d5:4b:d2:74:e0:f0:84:2a:71: 30:c5:ae:3d:87:d8:70:97:dc:98:2f:b8:f5:ed:e5: a9:67:73:c0:aa:d4:c4:11:ef:8d:3b:4d:2b:bf:c8: c9:ff:fa:68:9a:c5:18:4e:c5:90:02:3b:34:97:fd: 1f:a7:78:44:d6:89:ba:66:b4:c1:1e:7a:ee:15:1b: 3d:ec:b0:4f:71:2d:c3:30:92:cf:df:20:56:5f:96: 51:3d:09:8b:48:12:aa:68:93:c3:f9:99:c4:92:d6: f3:8d:b6:c9:ca:a6:b8:97:47:35:55:d8:9f:f4:d7: 92:34:f0:cf:a6:a0:02:be:88:29:2e:39:41:fb:68: a8:e1:03:c5:19:c9:b0:d5:6d:88:e6:69:3a:32:a4: 5f:d1:cd:0d:96:3e:2d:e3:6d:8e:fb:07:8e:aa:65: 5a:08:b3:3d:7e:51:a6:34:1e:ab:85:4a:04:7c:d6: fa:7a:c9:68:33:bf:01:69:ba:1c:c4:6c:59:3f:48: 8d:16:12:06:21:9b:92:12:ca:ca:30:f3:75:1c:03: 4b:fb:09:1c:70:ae:25:a0:58:2e:25:6a:eb:e9:35: 45:a6:d9:22:85:c0:5a:93:ba:93:05:5a:ad:42:83: 9c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B1:91:6A:22:1E:12:78:B9:8C:E9:E1:08:71:64:12:18:18:90:8F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 97:d2:90:30:a3:2f:88:24:a0:a4:9d:14:fd:e9:1c:de:ea:5d: 71:d3:cd:54:f9:76:94:1d:dd:f2:81:d4:b9:6a:97:3b:39:fd: 89:c9:9c:c8:5d:ab:93:bf:10:18:f8:7a:70:d4:26:01:21:b1: 9e:60:4a:32:d9:cd:61:79:98:86:0e:82:78:c5:a1:83:f8:b7: e7:dc:dd:eb:b7:89:e2:e0:2a:3f:15:27:02:20:dc:83:b7:81: d5:84:7b:13:7e:04:6a:a0:d2:6b:b7:4f:85:cd:ce:12:6a:af: 81:f1:0b:63:80:a8:ec:e2:f1:d8:2c:29:28:ca:d3:d2:39:43: 5a:1f:bd:43:90:ec:55:4d:fd:89:69:d0:18:cb:5c:1c:b1:7d: 3d:f0:f4:49:d1:f9:9b:06:c1:05:40:63:d4:4b:1c:a5:5c:34: dd:f1:09:cf:37:ee:f9:b6:bd:a3:fa:3f:e2:f0:29:ee:7b:6e: 2a:b5:17:3e:f3:97:9f:10:3c:3b:8c:85:be:59:cf:1d:9c:be: 57:ec:79:e3:62:4a:13:16:a7:b0:c3:8b:93:42:76:72:a9:d3: 44:d1:10:37:0c:6d:71:57:8e:e5:4c:39:65:54:3f:f2:83:c5: 64:7e:3d:92:93:2b:65:d2:e8:a2:29:d0:25:af:53:cb:dc:34: 66:d7:f0:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP2pUDYjCq7mc3f8z4AgfADJe6wowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGNjMDdlNjc5MjJmMjZkNDcwYWI0YzVmZGY5ZDIzYTZm YjFkZmIwN2IxN2Q4NTQ2NGUyYWMwMzVmOWFkYTViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkVuBZQLlUR1I6KiNcDcUriBPEb9VL0nTg8IQqcTDFrj2H 2HCX3JgvuPXt5alnc8Cq1MQR7407TSu/yMn/+miaxRhOxZACOzSX/R+neETWibpm tMEeeu4VGz3ssE9xLcMwks/fIFZfllE9CYtIEqpok8P5mcSS1vONtsnKpriXRzVV 2J/015I08M+moAK+iCkuOUH7aKjhA8UZybDVbYjmaToypF/RzQ2WPi3jbY77B46q ZVoIsz1+UaY0HquFSgR81vp6yWgzvwFpuhzEbFk/SI0WEgYhm5ISysow83UcA0v7 CRxwriWgWC4lauvpNUWm2SKFwFqTupMFWq1Cg5wzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOLGRaiIeEni5jOnhCHFkEhgYkI8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAJfSkDCjL4gkoKSdFP3pHN7q XXHTzVT5dpQd3fKB1Llqlzs5/YnJnMhdq5O/EBj4enDUJgEhsZ5gSjLZzWF5mIYO gnjFoYP4t+fc3eu3ieLgKj8VJwIg3IO3gdWEexN+BGqg0mu3T4XNzhJqr4HxC2OA qOzi8dgsKSjK09I5Q1ofvUOQ7FVN/Ylp0BjLXByxfT3w9EnR+ZsGwQVAY9RLHKVc NN3xCc837vm2vaP6P+LwKe57biq1Fz7zl58QPDuMhb5Zzx2cvlfseeNiShMWp7DD i5NCdnKp00TREDcMbXFXjuVMOWVUP/KDxWR+PZKTK2XS6KIp0CWvU8vcNGbX8Gw= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:47 2024 by rpki-client on console-fra.rpki-client.org